Security Affairs

AUGUST 12, 2023

UK govt contractor MPD FM left an open instance that exposed employee passports, visas, and other sensitive data MPD FM, a facility management and security company providing services to various UK government departments, left an open instance that exposed employee passports, visas, and other sensitive data.

Retail 246

Retail Encryption Access Security 246

Krebs on Security

JUNE 3, 2019

For almost the past month, key computer systems serving the government of Baltimore, Md. ” That vulnerability exists in Windows XP, Windows 2003, Windows 7, Windows Server 2008 R2, and Windows Server 2008. have been held hostage by a ransomware strain known as “ Robbinhood.”

Ransomware 237

Ransomware Security Government Encryption 237

Krebs on Security

JANUARY 8, 2024

government said Grichishkin and three others set up the infrastructure used by cybercriminals between 2009 to 2015 to distribute malware and attack financial institutions and victims throughout the United States. . Icamis promoted his services in 2003 — such as bulk-domains[.]info w s, icamis[.]ru ru , and icamis[.]biz.

Computer and Electronics 263

Computer and Electronics Passwords Government Sales 263

Data Protection Report

JUNE 22, 2022

UK GDPR Reform: government publishes response to consultation – likely to form basis of forthcoming UK Data Reform Bill. The Department for Culture, Media and Sport (DCMS) has finally published the UK government’s long-awaited response to the consultation on the future of the UK data protection regime. Reform of Article 22.

GDPR 144

GDPR Government Personal data Risk 144

DLA Piper Privacy Matters

SEPTEMBER 10, 2021

The government has today published its eagerly awaited Consultation Paper on Reforms to the UK Data Protection Regime – ‘Data: A New Direction’ (“ Consultation Paper ”), setting out the specific areas for regulatory reform of the UK’s data protection regime. Reducing barriers to responsible innovation.

Government 104

Government Paper Personal data GDPR 104

Krebs on Security

JULY 26, 2023

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov , the former founder and CEO of one of Russia’s largest cybersecurity firms. Ilya Sachkov. Image: Group-IB.com.

Cybersecurity 234

Cybersecurity Military Communications Ransomware 234

Security Affairs

JANUARY 24, 2023

The list is extracted by the e FBI Terrorist Screening Center (TSC) , a database used since 2003 by US feds and other agencies to track individuals who are “known or reasonably suspected of being involved in terrorist activities.” The US ACLU has for many years fought against the use of a secret government no-fly list without due process.

Archiving 246

Archiving File names Access Authentication 246

Schneier on Security

MAY 11, 2022

Georgetown has a new report on the highly secretive bulk surveillance activities of ICE in the US: When you think about government surveillance in the United States, you likely think of the National Security Agency or the FBI. You might even think of a powerful police agency, such as the New York Police Department.

Government 139

Government Access IT Security 139

Hunton Privacy

DECEMBER 7, 2022

PECR applies to direct marketing activities even where personal data is not involved.

Marketing 108

Marketing Personal data Communications Privacy 108

Schneier on Security

JULY 7, 2022

Since its founding in 2003, ICE has not only been building its own capacity to use surveillance to carry out deportations but has also played a key role in the federal government’s larger push to amass as much information as possible about all of our lives.

Privacy 134

Privacy Government Access IT 134

Krebs on Security

JULY 31, 2024

org — was registered in 2003 by the Anti-Phishing Working Group (APWG), a cybersecurity not-for-profit organization that closely tracks phishing attacks. For example, Infoblox found cybercriminal groups using a Sitting Duck domain called clickermediacorp[.]com com , which was initially registered on behalf of CBS Interactive Inc.

Phishing 309

Phishing Authentication IT Access 309

IG Guru

JANUARY 23, 2023

Joel Westphal’s presentation looks at the lessons learned from capturing, managing, and archiving the largest digital collection of war records in our nation’s history, The Iraqi War Collection located at United States CENTRAL COMMAND (USCENTCOM), which holds 50+ TB of data from the years 2003 to 2010.

Archiving 97

Archiving Information governance Government 97

Security Affairs

SEPTEMBER 1, 2023

The flaw affects a wide range of Windows operating systems, including older versions like Windows XP and Windows Server 2003, which were still in use by many organizations at the time of its discovery. The widespread presence increased the potential attack surface and made it a critical concern for security professionals.

