Weissman's World

APRIL 11, 2025

If youre keeping score at home, you may remember that Im speaking at InfoNEXT 2025 in a couple of weeks moderating whats shaping up to be a great panel on the subject of Information Governance and Business Resiliency. I certainly hope Ill see you there. But if youre on the fence about whether to… Read More » Going to InfoNEXT? ARMA Has a Deal for You The post Going to InfoNEXT?

Information governance 272

Information governance Government 272

Security Affairs

APRIL 11, 2025

Experts warn of brute-force login attempts on PAN-OS GlobalProtect gateways following increased scanning activity on its devices. Palo Alto Networks reports brute-force login attempts on PAN-OS GlobalProtect gateways. The security firm pointed out that no known vulnerability has been exploited, but monitoring and analysis continue. “Our teams are observing evidence of activity consistent with password-related attacks, such as brute-force login attempts, which does not indicate exploitation

Passwords 209

Passwords Access Security IT 209

Security Affairs

APRIL 6, 2025

Oracle confirms a cloud data breach, quietly informing customers while downplaying the impact of the security breach. Oracle confirms a data breach and started informing customers while downplaying the impact of the incident. A threat actor using the moniker rose87168 claimed to possess millions of data lines tied to over 140,000 Oracle Cloud tenants, including encrypted credentials.

Data breaches 311

Data breaches Cloud Encryption Communications 311

Collaboration 2.0

APRIL 7, 2025

More people can now have a conversation with Gemini about what's on their screen, including if they have the camera viewfinder on.

325

325

Speaker: Frank Taliano

Document-heavy workflows slow down productivity, bury institutional knowledge, and drain resources. But with the right AI implementation, these inefficiencies become opportunities for transformation. So how do you identify where to start and how to succeed? Learn how to develop a clear, practical roadmap for leveraging AI to streamline processes, automate knowledge work, and unlock real operational gains.

IT

Data Matters

APRIL 11, 2025

On April 9, 2025 the European Commission adopted a communication on the so-called AI Continent Action Plan - its strategy to shape the next phase of AI development in Europe, with consultation to follow. The Commissions declared objective is to transform the EU into a global leader in AI by fostering innovation, ensuring trustworthy AI, and enhancing competitiveness while safeguarding democratic values and cultural diversity.

Communications 148

Communications Privacy IT 148

Security Affairs

APRIL 5, 2025

A now-patched flaw in Verizon s iOS Call Filter app exposed call records of millions. No abuse found. Only phone numbers and timestamps were at risk. A now-patched vulnerability in Verizon s iOS Call Filter app could have been exploited to harvest the call records of millions of Americans. Verizon’s Call Filter app allows users to identify and manage unwanted calls, such as spam and robocalls.

Metadata 257

Metadata Risk Passwords Authentication 257

Schneier on Security

APRIL 11, 2025

Microsoft is reporting that its AI systems are able to find new vulnerabilities in source code: Microsoft discovered eleven vulnerabilities in GRUB2, including integer and buffer overflows in filesystem parsers, command flaws, and a side-channel in cryptographic comparison. Additionally, 9 buffer overflows in parsing SquashFS, EXT4, CramFS, JFFS2, and symlinks were discovered in U-Boot and Barebox, which require physical access to exploit.

Access 115

Access Security IT 115

Collaboration 2.0

APRIL 9, 2025

Agentic AI is all the rage, but what can it actually do for you or your company? Here's everything you need to know.

Access 324

Access IT 324

KnowBe4

APRIL 11, 2025

Reliable energy is the backbone of any modern society. It powers our homes, industries, and economies. But what happens when this essential infrastructure becomes a target for cyberattacks? In Europe, the energy sector is facing an escalating threat landscape, with potentially dire consequences.

Risk 71

Risk Cybersecurity IT Security awareness 71

Advertiser: ZoomInfo

AI adoption is reshaping sales and marketing. But is it delivering real results? We surveyed 1,000+ GTM professionals to find out. The data is clear: AI users report 47% higher productivity and an average of 12 hours saved per week. But leaders say mainstream AI tools still fall short on accuracy and business impact. Download the full report today to see how AI is being used — and where go-to-market professionals think there are gaps and opportunities.

