what's going on out there?

latest Info. Sec. News

Hippogriff provides proven techniques that ensure results when instructing IT-centric personnel within enterprise divisions which are handling sensitive medical information for patients and the financial expenditures associated with insurance cost. There is no more valuable information than personal finance and healthcare data. There can be no room for error when consumers entrust their lives to market and government service providers; this means that a highly skilled team in Hippogriff is needed to keep up with inevitable and serious infractions throughout the technologically-dependent economy of the world's nations. Hippogriff can help recover compromised data and monitor your financial industry technology needs. There is ZERO excuse for lapses in elementary level IT security protocols. Hippogriff Cyber Security Awareness Training and Risk and Vulnerability Assessment/Mitigation capabilities should be part of your core business strategy for shielding against virtual and tangible infiltration of sensitive company property.

incidents that you need to know about

Every week Hippogriff shares some of the most alarming data breach/privacy infringing, occurrences throughout the world. Keep stopping by to see the most recent entries.

Hacker Hijacks California Congressional Debate to Broadcast Gay Porn - Voters in California's 1st congressional district tuned in Thursday night to a live stream of a political forum intended to highlight two candidates running for office. What they got instead was a brief clip of gay porn, the result of the broadcast being hijacked by hackers.

Cyber Security Threats to Cost Organizations in Singapore US$17.7 Billion in Economic Losses - A Frost & Sullivan study commissioned by Microsoft revealed that the potential economic loss in Singapore due to cybersecurity incidents can hit a staggering new amount. This amounts to 6 percent of Singapore's total GDP at US$297 billion.

One in Four APAC Firms Not Sure If They Suffered Security Breach - A quarter of Asia-Pacific companies have experienced a security incident, while 27 percent aren't even sure because they haven't conducted any data breach assessment — even as the region is estimated to have lost US$1.75 trillion last year due to cyberattacks.

European Cyber Attacks Up Nearly a Third in First Quarter 2018 - European digital businesses faced 80 million fraud attempts as they experienced more pronounced spikes of peak attack periods throughout the first quarter compared with previous years, according to the latest cyber crime report for Europe by risk firm ThreatMetrix.

Most Firms Struggle to Comply with GDPR Deadline - Research suggests that some companies are overlooking the business opportunity of GDPR. Nearly one-third of firms are focusing on compliance only: 31 percent report that the focus of their program is to comply with the mandate rather than gain competitive advantage. Furthermore, although non-compliant organizations face fines of up to four percent of annual revenue, nearly 19 percent say ensuring they are prepared is not a priority for them.

Microsoft Office Targeted by More Cyber Attacks than Ever - Attacks that leverage exploits found in Microsoft Office grew by fourfold during Q1 2018 according to new research from Kaspersky Lab. The security firm's Q1 IT threat evolution report shed light on how cyber attackers are taking advantage of exploits in the popular word processing program to target users with malicious documents.

Data Security Incidents Spike as Human Error Dominates - The number of data security incidents reported to the U.K.'s Information Commissioner's Office (ICO) jumped 17% between the final three months of 2017 and the first quarter of 2018, according to new figures.

A Flaw in a Connected Alarm System Exposed Vehicles to Remote Hacking - A bug that allowed two researchers to gain access to the backend systems of a popular internet-connected vehicle management system could have given a malicious hacker everything they needed to track the vehicle's location, steal user information, and even cut out the engine.

Cost per DNS Attack Has Increased by 57% to $715,000 for Organizations Globally - EfficientIP, a leading specialist in DNS security to ensure service continuity, user protection and data confidentiality, today announced the results of its 2018 Global DNS Threat Report. It explored the technical causes and behavioral responses towards DNS-based threats and their potential effects on businesses across the world. Over the past year, organizations on average faced seven DNS attacks, which cost some businesses more than $5 million in damages.

Respiratory Therapy Supplier Lincare Agrees to Pay $875k to Settle Data Breach Lawsuit - The settlement resolves a lawsuit filed last fall that claimed Lincare failed to implement "the most basic security safeguards" to prevent a breach. A human resources employee fell victim to a phishing scam in February 2017 in which the sender claimed to be a Lincare executive asking for employee W-2s.

GDPR Compliance Deadline Still a "Significant" Challenge for Many - When it comes to verifying that third parties directly gathering personal information from E.U. citizens obtain consent — as is dictated by GDPR — none of the organizations surveyed said they have this capability in place. Almost half suggested it is still going to take a lot to become compliant with this requirement — five percent of firms will be building capabilities from scratch, while 43 percent reveal it will require major enhancements to their existing capabilities.

Healthcare IT Security Budgets Frozen Despite Increase in Cyber Attacks - A recent report from Black Book Research has revealed more than 90% of healthcare organizations have experienced a data breach since Q3 2016, yet IT security spending at 88% of hospitals remains at 2016 levels.

