Information Security Breach Report – 27 November 2014

A daily round up of the most recent reports of information security breaches, infosec and privacy stories from around the world.

You can always access the latest, and all previous reports at


Breaches, Incidents and Alerts:

Experimental Malware Bypasses Top APT Detection Solutions: Report –

Home Security Systems Subject to Breaches –

DoS Vulnerability Found in MatrikonOPC Server for DNP3 –

Sony Pictures’ computers are still locked as hackers demand equality –


Miscellaneous Infosec stories:

Hacker dodges FOUR HUNDRED YEARS in cooler for SCANNING sites –

Tony Abbott announces cyber security review –

IoT World Forum Review: Interop, Data & Security –

Look out: That data protection watchdog can bite –

Cybercriminals could rake in profits 20 times more than cost of attacks: Kaspersky Lab –

ENISA Issues Guidelines on Cryptographic Solutions –

Top 3 Takeaways from the “PCI DSS 3.0: Are You Ready for January?” Webcast –

Everything happens for a reason in security –

3 staggering retail data breach statistics –

Top reasons for CSOs to give thanks –

San Francisco DA pushes for chip payment cards in tech’s backyard –

Hack the halls: Watch out for Cyber Monday scamathon –

TechUK publishes guidelines for UK cyber security exports –

London Police Retool for Cybercrime –

Developers of Android RAT DroidJack Traced to India –

AV Firms Defend Regin Alert Timing –

Examining 1 billion transactions for fraud –

Costs of a cyber data breach –

Visa sees Visa Europe option now costing more than $10 billion –

SSDP DDoS attacks driving up average DDoS sizes –

FTC Continues Tech-Support Scam Busts –

CIA crypto-king offers new ‘clock’ clue to crack Kryptos code –


Tools, Tips and How it’s done:

Don’t Get Skunked in a Data Breach –

How to be an InfoSec Geek –

Simple yet Effective Methods to Solve Java Security Issues –

Preparing for an information audit –

Skimmer Innovation: ‘Wiretapping’ ATMs –

The Anatomy of a Credit Card Breach: Whiteboard Wednesday [VIDEO] –

Embracing the Adversary Mindset –

Brute-force Attacks: Crossing the Online-Offline Password Chasm –

Protecting against Social Engineering –

How to use an authenticator app to improve your online security –

How can flash heap spray attacks be detected? –

3 Questions to Ask Vendors When Securing POS –


Miscellaneous Privacy stories

‘Curiosity’ of Island Health employees led to privacy breach, probe reveals –

Case Suggests How Government May Get Around Phone Encryption –

Privacy Groups Call for NIST to Keep Development of Crypto Standards Independent of NSA Influence –

Internet companies should not be monitoring terrorists or anyone else –

Internet data plan back on political agenda –

Encryption everywhere: Debating the risks and rewards –

How One Guy Is Using the Law to Wreak Havoc Over Police Body Cams –


If you would like this report sent to your inbox each morning, email me at


You can see all previous issues of this blog at

My Linkedin Profile is

Posted 4 years ago on · Permalink