In the specific case of JPMorgan, the bank thinks it was infiltrated in June.
By the time the breach was discovered in July, it was clear that hackers had “obtained the highest level of administrative privilege to dozens of the bank’s computer servers,” the New York Times notes in its very thorough account of the breach.
via Are the JPMorgan Hackers Just Hiding? – Bloomberg View.
.. criminals using a novel, custom malware to evade detection. Approximately 56 million “unique payment cards” used at stores in the U.S. and Canada were put at risk for the intrusion, which is believed to have lasted from April to September of this year.
via Home Depot Announces Hackers Stole 56 Million Credit and Debit Cards – Nextgov.com.
Former employees also said that the company used outdated security software, which led to some of them even warning friends to use cash instead of credit cards at Home Depot stores.
via The Home Depot reportedly ignored warnings from its own cybersecurity team | The Verge.
It is not uncommon for cybersecurity companies to research and hype threats that could drive sales.
The cybersecurity market and its customers would benefit from government regulation and research to help buyers separate good and bad security products and get objective reports on emerging cyber threats
via Crime Ring Revelation Reveals Cybersecurity Conflict of Interest – Scientific American.
There’s zero inherent value in changing an uncompromised password to a different uncompromised password.
If your password is compromised today, it doesn’t really make a difference if you changed it last week or last year. You’re not making it any harder to access your account; you’re just making it harder on yourself.
via Stop Changing Your Passwords — Kirk Lennon.
“Android smartphones are the easiest malware target, but Windows laptops are still the favorite of hard core professional cybercriminals.”
“The quality and sophistication of most Android malware is still behind the more mature Windows PC varieties. Android malware makes no serious effort to conceal itself and relies on unsuspecting people to install an infected app.”
via Alcatel-Lucent malware report reveals that more apps are spying on us, stealing personal information and pirating data minutes | Alcatel-Lucent.
.. so-called ransomware infections have surged, encrypting billions of documents.
Hackers demand hundreds or thousands of dollars to provide the key that unscrambles files so you can view and use them again.
One particularly virulent strain, called CryptoWall, has infected about 625,000 systems and encrypted more than 5.25 billion files since mid-March, according to new research from Dell SecureWorks.
via Ransomware Tells Small Business Owners, ‘Your Money or Your Files’ – Businessweek.