Data belonging to 580,000 Singapore Airlines' frequent flyer members have been compromised in a cybersecurity attack that originally hit air transport communications and IT vendor, SITA. The incident marks the second time in a week that an airline has reported a data breach, which appears also to be the result of the attack targeting SITA. While not a customer of SITA, Singapore Airlines (SIA) had shared a "restricted" set of data as a member of the Star Alliance group, the airline said in a statement late-Thursday. This was necessary to facilitate verification of membership tier status and provide customers of other member airlines the relevant benefits while they travelled. Such data would reside on the passenger service systems of member airlines, SIA said. The national carrier did not specify when it was informed by SITA about the breach, which impacted the latter's passenger service system servers. Global pandemic opening up can of security worms Caught by … [Read more...] about Singapore Airlines frequent flyer members hit in third-party data security breach
Security
John McAfee charged with securities fraud for ‘pump and dump’ cryptocurrency scheme
John McAfee has been charged with securities fraud over a “pump and dump” cryptocurrency scheme. Federal prosecutors unsealed a case against McAfee and his executive advisor and bodyguard Jimmy Gale Watson Jr., claiming the pair earned nearly $2 million by urging Twitter followers to invest in cryptocurrencies like Reddcoin and Dogecoin, then selling off their own holdings as the price rose. “McAfee and Watson exploited a widely used social media platform and enthusiasm among investors in the emerging cryptocurrency market to make millions through lies and deception,” said US Attorney Audrey Strauss in a statement. “The defendants allegedly used McAfee’s Twitter account to publish messages to hundreds of thousands of his Twitter followers touting various cryptocurrencies through false and misleading statements to conceal their true, self-interested motives.” The pair allegedly ran their scheme between December 2017 to October 2018. McAfee used his verified Twitter account, … [Read more...] about John McAfee charged with securities fraud for ‘pump and dump’ cryptocurrency scheme
Intel to acquire security firm McAfee for $7.68 billion
In a rather surprising announcement, Intel today revealed it plans to acquire antivirus company McAfee in an all cash deal worth $7.68 billion. That equates to $48 per share, a 60% premium over McAfee's Wednesday closing stock price of $29.93. The deal should help Intel serve the security needs of customers through a combination of hardware and software, particularly in the mobile and embedded segment, where it has struggled to expand its presence as more devices such as smartphones, televisions, medical equipment, and ATM machines go online. McAfee is one of the largest security technology companies in the world and saw nearly $2 billion in revenue last year. Aside from its desktop antivirus software, it also offers end-point and networking products and services, as well as a growing line of security products targeting mobile devices. Under the agreement, McAfee's senior staff will continue to lead the company as a wholly owned subsidiary, reporting into Intel's Software and … [Read more...] about Intel to acquire security firm McAfee for $7.68 billion
LastPass vs. 1Password: Two top password managers, compared
1Password See at 1Password LastPass See at LastPass It wasn't long ago that I raised an editorial toast to the reigning champion of password managers , LastPass, recommending it not only for its broad suite of premium features but -- most crucially -- for its refusal to let down its veteran fanbase of free users, even as it faced sweeping scrutiny over an ownership change. A moment of silence, then, for our beloved fallen freeware: As of March 16, LastPass free-tier users will only be able to use the service on just one device type -- either desktop or mobile, but not both. Goodnight, sweet prince. Read more: Best password manager to use for 2021 The move tragically undermines a key security principle that's made LastPass's free version so effective at core security -- its seamless multiplatform integration. Using a password manager to boost security, perhaps more so than many other privacy products, pivots on a fulcrum of … [Read more...] about LastPass vs. 1Password: Two top password managers, compared
Ransomware as a service is the new big problem for business
Coronavirus, remote working, and ransomware: The key cybersecurity challenges your organization is facing Watch Now Ransomware as a service is proving effective for cyber criminals who want a piece of the cyber-extortion action but without necessarily having the skills to develop their own malware, with two out of three attacks using this model. Ransomware attacks are still proving extremely lucrative, with the most well-organised gangs earning millions per victim , so many cyber criminals want to cash in – but don't have the ability to code and distribute their own campaigns. More on privacy Microsoft to apply California's privacy law for all US users Mind-reading technology: The security and privacy threats ahead How to replace each Google service with a more privacy-friendly alternative Cyber security 101: Protect your privacy from hackers, spies, and the government That's where ransomware as a service (RaaS) comes in, with developers … [Read more...] about Ransomware as a service is the new big problem for business