Cloud Security News: Week in Review is our blog series, grabbing the more interesting cloud security scoops from the web. Sit back, relax, and catch up on all you should know about this week.
With the election taking over most newsfeeds this week, here are some interesting cybersecurity stories that you might have missed. Last Thursday, Tesco Bank was subject to a massive security breach leaving thousands of accounts compromised. The bank has yet to discover who facilitated the attack, but is on full damage control. In other news, a few million records belonging to car owners and dealership employees have been leaked due a database provider’s utter lack of security practices. On a more positive note, Google has boosted its Safe Browsing efforts and introduced a new ‘Repeat Offender’ label to ensure that threatening websites are flagged for an entire month. Read below for more details.
By Uzair Amir (@Uzair160)
Tesco Bank (owned by UK’s largest supermarket, Tesco) was breached last week, leaving an estimated 9,000 customer accounts compromised. Upon discovery, the accounts were frozen and according to the bank, no personal data was actually taken. To compensate for the huge security scare, however, the bank has paid £2.5 million in total between all of the customers who were affected.
By Zack Whittaker (@zackwhittaker)
Unfortunately for new car owners and for those who work in the industry, personal information (including social security numbers) belonging to both customers and employees has been leaked. A database software provider that sells management systems to many US dealerships, called DealerBuilt, is being investigated. According to MacKeeper security researchers, “128 dealership systems were backing up to DealerBuilt’s central systems without any encryption or security, allowing anyone to see what was being backed up.”
Threatpost: Google to Red Flag ‘Repeat Offender’ Websites
By Tom Spring (@zpring)
Ever gotten to a webpage that’s completely red and displays the warning “The site ahead contains malware”? Well, you’re probably going to be seeing a lot more of that from here on out. Google has just released a Repeat Offender designation that will label sites deemed dangerous for 30 days before they can request to be reviewed again. Google’s Safe Browsing initiative was established back in 2005, with the intent of protecting against malware, phishing attacks, and social engineering schemes. Introducing Google’s 2016 version of the scarlet letter.