Quest Software

AUGUST 4, 2019

Learn about the common misconceptions surrounding Office 365 data protection and the truth behind the myths.( read more ).

80

80

Data Breach Today

AUGUST 5, 2019

SSRF Appears to Fit Scenario, But Details Are Slim Capital One's enormous data breach is a subject of intense scrutiny as well as fear. A definitive post mortem is likely months away. But security professionals have ideas as to how the breach was achieved and the weaknesses that led to it.

Data breaches 226

Data breaches Security IT 226

Dark Reading

AUGUST 6, 2019

Teams need to manage perceived risks so they can focus on fighting the real fires.

Risk 81

Risk Cybersecurity 81

Krebs on Security

AUGUST 7, 2019

Incessantly annoying and fraudulent robocalls. Corrupt wireless company employees taking hundreds of thousands of dollars in bribes to unlock and hijack mobile phone service. Wireless providers selling real-time customer location data, despite repeated promises to the contrary. A noticeable uptick in SIM-swapping attacks that lead to multi-million dollar cyberheists.

Privacy 260

Privacy Communications Authentication Access 260

Speaker: Maher Hanafi, VP of Engineering at Betterworks & Tony Karrer, CTO at Aggregage

Executive leaders and board members are pushing their teams to adopt Generative AI to gain a competitive edge, save money, and otherwise take advantage of the promise of this new era of artificial intelligence. There's no question that it is challenging to figure out where to focus and how to advance when it’s a new field that is evolving everyday. 💡 This new webinar featuring Maher Hanafi, CTO of Betterworks, will explore a practical framework to transform Generative AI prototypes into

Artificial Intelligence

Security Affairs

AUGUST 8, 2019

Security experts at CheckPoint discovered a series of vulnerabilities in WhatsApp that could be exploited by attackers to tamper with conversations. A team of Check Point security researchers composed of Dikla Barda, Roman Zaikin, and Oded Vanunu devised three attacks that leverage the vulnerabilities in WhatsApp to tamper with conversations. The flaws could allow attackers to intercept and manipulate messages by WhatApp users sent in both private and group conversations.

Encryption 111

Encryption Security IT Information Security 111

AIIM

AUGUST 5, 2019

In my previous blog on change management , we examined the natural and inevitable cycle of change that people go through during times of change. We explored how resistance to change is often a more troubling problem than even the most complicated tangle of technology, and how project managers and systems integrators need to account for these human factors.

Paper 90

Paper Communications Digital transformation IT 90

Krebs on Security

AUGUST 5, 2019

If you bank online and choose weak or re-used passwords, there’s a decent chance your account could be pilfered by cyberthieves — even if your bank offers multi-factor authentication as part of its login process. This story is about how crooks increasingly are abusing third-party financial aggregation services like Mint , Plaid , Yodlee , YNAB and others to surveil and drain consumer accounts online.

Passwords 250

Passwords Risk Authentication Phishing 250

WIRED Threat Level

AUGUST 6, 2019

Fredrick Brennan is appalled by the notorious chat site’s links to right-wing extremism and mass shootings. Inside his tortured journey through the web’s cesspool and his attempt at redemption.

IT 107

IT Security 107

Data Breach Today

AUGUST 6, 2019

Points to the Need to Make IoT Devices More Secure Microsoft warned on Monday that Russia-linked attackers are gaining access to corporate networks through poorly configured devices, such as office printers and VOIP phones. The remedy is paying more attention to deployed IoT devices, including establishing security policies and regular testing.

IoT 221

IoT Access Security 221

Advertisement

Generative AI is upending the way product developers & end-users alike are interacting with data. Despite the potential of AI, many are left with questions about the future of product development: How will AI impact my business and contribute to its success? What can product managers and developers expect in the future with the widespread adoption of AI?

Analytics

AIIM

AUGUST 7, 2019

When I was a kid in grade school, I always hated homework because it often stood in the way of going outside to play with my friends. I can remember joking around with them and saying that we needed to build a robot to do our homework for us. That way, we could spend our after school time riding bikes and playing together. At the time, we were just kids being kids - we didn't think that we could actually build something like that.

