target

(get it in RSS or Atom)

'Half of American adults hacked' in the past year - really?

'Half of American adults hacked' in the past year - really?

A new study publicized this week claims that almost half of all American adults have had their personal data hacked in the past year. Headline-grabbing truth-stretching? Or have 110 million Americans really been hacked?

Monday review - the hot 21 stories of the week

dow-250

It's weekly roundup time!

Here's all the great stuff we've written in the past seven days.

Is Apple finally getting real about security? 60 Sec Security [VIDEO]

2014-05-10-thumb-0250

Where does the data breach buck stop? Why do they call them "secret" links? And is Apple finally getting real about security?

Find out in "60 Second Security" for 10 May 2014

SSCC 146 - Target, Microsoft, Dropbox and the mysterious "Webdriver Torso" [PODCAST]

sscc-146-thumb-250

Have a listen to the latest episode of our weekly security podcast.

Sophos security experts Chester Wisniewski and Paul Ducklin look at what we can learn from the latest news.

Target CEO resigns, latest executive fallout from card breach

targ-250

Target's CEO resigned earlier today, which may not come as a surprise to most. The bigger question is, have America's executives learned the correct lesson from Target's mistakes?

Monday review - the hot 17 stories of the week

dow-250

Catch up with everything we've written in the last seven days - it's weekly roundup time.

Data-drained Target hurries to adopt chip-and-PIN cards

Data-drained Target hurries to adopt chip-and-PIN cards

The US has been dragging its heels on the expensive, laborious task of swapping its payment infrastructure for the more secure chip-and-PIN security used abroad. Still smarting from recent data theft, Target's now apparently leading the way, promising the new cards in 2015.

Proposed law seeks to make retailers financially responsible for data breaches

Money. Image courtesy of Shutterstock.

Fallout from the epic Target data breach continues, as state lawmakers seek to hold retailers liable for financial damages caused by breaches spawned by their businesses, rather than financial institutions who issue credit and payment cards.

Texan liquor chain Spec's leaks 550k card details in 17 month breach

Texan retail chain Spec's leaks 550k card details in 17 month breach

Spec's, the fifth largest wine retailer in the US, has leaked 550,000 customers' card details, after some of its systems were compromised for close to 17 months.

SSCC 139 - PWN2OWN, browser updates, Target alerts, PCI DSS and phishing [PODCAST]

sscc-139-thumb-250

Is a browser less secure if more people like to hack it? Is it OK to ignore alerts simply because you get too many? Do you back yourself to spot every single phish? And just how smart is the Google Play Store?

Chester and Duck dissect these issues with their usual style in this week's Chet Chat podcast...

Target missed multiple warnings that credit card data breach was underway

Target logo

Target's sophisticated security system went on full alert after detecting malware on the company’s network on 30 November last year and could have prevented the theft of 40 million credit and debit card numbers a few days later, according to a new report.

Target CIO Beth Jacob resigns in breach aftermath

Target CIO Beth Jacob resigns in breach aftermath

Following its recent epic breach, Target has announced that it's putting its technology through the wringer. Jacob will be the first high-level executive to leave since the incident.

Financial sector hit hard by data breach cleanup costs

Mop and bucket. Image courtesy of Shutterstock.

Cybercrime is all about the money. And, in the end, that money leads back to the financial sector. Banks, credit unions, insurers and everyone charged with looking after our money and covering us when something bad happens are starting to feel the pinch from the steady growth in cybercriminality.

Why we need to rethink how we view security

Why we need to rethink how we view security

When we look at some of the biggest security headlines of the past year - Target data breach, Cryptolocker ransomware, Snowden/NSA leaks - there's one big lesson we can all be taught: secure everywhere.

Target told to carry out security review just months before breach

Target was warned of payment system vulnerabilities before data breach

Former employees and others familiar with the breach investigation said at least one analyst recommended a thorough security review prior to Target's upgrading its payment system. Did the review actually happen, or was it lost in the cacophony of warnings security teams and government agencies constantly put forth?

The Spampionship, the PWN2OWN unicorn, and how Target was breached - 60 Sec Security [VIDEO]

2014-02-08-unicorn-250

Where do you find Extreme Spammers? Can you find the exploit unicorn? And how did Target get breached?

Find out in 60 Sec Security for 08 Feb 2014...

Did the crooks who broke into Target tailgate the cleaners?

target-250

Intrepid chronicler of the Target breach, Brian Krebs, has uncovered yet another cog in the criminal gearbox behind Target's data disaster.

Guess what? 2FA and network segregation would have made things a lot harder for the crooks...

SSCC 133 - Prize unicorns, Android malware, 2FA, Attack reports and Vote For Us! [PODCAST]

sscc-133-thumb-250

Chet and Duck review the week's news in their informed and entertainingly serious style, discussing the prizes on offer at this year's PWN2OWN competition, talking about a new twist in Android malware, and reviewing the latest attack reports from Yahoo and Target...

Target says hackers got in by using a vendor's credentials

Target says hackers got in through a vendor

The company has reportedly shut down remote access to at least two internal systems: one for HR and one for suppliers. And yes, the DOJ is investigating this, one of the biggest breaches of all time.

FBI warns of crimewave hitting cash registers

FBI warns of crimewave hitting cash registers

The US Federal Bureau of Investigations (FBI) has warned retailers to harden their defences against cyber-heists - particularly those that latch onto credit card details from shoppers