target

(get it in RSS or Atom)

Secret Service says "Backoff" malware hit 1000 businesses - 6 tips to keep your data safe

Backoff malware strike 1,000 US businesses

In a security advisory from the US Secret Service, the government said the malware known as Backoff has struck more than 1000 US companies since October 2013...

The UPS Store breach - what went wrong and what UPS got right

UPS apologizes for data breach

Data breaches at 51 UPS Stores in two dozen US states have put as many as 100,000 customers at risk of identity theft and credit card fraud, after malware was found on the stores' networks.

Clearly something went wrong, but here's what UPS got right ...

Supervalu says it was breached - is it the next Target?

supermarket-credit-card-250

US retailer Supervalu is warning customers that an intrusion of its network may have resulted in the theft of credit and debit card account numbers from up to 200 of its stores.

Meanwhile, a related data breach affected another 800 stores for which Supervalu provides IT services. Could this be the next Target?

The top 5 privacy failures - what's the most epic fail of all? [POLL]

Epic privacy fails

The list of culprits in our eroding privacy is long, but some privacy fails stand out above the rest. So we're calling out five privacy killers that deserve an extra level of shaming.

Take our poll, and help us crown the most epic privacy fail of all ...

'Half of American adults hacked' in the past year - really?

'Half of American adults hacked' in the past year - really?

A new study publicized this week claims that almost half of all American adults have had their personal data hacked in the past year. Headline-grabbing truth-stretching? Or have 110 million Americans really been hacked?

Monday review - the hot 21 stories of the week

dow-250

It's weekly roundup time!

Here's all the great stuff we've written in the past seven days.

Is Apple finally getting real about security? 60 Sec Security [VIDEO]

2014-05-10-thumb-0250

Where does the data breach buck stop? Why do they call them "secret" links? And is Apple finally getting real about security?

Find out in "60 Second Security" for 10 May 2014

SSCC 146 - Target, Microsoft, Dropbox and the mysterious "Webdriver Torso" [PODCAST]

sscc-146-thumb-250

Have a listen to the latest episode of our weekly security podcast.

Sophos security experts Chester Wisniewski and Paul Ducklin look at what we can learn from the latest news.

Target CEO resigns, latest executive fallout from card breach

targ-250

Target's CEO resigned earlier today, which may not come as a surprise to most. The bigger question is, have America's executives learned the correct lesson from Target's mistakes?

Monday review - the hot 17 stories of the week

dow-250

Catch up with everything we've written in the last seven days - it's weekly roundup time.

Data-drained Target hurries to adopt chip-and-PIN cards

Data-drained Target hurries to adopt chip-and-PIN cards

The US has been dragging its heels on the expensive, laborious task of swapping its payment infrastructure for the more secure chip-and-PIN security used abroad. Still smarting from recent data theft, Target's now apparently leading the way, promising the new cards in 2015.

Proposed law seeks to make retailers financially responsible for data breaches

Money. Image courtesy of Shutterstock.

Fallout from the epic Target data breach continues, as state lawmakers seek to hold retailers liable for financial damages caused by breaches spawned by their businesses, rather than financial institutions who issue credit and payment cards.

Texan liquor chain Spec's leaks 550k card details in 17 month breach

Texan retail chain Spec's leaks 550k card details in 17 month breach

Spec's, the fifth largest wine retailer in the US, has leaked 550,000 customers' card details, after some of its systems were compromised for close to 17 months.

SSCC 139 - PWN2OWN, browser updates, Target alerts, PCI DSS and phishing [PODCAST]

sscc-139-thumb-250

Is a browser less secure if more people like to hack it? Is it OK to ignore alerts simply because you get too many? Do you back yourself to spot every single phish? And just how smart is the Google Play Store?

Chester and Duck dissect these issues with their usual style in this week's Chet Chat podcast...

Target missed multiple warnings that credit card data breach was underway

Target logo

Target's sophisticated security system went on full alert after detecting malware on the company’s network on 30 November last year and could have prevented the theft of 40 million credit and debit card numbers a few days later, according to a new report.

Target CIO Beth Jacob resigns in breach aftermath

Target CIO Beth Jacob resigns in breach aftermath

Following its recent epic breach, Target has announced that it's putting its technology through the wringer. Jacob will be the first high-level executive to leave since the incident.

Financial sector hit hard by data breach cleanup costs

Mop and bucket. Image courtesy of Shutterstock.

Cybercrime is all about the money. And, in the end, that money leads back to the financial sector. Banks, credit unions, insurers and everyone charged with looking after our money and covering us when something bad happens are starting to feel the pinch from the steady growth in cybercriminality.

Why we need to rethink how we view security

Why we need to rethink how we view security

When we look at some of the biggest security headlines of the past year - Target data breach, Cryptolocker ransomware, Snowden/NSA leaks - there's one big lesson we can all be taught: secure everywhere.

Target told to carry out security review just months before breach

Target was warned of payment system vulnerabilities before data breach

Former employees and others familiar with the breach investigation said at least one analyst recommended a thorough security review prior to Target's upgrading its payment system. Did the review actually happen, or was it lost in the cacophony of warnings security teams and government agencies constantly put forth?

The Spampionship, the PWN2OWN unicorn, and how Target was breached - 60 Sec Security [VIDEO]

2014-02-08-unicorn-250

Where do you find Extreme Spammers? Can you find the exploit unicorn? And how did Target get breached?

Find out in 60 Sec Security for 08 Feb 2014...