35 matches found
EUVD-2019-18406
Malware in sbrugna...
CVE-2019-9019
The British Airways Entertainment System, as installed on Boeing 777-36NER and possibly other aircraft, does not prevent the USB charging/data-transfer feature from interacting with USB keyboard and mouse devices, which allows physically proximate attackers to conduct unanticipated attacks agains...
Cl0p ransomware gang claims first victims of the MOVEit vulnerability
On Friday June 2, 2023 we reported about a MOVEit Transfer vulnerability that was actively being exploited. If your organization uses MOVEit Transfer and you havent patched yet, it really is time to move it. Excuse the bad pun, but yesterday we saw the first victims of this vulnerability come...
British Airways customers targeted in lost luggage Twitter scam
Getting back into the travel habit? Jumping on a plane soon? Experienced a bit of a luggage disaster and looking for help on social media? Watch out, because a lack of prior research could prove very costly. Word has spread of a bogus Twitter account pretending to be a customer support channel of...
Airline DMARC Policies Lag, Opening Flyers to Email Fraud
More than half of global airlines do not have DMARC policies in place, opening their customers up to email fraud attacks, a new report found. DMARC Domain-based Message Authentication, Reporting & Conformance is considered the industry standard for email authentication to prevent attackers from...
British Airways E-Ticketing Flaw Exposes Passenger Flight, Personal Data
A security bug discovered in British Airways’ e-ticketing system has the potential to expose passengers’ data, including their flight booking details and personal information. Researchers on Tuesday said that check-in links being sent by British Airways to their passengers via email are unencrypt...
This Week in Security News: Banking Malware and Phishing Campaigns
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about the banking malware Anubis that has been retooled for use in fresh attack waves. Also, read about a new phishing campaign that...
Marriott Hit With $123M Fine For Massive 2018 Data Breach
The U.K.’s privacy watchdog is hitting Marriott International with a $123 million £99 million penalty stemming from its 2018 data breach of more than 383 million guest records. The Tuesday fine is issued by the Information Commissioner’s Office ICO and comes only a day after the organization...
Post-Data Breach, British Airways Slapped With Record $230M Fine
UPDATE A record $230 million fine has been proposed against British Airways after a 2018 data breach impacted 500,000 of the airline’s customers. If approved, the fee would be the biggest General Data Protection Regulation GDPR fine to be issued to a company so far. On Monday, the Information...
British Airways Fined £183 Million Under GDPR Over 2018 Data Breach
Britain's Information Commissioner's Office ICO today hit British Airways with a record fine of £183 million for failing to protect the personal information of around half a million of its customers during last year's security breach. British Airways, who describes itself as "The World's Favorite...
British Airways Fined £183 Million Under GDPR Over 2018 Data Breach
Britain's Information Commissioner's Office ICO today hit British Airways with a record fine of £183 million for failing to protect the personal information of around half a million of its customers during last year's security breach. British Airways, who describes itself as "The World's Favorite...
British Airways Entertainment System Buffer Overflow Vulnerability
The British Airways Entertainment System is an in-flight audio-visual entertainment system. A security vulnerability exists in the British Airways Entertainment System installed on Boeing 777-36NER and other aircraft, which arises from a program that does not prevent the USB charge/digit transfer...
CVE-2019-9019
The British Airways Entertainment System, as installed on Boeing 777-36NER and possibly other aircraft, does not prevent the USB charging/data-transfer feature from interacting with USB keyboard and mouse devices, which allows physically proximate attackers to conduct unanticipated attacks agains...
Buffer overflow
The British Airways Entertainment System, as installed on Boeing 777-36NER and possibly other aircraft, does not prevent the USB charging/data-transfer feature from interacting with USB keyboard and mouse devices, which allows physically proximate attackers to conduct unanticipated attacks agains...
CVE-2019-9019
The British Airways Entertainment System, as installed on Boeing 777-36NER and possibly other aircraft, does not prevent the USB charging/data-transfer feature from interacting with USB keyboard and mouse devices, which allows physically proximate attackers to conduct unanticipated attacks agains...
CVE-2019-9019
CVE-2019-9019 relates to the British Airways Entertainment System (installed on Boeing 777-36N(ER) and possibly others). The issue arises because the USB charging/data-transfer feature does not prevent interaction with connected USB keyboard/mouse devices, enabling physically proximate attackers ...
2018: A Banner Year for Breaches
Where to start? In 2018 the mantra became “another day, another data breach.” As a result, consumers and researchers alike are feeling “breach fatigue” and getting a bit numb to the headline. But the reality is, cybercriminals are going after personal information, credit card info and passwords...
Podcast: Breaking Down the Magecart Threat (Part One)
Threatpost editor Lindsey O’Donnell talks to Rapid7’s Chief Data Scientist, Bob Rudis, about the dangers that the Magecart group poses when it comes to e-commerce websites. Magecart, a financially motivated cyberattack group made up of several smaller gangs, has been behind recent payment-card...
A week in security (October 22 – 28)
Last week on Malwarebytes Labs, we took a look at some new Mac malware, gave you a roundup of 2018 exploit kits, and dispensed some advice on sextortion scams. We also looked at the Cathay Pacific breach, groaned at the revival of an old browser trick, and explained how voting machines and...
British Airways Data Breach Takes Off Again with 185K More Victims
British Airways said that the data breach it first reported in September is larger than previously thought. It has added an additional 185,000 victims to the official tally. The airline said that hackers may have stolen personal data connected to an additional 77,000 payment cards, including name...