--- title: "Cybersecurity News Updates Of The Week – May | Phish Protection" description: "Digital Space is full of random activities which are taking place every day, new breaches, cyber-attacks, laws & regulations etc." image: "https://phishprotection.com/og/blog/cybersecurity-news-updates-of-the-week-may.png" canonical: "https://phishprotection.com/blog/cybersecurity-news-updates-of-the-week-may/" --- Quick Answer Digital Space is full of random activities which are taking place every day, new breaches, cyber-attacks, laws & regulations etc. Everybody needs to be updated with all news related to anti phishing security and events taking place around them to protect their information systems, networks and organizations from external and internal threat vectors. Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-news-updates-of-the-week-may%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20News%20Updates%20Of%20The%20Week%20%26%238211%3B%20May&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-news-updates-of-the-week-may%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-news-updates-of-the-week-may%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-news-updates-of-the-week-may%2F&title=Cybersecurity%20News%20Updates%20Of%20The%20Week%20%26%238211%3B%20May "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20News%20Updates%20Of%20The%20Week%20%26%238211%3B%20May&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-news-updates-of-the-week-may%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2019/05/spear-phishing-prevention-2463.jpg) _Digital Space is full of random activities which are taking place every day, new breaches, cyber-attacks, laws & regulations etc_. Everybody needs to be updated with all news related to [anti phishing security](/) and events taking place around them to protect their information systems, networks and organizations from external and internal threat vectors. Here are all the latest news updates, curated to provide information about everything that is happening in the cyberspace: > ### \*\*\*\*8 million People Suffer a Leak of Personal Information Through Unprotected Database Satyam Jain, a security researcher, found out that an Elasticsearch database, which was hosted by Amazon, was [unprotected and publicly accessible](https://www.bleepingcomputer.com/news/security/unsecured-survey-database-exposes-info-of-8-million-people/). This resulted in a leak of personal information of about 8 million people in the US. #### Which information was leaked? The personal information of people like name, address, email Id, contact details, birth date, gender, and IP address was leaked. #### Who owns the database? After thorough researching, it was found that the database was owned by an online marketing company called PathEvolution, whose parent company is Ifficient, another online marketing firm. Amazon hosted the database. #### Remedial measures that are being undertaken Ifficient is notifying all the affected people. It is also providing free identity monitoring services to all the impacted individuals. > ### \*\*\*\* Cyber Attack on Stack Overflow’s Production System Stack Overflow, a popular forum website which is accessed by a large number of programmers as well as computer professionals, has reported a breach in its production system, on May 11, by the hackers. Stack Overflow has just disclosed that hackers have [breached into their production systems](https://www.zdnet.com/article/stack-overflow-says-hackers-breached-production-systems/). Contrary to the earlier statement by Stack Overflow, which reported no user data being stolen because of its production system breach, the _company has discovered that 250 public network user’s information was exposed in the incident._ #### Which data has been targeted by hackers? Production System data was the main target of the hackers, as reported by the company. But, there has been no data leak of any customer or user in this incident. More details are expected when the company concludes an investigation into the attack. Mary Ferguson, VP of Engineering at Stack Overflow was quoted saying: “We have confirmed that some level of production access was gained on May 11\. We discovered and investigated the extent of the access and are addressing all known vulnerabilities.” > ### \*\*\*\* Senator Chuck Schumer Is Pushing For New Bill Which Will Help Filter Out Robocalls /Spam Calls #### What Are Spam/ Robocalls? Spam calls are those non-solicited or irrelevant calls dialed to a large number of recipients. These are called spam calls because the recipient, on the other hand, does not provide expressed consent or willingness to receiving those calls, the call messages ignore the recipient’s identity or privacy and context and are not relevant to a majority of the recipients. #### How is the situation expected to change soon? Fortunately, Senator Chuck Schumer is pushing for a new bill designed to filter out most of these [robocalls or spam calls](https://www.newsday.com/news/region-state/robocalls-legislation-schumer-1.30974054). It would also help improve the security posture of telecommunication enterprises’ architecture. He further explained that the fight against spam calls till now has been like “offensive warfare-defensive warfare” where these spammers continuously try to find new ways and exploit loopholes in the defensive countermeasures of agencies dealing with such activities. The worst is that spam calls often target the most vulnerable receivers at the end, says Sen. Schumer while proposing the legislation. #### The new bill The new bill, if sanctioned by Congress, would help telecommunication enterprises to filter out a high proportion of these spam calls. The governing act behind this new regulation is called the _“Telephone Robocall Abuse Criminal Enforcement and Deterrence”_ Act or the “TRACED” Act. > ### \*\*\*\* A Flawed Datascript Compels Salesforce To Block Access to Its Services Dated: May 18, 2019 Salesforce, a CRM and **cloud solutions** company, made some changes to its production environment, due to which, a [defective database script](https://www.zdnet.com/article/faulty-database-script-brings-salesforce-to-its-knees/) gave access permission, related to the company’s data, to all the employees and other users. The