Tag Archives: OneLogin

Security Never Sleeps- Playstation Hack, IoT Security

PlayStation Hack Affects Twitter Account

“What happened with PlayStation security”

The official PlayStation Twitter account has been subject to a security breach today, with hacking group OurMine supposedly taking responsibility. The only real evidence thus far comes from the affected account itself, with messages from the social feed allegedly coming from the group posted on the PlayStation Twitter. One also claimed that the PlayStation Network had been compromised, so any users may want to change passwords and other sensitive information.

How to improve IoT security

“Security and privacy risks always increasing”

A recent study from researchers at the technical University of Denmark, Sweden and many more, titled ‘Internet of Hackable Things’, have outlined the new privacy issues that surround the devices. Industries of particular concern include smart devices in healthcare, smart homes, and building operation faculties.

50% of Ex-Employees Can Still Access Corporate Apps

“Businesses drive risk of breaches”

Often times when employees are terminated or move to new roles elsewhere, firms forget to end access to corporate applications. Researchers at OneLogin have polled 500 IT managers to learn how they terminate staff login information and credentials in-house. Initial results trend towards administrators are not doing enough to protect against the potential breach risk from ex-employees.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 169

xLED Malware Steals Data Using Router LEDs

“One of the strangest witnessed yet”

While malware does come in many interesting forms, the xLED malicious software plaguing the web now steals data by infecting a router switch and flashing the LED lights these devices have.

You’ll never guess where Russian spies are hiding their control servers

“Social media sites used to conceal malicious software”

Antivirus provider Eset released a report Tuesday that has identified where a Russian cybercriminal group hides their espionage software once it has attacked a network of interest. The backdoor Trojan has even recently used comments on Britney Spears Instagram account to locate the control server that sends guidelines regarding stolen data to and from infected devices.

OneLogin hack exposed sensitive US customer data and ability to decrypt data

“ID management firm confirms it has been breached”

OneLogin, a firm that manages single sign-on duties for many apps and websites, has confirmed that it has been hacked and sensitive customer data was likely obtained. The company was withholding of many details, but assured customers the compromised access has been blocked and the proper law enforcement officials had been notified of the incident.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 168

Kmart Payment Systems Infected With Malware

“Sears subsidiary in trouble”

Popular department store Kmart has had their payment systems infiltrated by cybercriminals last Wednesday, who were able to remotely install malware into the company processes. No information has been provided as to which stores have been affected or for what duration the hackers had access to the firm’s systems, but with over 700 locations it is estimated by security blogger Brian Krebbs that not all stores were affected.

Google Arms Gmail Security with Machine Learning

“Workplace patches imminent”

Phishing, data loss, and other threats were countered by four new security updates released recently by Google. The patches were intended for workplace threats that commonly affect larger firms.

Most Security Pros Expect to Suffer Cyberattacks via Unsecured IoT

“Wireless printers to thermostats cause concerns”

New reports suggest that the majority of security professionals believe they personally will be victimized by DDoS among other attacks due to ineptly secured IoT devices. The Ponemon Institute expect vulnerabilities in increasingly common devices to be exploited by cyber attackers.

OneLogin suffers breach—customer data said to be exposed, decrypted

“Customer data confirmed to be compromised”

OneLogin has now confirmed that the SSO and ID management company has suffered a serious breach. While their public statement is rather vague, an e-mail to its users details that “customer data was compromised, including the ability to decrypt encrypted data.”

Enjoy your read? Check out our other content here.