Equifax breach response under fire again as scope of exposed data widens

Security Digest Information security news and advice from TechTarget's network| February 14, 2018 FEATURED STORY Equifax breach worsens, additional consumer data exposed by Maddie Bacon, Associate Site Editor The Equifax breach compromised even more consumer data, including tax identification numbers, than originally reported. But the credit rating agency didn't disclose the update. (SearchSecurity.com) Advertisement NEWS   Critical Broadcom flaws discovered in Lenovo ThinkPads Two critical flaws in Broadcom Wi-Fi chips disclosed last year were thought to affect only Apple and Android devices, but Lenovo now says ThinkPad models are vulnerable, too. (SearchSecurity.com)   Apple's confidential iBoot source code leaked online News roundup: Apple's highly protected iBoot source code was leaked online. Plus, the U.S. Consumer Financial Protection Bureau stops its Equifax breach investigation, and more. (SearchSecurity.com)   DoJ breaks up Infraud Organization with some help The U.S . Department of Justice announced the shutdown of the Infraud Organization, which authorities claim is responsible for global cyberfraud losses in excess of $530 million. (SearchSecurity.com)   Zero-day Telegram vulnerability exploited for cryptomining Kaspersky Lab disclosed a zero-day vulnerability in Telegram that the security vendor says was abused by Russian cybercriminals in a cryptomining malware campaign. (SearchSecurity.com)   Symantec's untrusted certificates: How many are still in use? A security researcher found that a significant number of popular websites are still using untrusted certificates from Symantec, which will be invalidated this year. (SearchSecurity.com)   Risk & Repeat: Cryptomining malware on the rise In this week's Risk & Repeat podcast, SearchSecurity editors discuss how the threat of cryptomining malware is evolving and what it means for enterprises and infosec vendors. (SearchSecurity.com) EXPERT ADVICE   What enterprises need to know about ransomware attacks Ransomware attacks on enterprises are often the result of a company's poor IT hygiene. Expert Joe Granneman looks at attacks like those by WannaCry and SamSam ransomware. (SearchSecurity.com)   Cloud security lessons to learn from the Uber data breach Any organization that uses cloud services can learn something from the 2016 Uber data breach. Expert Ed Moyle explains the main takeaways from the massive breach. (SearchCloudSecurity.com)   Perfecting the patch management process within enterprises Patching enterprise systems and software can be a daunting challenge. Charles Kao explains how the patch management process should work and what pitfalls to avoid. (SearchSecurity.com)   How did a Microsoft Equation Editor flaw put systems at risk? A stack buffer overflow vulnerability in Microsoft Equation Editor may have put enterprises at risk of compromise. Expert Judith Myerson explains what went wrong. (SearchSecurity.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2018 TechTarget. All rights reserved.