Cathay Pacific Airways was today hit by a £500,000 fine by the UK regulator for a mass data breach that saw hackers steal passport numbers, emails and dates of birth from 9.4 million passengers including 111,000 Britons. The Information Commissioner's Office…
Read MoreOn February 11th, 2020 Microsoft disclosed a Memory Corruption Vulnerability in Microsoft Exchange Servers [1]. An authenticated user could exploit this vulnerability to cause remote code execution (RCE) on vulnerable Microsoft Exchange Servers. It is probable that public exploitation of…
Read MoreMisconfigured Microsoft cloud databases containing 14 years of customer support logs exposed 250 million records to the open internet for 25 days. The account info dates back as far as 2005 and is as recent as December 2019 — and…
Read MoreGoogle said Monday (February 24, 2020) it has patched a Chrome web browser zero-day bug being actively exploited in the wild. The flaw affects versions of Chrome running on the Windows, macOS and Linux platforms. The zero-day vulnerability, tracked as CVE-2020-6418, is a type of confusion bug and has a…
Read MorePCI SSC has begun efforts on PCI Data Security Standard version 4.0 (PCI DSS v4.0). Here we provide more insight into the development process and how PCI SSC is looking at changing the standard to support businesses around the world…
Read MoreAn alarming 49 notifications of data breaches (20%) from April to 30 June 2018 were in healthcare, surpassing the finance sector's 36 notifications (15%) Do these numbers surprise us? What can we put this down to? I feel that the…
Read More