Cyber Crime Now Affecting More People than Any Other Crime - The absurd and unrealistic forecasts seen in many Hollywood films have become reality. According to the United Kingdom's National Crime Agency, organized cybercrime is now affecting more people than any other form of crime — including drugs, firearms, organized immigration crime, and money laundering. Not because it is replacing these other forms of cybercrime, but rather because it is aiding them.

51% of Companies Publicly Exposed Cloud Storage Services in the Past Year - As companies try to quickly move to the cloud, many overlook key security steps in the process, particularly around identity management and access control. On average, 27% of organizations experienced potential account compromises in the past year due to cloud security failures.

Vietnamese Hackers Trigger Software Trap After Australian Sale of Newspaper in Cambodia - A Vietnamese state-linked hacking group has used a Cambodian newspaper website to attack a local human rights organization, according to a leading cyber security firm. The attack started just days after Australian mining magnate Bill Clough sold the newspaper to Malaysian spin doctor Sivakumar Ganapathy, who specialises in "covert PR."

Organization Failing to Identify Insider Threat Blind Spots - Findings showed that 90% of assessments discovered that negligent employees were transferring company data to unencrypted and unauthorized USB devices, with 91% indicating that negligent employees were expanding the phishing attack surface by accessing personal web mail accounts on company machines – a behavior up 4% in the last 12 months.

British Consumers Will Shun Companies that Don't Safeguard Their Data - New research from the multi-cloud data management firm, Veritas has revealed that U.K. consumers have little trust in organizations to safeguard their data and some are even prepared to go as far as to boycott businesses that fail to do so.

Publicly Disclosed Vulnerabilities Continue to Rise - The first quarter of 2018 has shown a 1.8 percent increase in the number of disclosed vulnerabilities over the same period in 2017, with 5,375 unique vulnerabilities reported. This is one of the findings of Risk Based Security's latest Vulnerability QuickView Report, which suggests that unless the rate of increase slows down 2018 will be another record year.

Cyber Risks Rise at Airports - A new report from PA Consulting Group in London shared with Computer Business Review warns that a more "unified" technological passenger airport experience is posing greater cyber risks for airports. The European Aviation Safety Agency has reported over 1000 cyber-attacks each month on aviation systems and suggested the number is most likely to increase with advancing digitalization passenger engagement.

Thieves Suck Millions Out of Mexican Banks in Transfer Heist - Thieves siphoned hundreds of millions of pesos out of Mexican banks, including No. 2 Banorte, by creating phantom orders that wired funds to bogus accounts and promptly withdrew the money, two sources close to the government's investigation said. Hackers sent hundreds of false orders to move amounts ranging from tens of thousands to hundreds of thousands of pesos from banks including Banorte, to fake accounts in other banks, the sources said, and accomplices then emptied the accounts in cash withdrawals in dozens of branch offices.

Cerebral Palsy Research Foundation Exposed 8.3k Clients' Data for 10 Months - The Cerebral Palsy Research Foundation is notifying 8,300 clients who were served from 2001 to 2010 that a database containing their demographic data was vulnerable for 10 months. CPRF discovered March 10 that although the  demographic database, which was created in early 2000, was stored in a secure subdomain, it was not identified during its recent server change. As a result, the information was  temporarily exposed.

Warnings Issued Over Vulnerable Medical Devices - Warnings have been issued by the Department of Homeland Security's (DHS) Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) about vulnerabilities in several medical devices manufactured by Silex Technology, GE Healthcare, and Phillips. If the vulnerabilities were to be exploited, an unauthorized individual could potentially take control of the devices.

Cyber Attack on Family Planning NSW Client Database - A cyber attack on Family Planning NSW's website has exposed the personal information of up to 8000 clients, including women who have booked appointments or sought advice about abortion, contraception and other services.

Under Reporting of Attacks Gives Hackers a Green Light - Organizations which don't report that they've been the victim of cyber crime are putting others at risk of further attacks and are hampering the authorities' ability to fight against hackers, the U.K.'s serious and organized crime unit has warned.

Chili's Is the Latest Place to Be Hit with a Data Breach - If you ate at a Chili's Grill & Bar sometime between March and April of this year, your debit or credit information may have been compromised in a data breach. Chili's is just the latest in a wave of companies that have been affected by data breaches recently.

Hackers Target Danish Train Service - A DDoS cyber attack made buying a ticket tough for Danish rail travellers Sunday night. A Distributed Denial of Service (DDoS) attack is an attempt to make an online service unavailable by overwhelming it with traffic from multiple sources. The hack made it impossible to purchase a ticket via the DSB app, on the website, at ticket machines and in 7-Eleven kiosks at the stations.

Hippogriff RSS Feed '18-'17