Artificial Intelligence 90

Artificial Intelligence ROT Content services Libraries 90

Krebs on Security

AUGUST 9, 2019

A ransomware outbreak that hit QuickBooks cloud hosting firm iNSYNQ in mid-July appears to have started with an email phishing attack that snared an employee working in sales for the company, KrebsOnSecurity has learned. It also looks like the intruders spent roughly ten days rooting around iNSYNQ’s internal network to properly stage things before unleashing the ransomware. iNSYNQ ultimately declined to pay the ransom demand, and it is still working to completely restore customer access

Phishing 208

Phishing Ransomware Sales Encryption 208

Elie

AUGUST 7, 2019

In this talk we look into Gmail telemetry to illuminate the differences between phishing groups in terms of tactics and targets.

Phishing 114

Phishing 114

Data Breach Today

AUGUST 9, 2019

RSA's Holly Rollo on the Importance of Third-Party Risk Management Organizations going through a digital transformation need to make sure they develop a sound third-party risk management strategy, says RSA's Holly Rollo, who discusses best practices.

Digital transformation 217

Digital transformation Security Risk 217

Advertisement

Many organizations today are unlocking the power of their data by using graph databases to feed downstream analytics, enahance visualizations, and more. Yet, when different graph nodes represent the same entity, graphs get messy. Watch this essential video with Senzing CEO Jeff Jonas on how adding entity resolution to a graph database condenses network graphs to improve analytics and save your analysts time.

Analytics

AIIM

AUGUST 8, 2019

Several months ago, I developed a nagging pain in my right shoulder. Nothing much at first, but over time, it got worse. Initially, I ignored the pain and hoped it would resolve itself. But it didn’t. So I tried several common over-the-counter remedies; the ones that everyone takes. They provided some improvement, but none resolved my problem. Eventually, the pain began to affect my ability to use my arm effectively.

Healthcare 86

Healthcare IT Digital transformation 86

Security Affairs

AUGUST 5, 2019

A crook involved in a spear phishing scheme and that was in Kenya is facing up to 20 years in the US federal prison for stealing thousands of dollars from US universities. Amil Hassan Raage, 48, pleaded guilty last week in a southern California court to fraudulently receiving almost $750,000 as part of a spear phishing scheme. The man charged of one count of conspiracy to commit wire fraud risks a maximum of 20 years jail sentence. “Amil Hassan Raage pleaded guilty to fraudulently receiv

Phishing 98

Phishing Risk Government Security 98

Micro Focus

AUGUST 6, 2019

90% of the data on the internet has been created since 2016, according to an IBM Marketing Cloud study. People, businesses, and devices have all become data factories that are pumping out incredible amounts of information to the web each day. This post has been tracking the growth of data created on the internet for. View Article.

Marketing 95

Marketing Cloud Archiving 95

Data Breach Today

AUGUST 8, 2019

Former Secret Service agent Jeff Dant now heads fraud operations and intelligence for the financial crimes unit at BMO Financial Group. Which threats and threat actors does he focus on, and how does his law enforcement experience help? Dant previews a session at the upcoming Cybersecurity Summit in New York.

Cybersecurity 216

Cybersecurity 216

Advertisement

Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

Risk

Elie

AUGUST 8, 2019

This talk provides a step-by-step introduction on how to use deep learning to perform AES side-channel attacks. After providing a brief overview of what side channels and deep-learning are, we walk you through how to use Tensorflow to build an end-to-end attack that will recover TinyAES keys from SMT32F415 chips using deep learning. Along the way we will discuss what work and what doesn't based on our experience attacking many hardware AES implementations over the last few years.

91

91

WIRED Threat Level

AUGUST 9, 2019

Sue Gordon's departure is the latest sign that US national security might be stretching its leaders too thin—and risks putting the wrong people into roles that American lives depend upon.

