Breached site notifications tested by Firefox 0 1141

Firefox is testing an in-browser notification to alert users when they are visiting a site that has experienced a data breach.

This project is in collaboration with  “Have I Been Pwned” the popular site that allows users to check their email to find out if their credentials have been stolen by hackers.

“Firefox is just looking at which sites have been been breached and we’re discussing other ways of using the data in the future,” Security researcher and creator of Have I Been Pwned Troy Hunt “They’ve got a broad reach and surfacing this info via Firefox is a great way to get more exposure around data breaches.”

Troy Hunt Tweet

While the ‘Breach Alerts’ feature will issue a warning about a website, it won’t actually prevent users from visiting it, only alert them. The extension currently includes an input field that users can use to subscribe an email address in order to receive an alert when they may be affected by a future breach. This feature has received some criticism as it collects users email data which poses an opportunity for a data breach of their own.

It has not yet been announced when the alerts will be baked into a standard Firefox release. Once the feature is rolled out en masse, however, it is poised to act as a constant reminder of hacks suffered by particular websites. Given their frequent occurrence, security breaches aren’t easy to keep track of, which is also where Firefox intends to come in.

In the latest in a long list of hacked websites, image-hosting website Imgur confirmed last week that the email addresses and passwords of 1.7 million user accounts had been stolen back in 2014.

 

Previous ArticleNext Article

Ransomware Protection Crucial to Enterprise 0 302

Ransomware

Ransomware is by far the biggest threat among Enterprises.  So what is Ransomware? It is a malicious code that blocks or encrypts the contents of a device and demands a ransom to restore access to the data.

According to research done by ESET,  Companies named ransomware their number one concern.

In response to customer needs and concerns, ESET integrated Ransomware Shield into its security solutions. ESET has long been providing its customers with very good behavior-based malware detection and also with Host-based Intrusion Prevention System (HIPS) that allows users to set custom rules for the protection against ransomware. However, should something slip past the 11 other security layers, Ransomware Shield will be automatically activated.

While ransomware infection often starts with clicking a suspicious link or a fictitious invoice, ESET found that email remains the most common distribution method.

To combat these scenarios, enter ESET Dynamic Threat Defense (EDTD). EDTD provides another layer of security for ESET products like Mail Security and Endpoint products. It utilizes a cloud-based sandboxing technology and multiple machine learning models to detect new, never before seen type of threats. In result, attachments that were classified as malicious are stripped off the email and the recipient gets information about the detection.

To learn more about how ESET can protect your business, and to book a FREE in house Cybersecurity Training Session for your employees, please sign up below.

Free Training

Interview: Addressing the Six Biggest Cybersecurity Challenges for Enterprise 0 211

cybersecurity challenges enterprise
Ken Kimani, Channel Manager of ESET East Africa, introduces the 6 biggest cybersecurity challenges for enterprises

Enterprises are under constant attack from cybersecurity threats resulting in the loss of millions in revenue annually. Factors such as ransomware, targeted attacks, insufficient network visibility, various operating systems in an organization, bad security behaviour among office staff, lack of skilled cybersecurity workforce and the level of tolerance among staff are the major causes of cyber-attacks in the country.

To mitigate these issues, ESET East Africa offers free training, suitable for all skill levels to help educate enterprises on the importance of cybersecurity.

Subscribe to our newsletter to find out more about this training, our enterprise offering and to follow our series on the 6 Biggest Cybersecurity Challenges for Enterprises.