Phishing 326

Phishing Ransomware Search queries Access 326

Schneier on Security

OCTOBER 3, 2019

Data Collected: 22 Vendors 1,294 Products 4,956 Firmware versions 3,333,411 Binaries analyzed Date range of data: 2003-03-24 to 2019-01-24 (varies by vendor, most up to 2018 releases). [.]. It represents a wide range of either found in the home, enterprise or government deployments.

IoT 92

IoT Security Data collection Government 92

Schneier on Security

FEBRUARY 8, 2024

It specifically calls out the list of common software weaknesses tracked by the MITRE Corporation under a government contract. In 2003, I wrote : Clearly this isn’t all or nothing. Section 6 considers how to define flaws above the minimum floor and how to limit that liability with a safe harbor. Full paper here.

Paper 130

Paper Cybersecurity Government Security 130

Preservica

JANUARY 22, 2020

In 2002, I accepted the position of Statewide Records and Forms Coordinator for the Wisconsin Department of Electronic Government (DEG). DEG didn’t survive the 2003 change in administration and its core functions were re-absorbed back into the Department of Administration technology divisions. Playing Catch Up.

Government 49

Government Digital preservation Records Management Archiving 49

John Battelle's Searchblog

MARCH 5, 2010

Way back in November of 2003, when I was a much younger man and the world had yet to fall head over heels in love with Google, I wrote a post called The Database of Intentions. My mistake in 2003 was to assume that the entire Database of Intentions was created through our interactions with traditional web search.

Search queries 102

Search queries Marketing Archiving IT 102

John Battelle's Searchblog

MARCH 5, 2010

Way back in November of 2003, when I was a much younger man and the world had yet to fall head over heels in love with Google, I wrote a post called The Database of Intentions. My mistake in 2003 was to assume that the entire Database of Intentions was created through our interactions with traditional web search.

Search queries 99

Search queries Marketing Archiving IT 99

The Guardian Data Protection

JULY 24, 2021

Many people will have watched the government flip-flopping over whether some kind of public or commercially sourced proof of vaccination status should be required before access to a whole host of everyday activities from attending a nightclub or sports event to a trip to the pub or the shops.

IT 76

IT Government Access 76

AIIM

NOVEMBER 7, 2019

That is to say, where should the information management/records management/information governance job function be located within an organizational structure? Information Governance “Island”. IG Initiative and Gartner from 2003 ). Information Management “Umbrella”.

Records Management 91

Records Management Information governance Digital transformation Government 91

Archives Blogs

NOVEMBER 30, 2017

When budget cuts forced her to curtail the traditional publications used for publicity and outreach, Rankin took the pioneering step of employing radio to communicate with prospective customers in the local government and their constituents. You can afford to give the government machinery more attention and study.’ ’ [1].

Government 49

Government Libraries Access Archiving 49

The Texas Record

APRIL 2, 2019

Government Relations Committee. Over time, the observance grew to cover a week in 1997, and a month in 2003, and now extends beyond U.S. RIMM was first observed in 1995 as National Records and Information Management Day, through the efforts of members of the Association of Records Managers and Administrators ( ARMA ) U.S.

Records Management 58

Records Management Government 58

Schneier on Security

SEPTEMBER 30, 2019

The United States government's continuing disagreement with the Chinese company Huawei underscores a much larger problem with computer technologies in general: We have no choice but to trust them completely, and it's impossible to verify that they're trustworthy. They need government funding, like the internet itself.

Security 104

Security Government Artificial Intelligence Communications 104

Schneier on Security

JULY 24, 2019

I think this is a major change in government position. There's no longer a difference between consumer tech and government tech -- it's all the same tech. percent but at a cost reducing law enforcements [sic] access to zero percent the choice for society is clear. That telecommunications company was GTE­which became Verizon.

Encryption 111

Encryption Communications Risk Access 111

Thales Cloud Protection & Licensing

SEPTEMBER 26, 2019

The UK government is promoting the MIKEY-SAKKE protocol [16] that implements an identity-based protocol proposed by SAKAI and KASAHARA in 2003. Companies and governments can host their own PKGs to issue private keys for their departments and employees to secure their work-related communications and intellectual properties.