Sales

Data Breach Today

APRIL 9, 2025

Tech Giant Says Threat Actors Are Exploiting a Flaw in Widely-Targeted Windows Tool Ransomware threat actors are exploiting a zero-day vulnerability discovered in a highly targeted Windows logging system tool in a campaign in part targeting U.S. IT and real estate sectors, Microsoft confirmed in a Tuesday blog post urging customers to apply available patches.

Ransomware 264

Ransomware IT 264

Security Affairs

APRIL 5, 2025

Port of Seattle is notifying 90,000 people of a data breach after personal data was stolen in a ransomware attack in August 2024. In August 2024, a cyber attack hit the Port of Seattle , which also operates the Seattle-Tacoma International Airport. The attack impacted websites and phone systems. According to The Seattle Times, the cyber attack disrupted travel plans.

Data breaches 232

Data breaches Ransomware Manufacturing Education 232

The Guardian Data Protection

APRIL 5, 2025

The bankruptcy of genealogy company 23andMe has resulted in a fire sale of millions of peoples genetic information and theres no shortage of eager buyers with questionable motives Ever thought of having your genome sequenced? Me neither. But it seems that at least 15 million souls have gone in for it and are delighted to know that they have Viking ancestry, or discombobulated to find that they have siblings of whom they were hitherto unaware.

Data breaches 69

Data breaches Sales IT 69

Collaboration 2.0

APRIL 8, 2025

Google just added a powerful new feature to Android: The Linux terminal. It's easier than you think to use and it unlocks a whole new level of control.

IT 321

IT 321

Speaker: Ben Epstein, Stealth Founder & CTO | Tony Karrer, Founder & CTO, Aggregage

When tasked with building a fundamentally new product line with deeper insights than previously achievable for a high-value client, Ben Epstein and his team faced a significant challenge: how to harness LLMs to produce consistent, high-accuracy outputs at scale. In this new session, Ben will share how he and his team engineered a system (based on proven software engineering approaches) that employs reproducible test variations (via temperature 0 and fixed seeds), and enables non-LLM evaluation m

Thales Cloud Protection & Licensing

APRIL 7, 2025

Identity at a Crossroads: Why Existential Identity Matters madhav Tue, 04/08/2025 - 04:31 Imagine waking up one morning to find your digital identity compromised your accounts hijacked, your access revoked, and your data in someone elses hands. In an era where identities extend beyond individuals to devices, applications, and AI-driven systems, managing them has never been more critical or complex.

Authentication 62

Authentication Passwords Access Digital transformation 62

Data Breach Today

APRIL 10, 2025

Also, Oracle Denies Cloud Breach, Blames Hack on Obsolete Servers This week, Port of Seattle notified victims, Oracle blamed hack on obsolete servers, Google and Microsoft released April patches, WK Kellogg breached, six arrested in Spain for AI-investment scam, Scattered Spider's "King Bob" pleaded guilty, SmokeLoader users busted.

Cloud 162

Cloud 162

AIIM

APRIL 10, 2025

The fact is, the world of tech is and always has been incredibly tribal. Those of us in the information and document management world tend to stay in it and never stray elsewhere.

IT 132

IT Artificial Intelligence 132

Collaboration 2.0

APRIL 11, 2025

With Recall now in preview mode for Windows Insiders on Copilot+ PCs, Microsoft is testing the waters for an official release.

IT 304

IT 304

Advertisement

The DHS compliance audit clock is ticking on Zero Trust. Government agencies can no longer ignore or delay their Zero Trust initiatives. During this virtual panel discussion—featuring Kelly Fuller Gordon, Founder and CEO of RisX, Chris Wild, Zero Trust subject matter expert at Zermount, Inc., and Principal of Cybersecurity Practice at Eliassen Group, Trey Gannon—you’ll gain a detailed understanding of the Federal Zero Trust mandate, its requirements, milestones, and deadlines.

