Breaking News

Data breach news, regulatory updates and best practice tips are published continually. We review and filter news from countless sources, so check back frequently for our latest posts.

Yahoo Admits Half a Billion Users’ Info Hacked


Yahoo has confirmed that a ‘likely state sponsored’ 2014 breach exposed data from about 500 million users.  The company has stated that information possibly affected includes names, email addresses, birth dates and scrambled passwords.  Even more alarming is the acknowledgment that encrypted or unencrypted security questions and answers may have also been compromised, which could allow hackers to access victims’ other online accounts.

Verizon Confirms Breach Affecting Business Customers


Verizon has released a statement confirming that “Verizon Enterprise Solutions recently discovered and fixed a security vulnerability on our enterprise client portal.  Our investigation to date found an attacker obtained basic contact information on a number of our enterprise customers.”  Experts believe the exposure of the clients’ contact information leaves them more vulnerable to phishing attacks. 

Android Mobile Banking Malware Risk Worsens


Security firm FireEye has released a report indicating the mobile banking trojan, SlemBunk, is becoming more and more sophisticated as the number of mobile banking users rises.  The malware is designed to attack Android devices and steals mobile banking credentials.  The original report identified at least 30 mobile banking applications that were affected, including those in North America, Europe and Asia Pacific.  An update to the report indicates the attack is even larger than originally identified.   

Power Blackout in Ukraine Tied to Malware Attack


 

A Ukrainian news outlet has reported a recent power blackout that affected 1.4 million members of the population.  Half of all homes in the western region of the country were left without power for a few hours.  Investigators believe that the outage was the first time that malware has been used to facilitate a large-scale power disruption.   The “hacker attack” involved remote access to industrial control systems at a local energy supplier called Prykarpattyaoblenergo.