Risk 94

Risk Security IT 94

Thales Cloud Protection & Licensing

AUGUST 5, 2019

Preparing for Data Security in the Quantum Computing Era. Each passing day brings the world closer to the exciting reality of powerful quantum computing. Weather prediction, air traffic control, urban planning, defense strategies, medical research and so much more will be affected by the new era of computing power in ways we can’t even yet predict. But one thing is foreseeable: along with this greater power, some of today’s foundational crypto algorithms will be broken by quantum computers, maki

Computer and Electronics 90

Computer and Electronics Risk Paper Security 90

Data Breach Today

AUGUST 6, 2019

Software Bug Meant Some Numbers Were Stored Unencrypted Monzo, a U.K. mobile-only bank that plans to expand into the U.S., alerted about 480,000 customers to change their PINs this week after the company's security team found that a software bug meant some numbers were stored unencrypted in plaintext.

Security 214

Security 214

Advertisement

Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.

Security

IBM Big Data Hub

AUGUST 8, 2019

For the past nine years, Stack Overflow , a question-and-answer website for programmers, has polled developers to understand what technologies they are using and to find out what technologies they want to work with next. This year, the nearly 90,000 survey participants revealed that, once again, Python has risen in the ranks of language popularity.

IT 92

IT 92

Elie

AUGUST 7, 2019

With over 1.4 billion active users and million of companies entrusting it to handle their email, Gmail has a unique vantage point on how phishing groups operate. In this talk we look into Gmail telemetry to illuminate the differences between phishing groups in terms of tactics and targets. Then, leveraging insights from the cognitive and neuro-science fields on user's susceptibility and decision-making, we discuss why different types of users fall for phishing and how those insights can be used

Phishing 88

Phishing IT 88

Security Affairs

AUGUST 3, 2019

Dragonblood researchers found two new weaknesses in WPA3 protocol that could be exploited to hack WPA3 protected WiFi passwords. passwords. A group of researchers known as Dragonblood (Mathy Vanhoef and Eyal Ronen ) devised new methods to hack WPA3 protected WiFi passwords by exploiting two new vulnerabilities dubbed Dragonblood flaws. We first met this team of experts in April when they discovered weaknesses in WPA3 that could be exploited to recover WiFi passwords by abusing timing or cache-ba

Passwords 93

Passwords Authentication Encryption Paper 93

Data Breach Today

AUGUST 7, 2019

Scheme Involved Unlocking 2 Million Smartphones to Enable Fraud The Justice Department has indicted two men on charges of paying more than $1 million in bribes to AT&T employees who helped plant malware on the carrier's network and access the company's internal systems. The complicated scheme involved unlocking 2 million smartphones from AT&T's network, prosecutors say.

Access 205

Access 205

Advertisement

Start-ups & SMBs launching products quickly must bundle dashboards, reports, & self-service analytics into apps. Customers expect rapid value from your product (time-to-value), data security, and access to advanced capabilities. Traditional Business Intelligence (BI) tools can provide valuable data analysis capabilities, but they have a barrier to entry that can stop small and midsize businesses from capitalizing on them.

Analytics

erwin

AUGUST 7, 2019

A data catalog benefits organizations in a myriad of ways. With the right data catalog tool, organizations can automate enterprise metadata management – including data cataloging, data mapping, data quality and code generation for faster time to value and greater accuracy for data movement and/or deployment projects. Data cataloging helps curate internal and external datasets for a range of content authors.

Metadata 90

Metadata Government GDPR Risk 90

Schneier on Security

AUGUST 8, 2019

This wasn't a small operation : A Pakistani man bribed AT&T call-center employees to install malware and unauthorized hardware as part of a scheme to fraudulently unlock cell phones, according to the US Department of Justice. Muhammad Fahd, 34, was extradited from Hong Kong to the US on Friday and is being detained pending trial. An indictment alleges that "Fahd recruited and paid AT&T insiders to use their computer credentials and access to disable AT&T's proprietary locking softwar

Government 90

Government Access 90

Data Matters

AUGUST 9, 2019

The UK’s Information Commissioner’s Office (“ ICO ”) has recently issued a draft version of its statutory code of practice for sharing of personal data between controllers under the GDPR and the UK Data Protection Act 2018 (“ DPA ”) (the “ Draft Code ”) which provides a number of practical recommendations which controllers should take into account when sharing personal data.

GDPR 79

GDPR Personal data Compliance Privacy 79