Some of the top security stories from the past few days

Security Roundup: Biggest data breaches, iPhone security tips, CMS vulnerabilities

This week we take a look at some of the biggest data breaches, as well as the top ten tips to keep an iPhone safe and secure.

Research published by Miriam Quick, Ella Hollowood, Christian Miles, and Dan Hampson has been turned into an interactive tool on that lets users analyse the biggest data breaches.

It found that the biggest data breaches of the past few years were Adobe, with 152 million records leaked, eBay with 145 million records leaked and JP Morgan Chase with 76 million.

Elsewhere, Kaspersky Lab has released the top ten tips for making an iPhone more secure.

Tips include using a strong password instead of a four-digit code, turning off lock screen notifications and disabling siri on a lock screen.

"How many secrets do you think your iPhone can reveal to strangers? Even when it’s in your hands, placed on the table, or being charged from a laptop it can reveal quite a few—from personal correspondence and photos, to financial information and credentials," the firm said in a statement.

A post on High-Tech Bridge states that certain CMS plugins and extensions are particularly vulnerable and insecure.

Ilia Kolochenko, High-Tech Bridge’s CEO and founder, said: "The main weakness in modern CMS sites today is not in their core code where 99 per cent of exploitable vulnerabilities were already found and fixed in the past years, but in the plugins written and supported by third-parties.

"For example it is not WordPress that is vulnerable, but the WordPress plugins, which are often produced by new coders with little experience in security. At the same time plugins are unavoidable as people will always want some specific customised features on their websites that no CMS can provide by default. Of course from time to time new vulnerabilities (or bypasses of previous patches) in major CMSs are announced, but they represent the vast minority and are usually quite complex to exploit."

Finally, IT leaders say increasing cyber threats and mounting pressure from senior management is ‘stifling growth and innovation’, according to the Fortinet Security Census 2014.

The survey findings, conducted in August 2014 with over 1,600 enterprise IT decision makers at 500-plus employee organisations globally, highlight the harsh realities of protecting businesses today.

90 per cent of CIOs say advanced persistent threats, increased scrutiny from the boardroom and demand for big data and data privacy have made the job of security noticeably harder.

61 per cent of UK ITDMs admitted abandoning a business initiative because of security fears, ranking second only to India for this trend globally. The global average is 53 per cent. 

Image source: Shutterstock

Check Also

Gemserv Acquired by Talan Group

Expert professional services firm Gemserv has been acquired by Talan, an International Consulting Group in …