Companies that find a breach on their own take substantially longer to report a breach, a new analysis shows.

Early in the afternoon on Friday, May, 3, I asked a friend to relay a message to his security contact at CCH, the cloud-based tax division of the global information services firm Wolters Kluwer in the Netherlands. The message was that the same file directories containing new versions of CCH's software were open and writable by any anonymous user, and that there were suspicious files in those directories indicating some user(s) abused that access.

Shortly after that report, the CCH file directory for tax software downloads was taken offline. As of this publication, several readers have reported outages affecting multiple CCH Web sites. These same readers reported being unable to access their clients' tax data in CCH's cloud because of the ongoing outages.

By Uzair Amir

The company claims it does not share user data with others but looks like it does. Another day, another data breach; this time an unprotected database has been discovered leaking personal and financial data of millions of Canadians. Identified by researchers at vpnMentor along with hacktivists Noam Rotem and Ran Locar; the database belonged to […]

This is a post from HackRead.com Read the original post: Freedom Mobile leaked millions of card data with CVV codes in plain text

New Symantec research shows how the Buckeye group captured an exploit and backdoor used by the National Security Agency and deployed them on other victims.

New Symantec research shows how the Buckeye group captured an exploit and backdoor used by the National Security Agency and deployed them on other victims.

The number of live, accessible .onion sites amounts to less than 0.005% of surface web domains, researchers report.

The number of live, accessible .onion sites amounts to less than 0.005% of surface web domains, researchers report.

Criminals have begun to recognize that enterprise ransomware offers tremendous financial advantage over the more traditional tactics of wire fraud and account takeover.

Forensic analysis shows a Chinese APT using Equation Group hacking tools at least a year before Shadow Brokers dumped its cache in April 2017.

By Ryan De Souza

Chinese hackers then used NSA’s hacking tools and technology to target American allies. Symantec researchers have discovered that in 2016, Chinese intelligence managed to repurpose hacking tools used by the National Security Agency (NSA) and exploit them to attack American private firms and allies across the globe. In the new report published by The New […]

This is a post from HackRead.com Read the original post: Chinese hackers accessed NSA hacking tools before Shadow Brokers leak