permission was not just read-only; employees got permission to write also. #### What is Its Impact? This malfunctioning of the script made the company’s data vulnerable, allowing malicious employees to access and modify it. The company suffered a massive loss as it had to take down all its services from Europe and North America. > ### \*\*\*\* Cybercriminal Forum Gets Targeted by Hackers OGUSERS is an online forum for cybercriminals which is used mostly by the hackers who sell account details, and by the cyber criminals for carrying out SIM Swap attacks. This forum was attacked by hackers leading to a compromise of private user data. #### Which data is breached? The data which has been stolen, consist**s** of the usernames, email IDs, hashed passwords, personal messages, as well as IP addresses. There is a data loss of around 113,000 users. #### Further impacts of the breach ![Spear phishing prevention](https://media.mailhop.org/phishprotection/images/2019/05/spear-phishing-prevention-2463.jpg) [This breach](https://cyware.com/news/cybercrime-forum-ogusers-gets-hacked-attackers-steal-data-f067bcfc) has led to a free run by the competitors of OGUSERS. _Another hacking forum RaidForums put up the stolen data on its website for free download._ > ### \*\*\*\* Disclosure: TeamViewer was under a cyber attack by Chinese Cybercriminals in 2016 **TeamViewer**, a German Software Developer firm, which is behind the world-famous remote desktop software TeamViewer, has reported recently that in the year 2016, it was the victim of a Cyberattack which was carried out by a team of Chinese hackers. Though the attack was identified immediately and the attackers could not do much damage. “In autumn 2016, [TeamViewer was the target](https://www.scmagazine.com/home/security-news/cybercrime/teamviewer-announced-it-was-the-victim-of-a-cyber-attack-which-took-place-in-2016-although-some-sources-claim-that-hackers-were-in-the-firms-network-as-early-as-2014/) of a cyber-attack. Our systems detected the suspicious activities in time to prevent any major damage,” TeamViewer’s spokesperson said. #### Which data was breached? It was also reported by the company spokesperson that there was no loss of user data because of this attack and the computer systems of the customers remained unaffected. #### Why was it not disclosed earlier? The company decided to withhold the information about the attack because there was no loss of personal data. > ### \*\*\*\* HCL Exposes Sensitive Information Online Indian multinational IT services giant HCL Technologies has [inadvertently exposed](https://threatpost.com/data-leak-hcl-customer-info/144919/) its employee’s passwords, some confidential and sensitive project reports and other personal data of many of its customers and employees on various public subdomains owned by HCL. It has also exposed online, sensitive HR-related information relating to the employee along with customer details, as reported by a security researcher from UpGuard. _This data was available for download openly at the HCL-owned domain._ #### What has happened? Indian multinational IT services giant HCL Technologies has inadvertently exposed its employee’s passwords, some confidential and sensitive project reports and other personal data of many of its customers and employees on various public subdomains owned by HCL. #### Following counter-measure was taken by HCL Though there is so far no evidence that the cybercriminals were able to use the exposed HCL employee credentials to exploit any of HCL customers. But as this information reached HCL, the firm took down the affected sub-domains which were publicly disclosed. > ### \*\*\*\* Homepage of The AT&T website shows a Breach Warning Which Never Happened A message was displayed by AT&T homepage on Monday, which also contained an ominous banner, warning users that a data breach may affect them. This message directed users to an inappropriate FAQ page, to check whether the account was affected or not. On Tuesday, this message suddenly disappeared, but the FAQ page was still active. This whole incident [caused a panic scene](https://www.vice.com/en%5Fus/article/nea35k/att-mistake-data-breach) in other social media sites too. It also brought to light how companies post pre-written FAQ statements. It seems like the message was inadvertently posted to the website during routine testing activities, and it was quickly taken down as soon as people started reporting it. ### Protect Your Organization - [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/) - [See how Phish Protection blocks threats in real time](/anti-phishing-tools/) ## Topics [ Cybersecurity ](/tags/cybersecurity/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Intermediate 3m 13,000 Singapore-based students affected as a threat actor hacked into their devices! Aug 16, 2024 ](/blog/13000-singapore-based-students-affected-as-a-threat-actor-hacked-into-their-devices/)[ Intermediate 3m The 2024 Multi-Nation Elections Need to Steer Clear of Highly Potent Cyber Menaces May 9, 2024 ](/blog/2024-multi-nation-elections-cyber-threats-stay-vigilant/)[ Intermediate 6m 7 Commonly Overlooked But Crucial Security Threats That You Might be Ignoring Feb 6, 2023 ](/blog/7-commonly-overlooked-but-crucial-security-threats-that-you-might-be-ignoring/)[ Intermediate 17m 9+ Cybersecurity Software Solutions For Businesses To Use May 30, 2022 ](/blog/9-cybersecurity-software-solutions-businesses/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity News Updates Of The Week – May","description":"Digital Space is full of random activities which are taking place every day, new breaches, cyber-attacks, laws & regulations etc.","url":"https://phishprotection.com/blog/cybersecurity-news-updates-of-the-week-may/","datePublished":"2019-05-27T11:39:22.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2019-05-27T11:39:22.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-news-updates-of-the-week-may/"},"articleSection":"intermediate","keywords":"Cybersecurity","wordCount":1311,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2019/05/spear-phishing-prevention-2463.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity News Updates Of The Week – May","item":"https://phishprotection.com/blog/cybersecurity-news-updates-of-the-week-may/"}]} ```