Rappler's latest stories on Cybersecurity
Phishing is top PH cybercrime during pandemic – authorities
Online selling scams and the proliferation of misinformation that cause panic among the public are the other cybercrimes often committed as Filipinos grapple with the COVID-19 outbreak, says the National Bureau of Investigation NBI-Cyber Crimes Division
Australia under 'malicious' cyberattack from state actor
Attacks target 'a range of sectors, including all levels of government, industry, political organizations, education, health, essential service providers and operators of other critical infrastructure,' says Australia's prime minister Scott Morrison
FEU investigating possible hack, exposure of student data
A report from FEU Advocate says 1,000 student accounts had been made public, with details such as names, student numbers, and passwords exposed
U.P. Visayas website down after defacement
The UP Visayas website defacement is the latest in a string of cyberattacks targeting schools
Task force orders StaySafe developer to give users' data to DOH
IATF-EID warns it will revoke StaySafe's official status if the developer does not comply with new directives. Yet it was the task force itself that endorsed the app before it went through technical vetting.
StaySafe developer says Rio accusations 'unfair'
But Multisys CEO David Almirol Jr admits technical and privacy assessments were not yet completed when the government adopted and promoted StaySafe
U.P. Cebu confirms data breach on its Student Evaluation on Teaching system
The names and passwords to access a site used to let students rate the performance of their lecturers and professors are made public in the breach
Amid investigation, alleged San Beda hackers release '16gb database of San Beda'
While San Beda is working with authorities, the alleged hackers' web page remains accessible. A new Twitter page also appears, claiming the public release of all the stolen data.
How to set up one-time passwords on Facebook and other online platforms
One-time passwords are single-use passwords sent by an online platform to a user's email address or mobile number for added security
San Beda student portal hacked, personal data of thousands stolen
San Beda University seeks the help of the National Bureau of Investigation and the National Privacy Commission to track down the hacker
‘Doomsday’ warning for San Beda University resurfaces
The university has a 72-hour window to send a notification to affected data subjects, according to the National Privacy Commission’s policies
San Beda University student portal down after apparent hack
The defaced version of San Beda University's portal shows a warning to the school and an apparent 'Doomsday' timer
Security researcher gets $100,000 Apple bounty for 'Sign in with Apple' bug
Because of Bhavuk's Jain's report, Apple is able to fix the sign-in bug quickly. Apple tells him they investigated their logs and found 'no misuse or account compromise due to this vulnerability.'
Hacker behind 'doxxing' of German politicians charged
The German man – arrested in January last year – is accused of multiple computer crimes, as well as making false reports to the police and attempted blackmail
Zoom agrees to step up security after New York probe
In a statement, New York Attorney General Letitia James says Zoom will institute new security measures for the millions of users using the platform, including enhanced privacy controls
UK and U.S. warn of cyber threat to health sector fighting virus
The countries' cyber security agencies issue a joint warning to healthcare and medical research staff, urging them to improve password security amid the threat
[ANALYSIS] How cybercriminals are causing digital pandemic
It's 'open hunting season' for cybercriminals as they attack our curiosity, our eagerness to get the latest news on the coronavirus, and even our willingness to help
Hackers can 'leak, modify, and delete' emails through iOS Mail exploit – firm
The vulnerability has been observed from 2012's iOS 6 to the current latest iOS 13.4.1, according to US-based cybersecurity firm ZecOps. But older versions may also be vulnerable
Nation-backed hackers tune attacks to coronavirus fears – Google
Examples of ploys include bogus solicitations for charities; messages crafted to appear as though sent from remote workers, and websites impersonating pages of governments or public health agencies
Zoom rolls out new measures as security fears mount
Zoom is rolling out a bug bounty program, and a toolbar for easily accessing features such as locking chats from strangers, and making meeting password requirements a default setting
Internet overseers seek crackdown on coronavirus website scams
A new report says that in March, at least 100,000 new website names were registered using terms such as 'covid,' 'corona,' and 'virus'
PLDT not blocking Zoom for customers
Privacy-troubled Zoom is now considered as a malware within PLDT
Hacker 'ceasefire' gets little traction as pandemic fuels attacks
'The pandemic has led to an explosion of cybercrime, preying upon a population desperate for safety and reassurance,' says a report released this week by Interisle Consulting Group
Zoom patches vulnerabilities in macOS version, freezes feature development
Two flaws in Zoom's macOS client can give local attackers root privileges or allow the attacker to access a user's camera and microphone
