One of London’s busiest railway stations has unwittingly exposed their system credentials during a BBC documentary. The sensitive credentials printed and attached to the top of a station controller’s monitor were aired on BBC.
Read more here.
1,500 iOS apps are vulnerable to an HTTPS-crippling bug
According to analytics service SourceDNA, nearly 1,500 iPhone and iPad apps currently available in the App Store include a bug that breaks HTTPS. This could leave users’ sensitive personal information exposed to hackers.
Read more here.
Security guidance for early IoT adopters
At the RSA Conference 2015, the Cloud Security Alliance (CSA) unveiled a new guidance report, aimed at helping early adopters understand the security challenges surrounding the IoT, and providing recommended security controls and sample use-cases for organizations implementing IoT capabilities.
Read more here.
EAST cases out ATM crime stats in 2014 full-year report
A crime report from the European ATM Security Team reveals that ATM-related fraud incidents in Europe were down 26 percent year over year in 2014, but overall losses were up 13 percent.
Read more here.
Cybrary Offers Free Online Ethical Hacking and Cyber Security Training
Cybrary is that it is Free online IT and cyber security training environment for the world, so that anyone can join it in one shot.
Their Free and Online Cyber Security Training video classes include everything from cyber security certifications, including CISSP, Certified Ethical Hacker and CCNA to advanced top skill sets like advanced penetration testing and cloud administration.
Read more here.
IBM unveils cyber threat intelligence sharing platform
IBM is making its vast library of security intelligence data available via the IBM X-Force Exchange, a new cyber threat intelligence sharing platform powered by IBM Cloud. This collaborative platform provides access to volumes of actionable IBM and third-party threat data from across the globe, including real-time indicators of live attacks, which can be used to defend against cybercrime.
Read more here.
PCI DSS 3.1 released
The PCI Security Standards Council (PCI SSC) published PCI Data Security Standard (PCI DSS) Version 3.1 and supporting guidance. The revision includes minor updates and clarifications, and addresses vulnerabilities within the Secure Sockets Layer (SSL) encryption protocol that can put payment data at risk.
Read more here.
PCI council publishes guidance on computer systems penetration testing
The document offers recommendations for testing methodology, case studies, and a quick-reference guide to assist in navigating testing requirements.
Read more here.
New security requirements for payment card vendors
The PCI Security Standards Council (PCI SSC) has published version 1.1. of its PCI Card Production Security Requirements. The updated standard helps payment card vendors secure the components and sensitive data involved in the production of payment cards, protecting against fraud via the compromise of card materials.
Read more here.
Hacker Who Stole Money From Bill Gates Arrested in Philippines
What if you get into the bank account of the World’s most richest person? Maybe it could be difficult for you as well as I. But not for this guy…
…Konstantin Simeonov Kavrakov, a Bulgarian hacker, who hacked into the ATM and stole thousands of dollars from the bank account of Microsoft mogul Bill Gates with fake ATM cards arrested in Philippines, according to the Philippine National Police.
Read more here.