Vaibhav Shukla

In new email phishing scam, hackers pose as IRS officials sending ACA tax bills

October 2, 2016 by Vaibhav Shukla 3 Comments

Hackers are impersonating the IRS and sending scam emails to victims asking them to pay balances related to health coverage for 2014

The fraudulent emails pretend to be a CP-2000 notice from the IRS, a notice the agency sends to taxpayers if income or payment information does not match information provided on their tax returns. In the email phishing scheme, the scam emails say victims owe a balance related to the Affordable Care Act health coverage requirements

http://www.beckershospitalreview.com/healthcare-information-technology/in-new-email-phishing-scam-hackers-pose-as-irs-officials-sending-aca-tax-bills.html

Yahoo reveals secret after 2 years that hackers stole data from 500 million accounts in 2014

September 24, 2016 by Vaibhav Shukla Leave a Comment

Yahoo claims that around 500 million accounts were hacked in 2014 by what it believed was a state-sponsored actor, a theft that appeared to be the world’s biggest known cyber breach by far

https://www.yahoo.com/news/yahoo-set-confirm-massive-data-breach-recode-112614946–finance.html?ref=gs

Reconnaissance Analysis

September 23, 2016 by Vaibhav Shukla 1 Comment

Webex Presentation

powerpoint

summary

Cyber-Security regulations issues by Newyork state department of financial services

September 18, 2016 by Vaibhav Shukla 4 Comments

The New York State Department of Financial Services has proposed a new regulation imposing significant new cybersecurity requirements on banks, insurance companies, and other financial services institutions regulated by DFS .

The new requirements will require such institutions to, among other things, establish and maintain a cybersecurity program, create an immediate response plan for security breaches, and designate a qualified individual to serve as Chief Information Security Officer (“CISO”). The Proposed Regulation contemplates an effective date of January 1, 2017, with compliance required 180 days later

http://www.jdsupra.com/legalnews/new-york-state-proposes-new-27798/

Hacker making up money by revealing client vulnerability through stock market

September 14, 2016 by Vaibhav Shukla 3 Comments

How can the market players play with security vulnerabilities of different firms…Ill share the news
There is always a pact between a cybersecurity researchers and the companies that when a cyberSec. firm finds a vulnerability in an organization they will report it to the organization directly and get the money in reward or as per the deal.
But a strange thing somehow happened a Cybersecurity Firm- MED SEC found alleged bug in the St. Jude Medical company implantable heart equipment.
MedSec rather than approaching the medical company it went to the shortseller firm MUDDY WATER.
The investment firm Muddy Water would make the vulnerabilities public in exchange for giving the cybersecurity firm a cut of the profits Muddy Waters made from betting against the medical device maker’s stock.
http://www.denverpost.com/2016/09/04/cybersecurity-strategy-insecure-companies-wall-street/