Tesco Bank, wholly owned by the UK's largest supermarket chain Tesco, has admitted the "some of its customers' current accounts have been subject to online criminal activity, in some cases resulting in money being withdrawn fraudulently." Nothing more specific about the fraud has been made known, although some reports suggest as many as 20,000 customers may have lost money.
read more
20,000 Defrauded as UK’s Tesco Bank Hit by Hack Attack
Britain's Tesco Bank temporarily froze all online transactions Monday after around 20,000 customers had money stolen from their accounts in a hack attack.
The bank, a subsidiary of British supermarket giant Tesco, the kingdom's biggest retailer, said it was trying to refund accounts as quickly as possible.
read more
Extending the Perimeter: Protecting Employees to Protect the Enterprise
In the early days of computing the cyber-security perimeter and the physical security perimeter were one and the same. Access to data implied access to the actual computer or storage media. From there we graduated to closed networks where computers only talked to each other within a building or private network but quickly modems started to allow access by people outside those controlled spaces. The age of the hacker had begun.
read more
Critical Privilege Escalation Flaws Found in MySQL
Database management systems MySQL, MariaDB and PerconaDB are affected by a couple of serious privilege escalation vulnerabilities. The developers of the vulnerable software have released updates to address the flaws.
read more
China Passes Controversial Cybersecurity Law
China Monday passed a controversial cybersecurity bill tightening restrictions on online freedom of speech and imposing new rules on online service providers, raising concerns it is further cloistering its heavily controlled internet.
read more
Russia Demands Explanation for US Military Hacking Reports
Moscow has asked Washington to provide clarifications on reports that the U.S. military has hacked into Russia’s critical infrastructure and its intention to leverage this access to retaliate in case of serious disruptions to the upcoming elections.
read more
Android Spyware Targets Executives
A newly discovered Android spyware believed to be targeting high-level executives, but requires manual installation on devices, according to security firm Skycure.
read more
JavaScript-Based DRAM Attack Allows Covert Data Theft
LONDON – BLACK HAT EUROPE – A new dynamic random-access memory (DRAM) attack method disclosed by researchers on Friday can allow malicious actors to steal sensitive data from a virtual machine, through a covert channel, using JavaScript.
read more
FireEye Launches New Cloud Products Amid Improved Financials
Cyber threat protection and intelligence firm FireEye this week launched new cloud-based network security and threat intelligence offerings amid improving finances.
read more
Rapid7 Analyzes Attacks In, Across, Against the Cloud
Security analytics and testing firm Rapid7 this week unveiled Project Heisenberg Cloud, a research project designed to use the cloud to get a closer look at what attackers are doing, both in the cloud and across the Internet.
read more