Encryption 91

Encryption e-Delivery Authentication Government 91

Hunton Privacy

OCTOBER 30, 2014

The UK government has announced proposals designed to make it easier for the Information Commissioner’s Office (“ICO”) to fine companies responsible for nuisance calls and text messages. Under the proposals, the current maximum fine of £500,000 would remain unchanged, but the threshold for imposing fines would be lowered.

Government 40

Government Communications Privacy IT 40

The Last Watchdog

SEPTEMBER 16, 2019

I wrote this USA TODAY cover story in 2003 about how IBM Linux stole the city of Munich from Microsoft, ruining Steve Ballmer’s skiing holiday. Authenticating identities Authenticated identities are necessary in order for enterprises and government agencies to securely deliver services to consumers and work with global partners.

Blockchain 159

Blockchain Security Authentication Encryption 159

Schneier on Security

AUGUST 14, 2019

I think this is a major change in government position. There's no longer a difference between consumer tech and government tech -- it's all the same tech. percent but at a cost reducing law enforcements [sic] access to zero percent the choice for society is clear. That telecommunications company was GTE -- which became Verizon.

Encryption 107

Encryption Communications Risk Access 107

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. Other industry standards too can have the force of “pseudo-law” – notably, the NIST Cybersecurity Framework, which federal regulators often apply to financial-services firms and government contractors. But those aren’t the only laws or regulations that affect IT security teams.

Data Privacy 145

Data Privacy Compliance Privacy Security 145

eSecurity Planet

FEBRUARY 25, 2022

The development of cryptology has been critical to safeguarding data for government agencies, military units, companies, and today’s digital users. Cryptology: Cryptography vs Cryptanalysis. Cryptology is the computer science discipline concerning the secret storing and sharing of data. Oechslin’s Cryptanalytic Time-Memory Trade-Off.

Passwords 130

Passwords Encryption Authentication Communications 130

IT Governance

JANUARY 26, 2018

IT Governance examines how a robust cyber resilience plan can help healthcare organisations address information security and business continuity, and help to achieve compliance with the GDPR and NIS Directive. Download the report: Can a cyber resilience programme secure your information systems and help achieve compliance?

GDPR 60

GDPR Data breaches Compliance Information Security 60

DLA Piper Privacy Matters

MAY 31, 2018

The proposals follow the Government’s amendments to PECR in April 2015, which lowered the threshold at which the Information Commissioner’s Office (ICO) can take action against companies that are in contravention of these rules. Background. Proposals for change.

Government 40

Government Marketing Communications Privacy 40

eSecurity Planet

AUGUST 27, 2021

Also known as vendor risk management (VRM), TPRM goes beyond the general risk management and governance, risk, and compliance (GRC) solutions by specializing in the onboarding, risk assessment, and due diligence for organizations working with third parties. OneTrust made our list, see who else did in the Top Cybersecurity Companies for 2021.

Risk 130

Risk Compliance Marketing Cybersecurity 130

DLA Piper Privacy Matters

JULY 20, 2022

The UK Government has published its long-awaited ‘ Data Protection and Digital Information Bill ’. Authors: Alexa Smith , James Clark , Robyn Palmer , Jamie Sanderson. In this post, we provide a high-level overview of key areas of reform. 27); the Secretary of State can set ‘strategic priorities’ for the Commission (s.

GDPR 98

GDPR Personal data Privacy Compliance 98

OpenText Information Management

AUGUST 30, 2024

Given the critical nature of cybersecurity for industry sectors such as defense, healthcare, finance, and government, ensuring SIEM data sovereignty has never been more crucial. For organizations that prioritize security, governance, and data sovereignty, ArcSight on-prem is a smart choice.

Compliance 69

Compliance Analytics Cloud Cybersecurity 69

eSecurity Planet

MARCH 28, 2023

The company was founded in 2003 and is a wholly owned subsidiary of HPE. A pioneer in wireless networking, Aruba now offers infrastructure services as software from the public or private cloud to enable secure connectivity for a wide range of devices including mobile and IoT.

Authentication 116

Authentication Access IoT MDM 116

eSecurity Planet

JUNE 21, 2022

“Certifications range from penetration testers , government/industry regulatory compliance , ethical hacking , to industry knowledge,” he said. The CEH certification from the EC-Council was introduced in 2003 and is now in version 11. As of mid-2022, the cost is $749 USD. CEH (Certified Ethical Hacker).

Cybersecurity 120

Cybersecurity Systems administration Information Security Compliance 120