Due to ongoing high-profile data breaches, cybersecurity is a trending topic in all
kinds of media. It is imperative that information security executives are updated
about the incidents around them. Read on for the most important cybersecurity
stories of the last week.
1Amazon India suffers data breach; sellers’ financial information exposed
E-commerce giant Amazon has again suffered another technical glitch on its India portal that affected its sellers and vendors. The Seattle-based e-tailer stated that a bug in its website caused a data breach on January 08, 2019, that exposed sensitive financial information, including sales, category-wise split and inventory data of its sellers and vendors. Having around 400,000 online vendors and sellers across the country, Amazon said the issue was resolved within a few hours, but, the exact figure of affected members is not yet discovered.
2Unprotected server exposes personal info of job seekers in China
An unprotected MongoDB server exposed a database that contains resumes of 202 million Chinese people online, according to a researcher.
Bob Diachenko, Director of Cyber Risk Research at HackenProof, discovered that the unsecured server was left visible online without a password, thus exposing the resumes that contained personal details such as mobile phone number, email, marital status, driver license, literacy level, salary expectations, skills, and work experience. The leaky server was secured soon after Diachenko publicized the issue via a Twitter post.
3Reddit notifies users about potential data breach
Social media platform Reddit has alerted its users that some of their accounts have been locked out because of suspicious activity. The US-based news aggregator stated that it received many requests for new passwords that may indicate unauthorized access.
Reddit said that its security officials are working on to fix the issue. It suggested the users update their passwords and also advised to use the latest email address for Reddit accounts, enabling automated password resets and two-factor authentication for additional protection. The company notified the affected users and allowed them to reset the passwords to restore the accounts.
4Check Point acquires security startup ForceNock
Cybersecurity solutions provider Check Point Software Technologies recently acquired Web Application and API Protection (WAAP) provider ForceNock. Check Point offers cybersecurity solutions to private and government enterprises globally. The company claims that its multi-level security architecture enables its clients to defend against malware, ransomware and other targeted attacks across all networks, cloud and mobile operations. Check Point stated the latest deal will strengthen its machine learning protection capabilities.
5OneLogin raises $100 million to expand its Unified Access Management services
OneLogin, an access and identity management startup, recently raised $100 million investment in a financing round led by Greenspring Associates and Silver Lake Waterman along with the existing investors CRV and Scale Venture Partners. The California-based startup stated the new funds will be used to accelerate the adoption of its new products like Multi-Factor Authentication (MFA) to serve enterprises in the new Unified Access Management (UAM) sector. OneLogin also said the funds will be used to extend its footprints in North America and Europe regions.
615 top cybersecurity searches on Google last year
When Google revealed its top searches of 2018 list, it was mainly focused on pop culture.
And while that’s cool, the team really wanted to know about the hottest cybersecurity search topics of the year, so we went digging into what people in the U.S. were searching for regarding InfoSec.