Zooming out: Video chat apps aren’t perfect, but we need them anyway
While video chat apps are likely more needed now for both personal and business uses, it becomes more important that we also take stock of what we’re giving up to supposedly free services
Boom in video chat apps brings out cybercriminals with fake sites, malware
Phishing websites are targeting unsuspecting consumers who want to use a video chat app to connect for work, or to talk to friends and family
Zoom under scrutiny in U.S. over privacy, porn hacks
Some sessions are being 'Zoom-bombed' by porn, hate images, and threatening language
Hackers target World Health Organization in bid to take passwords – report
While the attempt to steal passwords by creating a fake World Health Organization internal email system page failed, the hackers remain unknown at this time
Hackers attacking Windows users using unpatched vulnerability – Microsoft
Microsoft lists a number of workarounds to help avoid getting attacked as a result of the vulnerability. A patch will be released on April 14
The other virus threat: Surge in coronavirus-themed cyberattacks
The abrupt move of millions of people to remote work sparks an unprecedented volume of attacks to trick people into giving up credentials to attackers, security researchers say
'Stalkerware' use up in 2019 – cybersecurity firm
Stalkerware is a kind of program that allows one to secretly monitor another person's messages, files, photos, and location, among others
MGM Resorts faces lawsuit over breach exposing 10.6 million guests' data
The personal details of hotel guests, which includes celebrities, government officials, tech CEOs, and reporters, are said to have been posted in a hacking forum
Mitsubishi Electric data may have been compromised in cyberattack
Mitsubishi Electric says it has confirmed highly sensitive information in the defense, power, and railway sectors are unaffected
Activists fear censorship as Russia tests internet for 'security'
Russia troubleshoots its internet system to prevent cyberattacks, but activists fear of more censorship to come
Will PH military be China's unwitting accessory to data breach?
Experts say Dito Telecommunity can allow China to mine data of Filipinos, and the Philippine military would be helping it by letting the telco build cell sites in its camps and bases
Military report confirms spying risks in deal with China-backed telco
The China-backed telco’s equipment can indeed be used to spy on the military, says the Armed Forces of the Philippines’ own risk analysis of the ‘co-location’ deal
Fingerprint login should be a secure defense for our data, but most of us don't use it properly
Touch ID technology was designed to enhance security and usability, and it would have, if people hailed its initial purpose and kept stronger passcodes
Duterte executive order reorganizes national cybersecurity committee
With Executive Order 95, the Department of Information and Communications Technology Secretary replaces the Department of Science and Technology Secretary as a co-chair of the committee
UK Labour suffers 'major cyberattack' ahead of election
The Labour Party says some of its campaign activities were slowed but were restored by early Tuesday and are now back to normal
Close to 250,000 WannaCry infection attempts in PH stopped in August alone – report
The Philippines accounts for 5.8% of the 4.3 million WannaCry infection attempts in August of this year that were detected and stopped by security firm Sophos.
Airbus hit by series of cyberattacks on suppliers – security sources
There have been 4 major attacks on Airbus in the last 12 months, according to two security sources involved in investigating the hacking
Millions of patient medical records freely accessible online
Some 16 million records are available 'unprotected on the internet and available to anyone with basic computer expertise,' reports say
Almost entire population of Ecuador has online data leaked
The breach exposes citizens' full names, dates and places of birth, education levels, phone numbers and national identity card numbers
76% of devices in healthcare facilities in PH infected by malicious code
The Philippines has the most number of infected medical devices in Southeast Asia, and is second worst among countries in the world after Venezuela, experts from Kaspersky say
Kaspersky Lab to tackle threats in healthcare at annual cybersecurity event
This year’s summit is taking place at Yangon, Myanmar on September 5
Twitter CEO hack highlights dangers of 'SIM swap' fraud
Dorsey is a victim of the 'SIM swap' fraud which lets fraudsters trick a mobile carrier into transferring a number, potentially causing a big security hole
Google reveals years-long 'indiscriminate' iPhone hack
Google reports a two-year iPhone hacking operation that exposed user photos, live user location information, and other data
Data breach at webhost Hostinger exposes 14 million users
An unauthorized third party temporarily gained access to non-financial details of 14 million users, reports Hostinger
Capital One data breach hits 100M credit card applications – firm
Bank says no credit card account numbers or log-in credentials were compromised
Data breach hits Sephora, Philippine customers affected
Sephora offers a free data monitoring service in some of the affected regions, but not in the Philippines due to certain 'local regulatory requirements'
