Verizon has apologized to customers after a contractor failed to secure an Amazon Web Services S3 bucket, leading to the exposure of data relating to 6 million accounts. But it's unclear if Verizon plans to notify customers whose data and accounts might be at risk.
The Trump administration has moved to restrict the U.S. government's ability to use products built by Moscow-based anti-virus firm Kaspersky Lab, which claims it's been caught up in a "political game" being played out between Washington and Moscow.
Personal details of over 100 million customers of Reliance Jio were apparently leaked and offered for sale on the dark web, according to news reports. The company says the data appears to be inauthentic and claims it has not been breached. But some customers contend they've verified the data's authenticity.
Trump Hotels is warning customers that payment card data at 14 of its properties was compromised during a seven-month breach that affected service-provider Sabre. Other affected chains include Hard Rock Hotel & Casino and Loews Hotels.
Russian-born Alexander Tverdokhlebov has been sentenced to serve nine years in U.S. prison after pleading guilty to causing damages of between $9.5 million and $25 million by running botnets, using malware to steal payment card data, selling "dumps" of that data as well as hiring money mules.
Avanti Markets is warning 1.6 million users of its self-service kiosk vending machines that malware-wielding hackers infected about 1,900 of its machines and stole names and payment card data, but not biometric information. Point-of-sale malware called Poseidon appears to be involved.
India is considering whether to recognize bitcoins as legal. As cybercriminals increasingly demand bitcoins for payment of ransoms, Iaw enforcement authorities are challenged in taking action against those who use virtual currency because of ambiguity over its legal status.
President Donald Trump backtracked on a pledge that the United States and Russia would work together to improve global cybersecurity by forming a joint working group after his proposal was criticized by both Republican and Democratic lawmakers.
Analytics can play a critical role in cracking down on identity fraud, says Shaked Vax, Trusteer products strategist at IBM Security, who explains how to use the latest tools to identify network intruders.
Good news for some ransomware victims: The master key used to encrypt the original versions of Petya ransomware has been released. But the key cannot be used to decrypt the "NotPetya" malware that recently began crypto-locking PCs.
"Fake news" isn't just a political concept. It's also a component of the marketing hype about Europe's General Data Protection Regulation, says Jonathan Armstrong of the law firm Cordery. How can security leaders cut through the hype and focus on what's truly important to their business?