Cybersecurity

Troy Hunt

APRIL 5, 2025

After an unusually long day of travelling from Iceland, we've finally made it to the land of Guinness, Leprechauns, and a tax haven for tech companies. This week, there are a few more lessons from the successful phish against me the previous week, and in happier news, there is some really solid progress on the HIBP UX rebuild. We spent a bunch of time with Stefan and Ingiber (the guy rebuilding the front end) whilst in Reykjavik and now have a very clear plan mapped out to get this finished

Phishing 63

Phishing IT 63

Data Breach Today

APRIL 10, 2025

Incident Reporting Low, Government Study Finds Ransomware attacks targeting U.K. organizations continued to rise last year concluded the British government despite a low reporting rate by victims. The findings come as the government is considering banning public sector organization from paying ransom and mandating incident reporting.

Ransomware 147

Ransomware Government 147

Security Affairs

APRIL 12, 2025

Threat actors are exploiting a vulnerability inthe OttoKitWordPress plugin, a few hours after public disclosure. Threat actors are exploiting a recently discovered vulnerability, tracked asCVE-2025-3102(CVSS score of 8.1) inthe OttoKit WordPress plugin (formerly SureTriggers), a few hours after public disclosure. An attacker can trigger the vulnerability to create malicious administrator users when the plugin is not configured with an API key.

151

151

Adam Shostack

APRIL 5, 2025

Troy Hunt has a good post about being phished. Good on Troy for being transparent, and he talks about being tired and jet lagged, and that deserves sympathy. Attackers are sneaky. Troy honorably admits that he overrode 1Password and filled out the phishing site. In this post, I want to share why I think I wouldnt fall for this, even jet lagged. That defense is intensive sorting into folders, enabled by custom email addresses.

Phishing 52

Phishing IT 52

Advertisement

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

Passwords

Collaboration 2.0

APRIL 7, 2025

From developing staff resilience to making people feel comfortable, here's how to prepare your employees for the AI transformation.

301

301

OpenText Information Management

APRIL 9, 2025

A couple of weeks ago, Harley Adams and I reviewed Dark Reading's state of identity threat detection and response (ITDR) report, walking through several of the more interesting stats. OpenText commissioned Dark Reading to survey executives and hands-on security professionals, and this report is the result of that survey. It includes responses from individuals from 117 organizations in the U.S.

Authentication 52

Authentication Access Risk Security 52

Data Breach Today

APRIL 10, 2025

3 Key Strategies for Security Leaders for Managing On-Premises and Cloud Identities Machine identities now outnumber human identities 45:1, creating new security risks in an increasingly digital world. As organizations expand across hybrid and multi-cloud environments, fragmented identities become harder to manage, requiring proactive strategies to enhance security and governance.

Cloud 147

Cloud Risk Government Security 147

AIIM

APRIL 8, 2025

The buzz from the inaugural AI+IM Global Summit is still resonating through the AIIM community, with one topic dominating conversations: agentic AI.

Artificial Intelligence 118

Artificial Intelligence 118

Speaker: Yohan Lobo and Dennis Street

In the accounting world, staying ahead means embracing the tools that allow you to work smarter, not harder. Outdated processes and disconnected systems can hold your organization back, but the right technologies can help you streamline operations, boost productivity, and improve client delivery. Dive into the strategies and innovations transforming accounting practices.

KnowBe4

APRIL 7, 2025

Check out the March updates in Compliance Plus so you can stay on top of featured compliance training content.

Compliance 114

Compliance Security awareness Security 114

Collaboration 2.0

APRIL 8, 2025

Microsoft is working on a fix, but here's what you can do if you get a BSOD in the meantime.

Security 298

Security 298

OpenText Information Management

APRIL 11, 2025

Lets face it: plain old SMS is starting to feel. well, a little 2005. Customers today expect more from their omnichannel messaging experiences and guess what? OpenText Core Messaging is stepping up in a big way. Were excited to announce that rich communication channels such as WhatsApp and RCS are on the horizon and theyre bringing with them a whole new world of interactive, secure, visually rich business messaging.

Customer Experience 52

Customer Experience Communications Security Access 52