Looking at the rising cases of data breaches, cybersecurity needs to be the top priority for every company. Now, two firms Advantage Capital Funding and Argus Capital Funding inadvertently exposed 50,000 sensitive and legal docs via a common mobile app they developed. In other news, NutriBullet suffered a cyberattack leaking the payment-card data of unsuspecting blender buyers. With that said, let’s read up on the top security updates from cyberspace in the past 24 hours.
01
The New York-based Advantage Capital Funding and Argus Capital Funding accidentally exposed over 500,000 sensitive legal and financial documents via a mobile app named MCA Wizard, which stored the data in an unprotected cloud storage bucket.
02
Hackers broke into the website of NutriBullet, a blender making firm, injecting web skimmers to siphon off the credit card numbers and other personal data of its online customers.
03
TrueFire, a Florida-based online guitar tutoring website with over 1 million users, suffered a card skimming attack exposing customers' personal information and payment card information.
04
Researchers disclosed that cybercriminals are creating thousands of websites to exploit the COVID-19 pandemic fears as a bait to spread malware through fake product offers.
05
Five employee email accounts of Tandem Diabetes Care were compromised after an unauthorized user gained access to it through a phishing attack. The incident could have exposed several patients' contact information, clinical data, and even Social Security numbers.
06
Security researchers discovered easily accessible, classified military information on a laptop being put up on sale on eBay, an ecommerce website.
07
A new report by Accenture revealed that one-third of financial services organizations do not have an explicit plan or the resources to address privacy risks related to customer data in the next 12 months.
08
Researchers discovered that some of the commercial password managers have vulnerabilities that could allow fake applications to expose user credentials, compromise commercial information, or violate employee information.
09
Axis Security, a private application access provider, raised a total of $17 million in a funding round led by Cyberstarts, along with other investors like Sequoia Capital, Palo Alto Networks, Check Point, and Imperva.
10
StackPath secured funding from Juniper Networks, Inc. (JNPR) and Cox Communications Inc. in its Series B round. The total amount of equity raised by the company stands at $396 million.
