Communications and Security - Information Management Today

What's Next for Secure Communication After Exploding Pagers?

Data Breach Today

SEPTEMBER 19, 2024

No OpSec Measure Is Bulletproof to the Effects of a Corrupted Supply Chain Secure communications in an age of network insecurity has focused mostly on encryption and fears of surveillance tracking.

Communications

Communications Security Encryption

Foreign adversary hacked email communications of the Library of Congress says

Security Affairs

NOVEMBER 18, 2024

The Library of Congress informed lawmakers about a security breach, an alleged foreign adversary compromised some of their IT systems and gained access to email communications between congressional offices and some library staff, including the Congressional Research Service. Copyright Office systems, were not impacted by the incident.

Libraries

Libraries Communications Access Government

Swiss Air Force sensitive files stolen in the hack of Ultra Intelligence & Communications

Security Affairs

JANUARY 8, 2024

Documents belonging to the Swiss Air Force were leaked on the dark web as a result of cyberattack on a US security provider. Documents belonging to the Swiss Air Force were leaked on the dark web after the US security company Ultra Intelligence & Communications suffered a data breach. ” reported the SwissInfo website.

Communications

Communications Ransomware Data breaches Manufacturing

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

RansomHub gang claims the hack of the telecommunications giant Frontier Communications

Security Affairs

JUNE 4, 2024

The RansomHub ransomware group claimed to have stolen the information of over 2 million customers from the American telecommunications company Frontier Communications. ” In April, Frontier Communications notified the Securities and Exchange Commission (SEC) that it had to shut down certain systems following a cyberattack.

Communications

Communications Data breaches Ransomware Access

How and Why Should You Be Tracking Geopolitical Risk?

The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

Risk

Cisco warns of a critical bug in Unified Communications products, patch it now!

Security Affairs

JANUARY 25, 2024

Cisco addressed a critical flaw in its Unified Communications and Contact Center Solutions products that could lead to remote code execution. Cisco released security patches to address a critical vulnerability, tracked as CVE-2024-20253 (CVSS score of 9.9), impacting multiple Unified Communications and Contact Center Solutions products.

Communications

Communications IT Access Security

Israel army hacked the communication network of the Beirut Airport control tower

Security Affairs

SEPTEMBER 29, 2024

The IDF breached the communication network of the control tower and threatened an Iranian civilian plane attempting to land, reported the MiddleEastMonitor website. Israel allegedly hacked Beirut airport ‘s control tower, warning an Iranian plane not to land, forcing it to return to Tehran. QFZ9964, as it was approaching for landing.”

Communications

Communications Military IT Information Security

Oracle privately notifies Cloud data breach to customers

Security Affairs

APRIL 6, 2025

Oracle confirms a cloud data breach, quietly informing customers while downplaying the impact of the security breach. The incident has raised serious concerns about the security of Oracles cloud infrastructure and the potential implications for affected customers. Oracle Classic has the security incident. “Oracle Corp.

Data breaches

Data breaches Cloud Encryption Communications

International law enforcement operation dismantled criminal communication platform Ghost

Security Affairs

SEPTEMBER 19, 2024

An international law enforcement operation infiltrated the encrypted communications app Ghost, designed for criminal use, leading to numerous arrests. The Ghost app supports advanced security features, it allowed thousands of customers subscribing the service by paying in cryptocurrency. Jung remains in custody.

Communications

Communications Encryption IT Access

Japanese telecom giant NTT suffered a data breach that impacted 18,000 companies

Security Affairs

MARCH 8, 2025

On February 5th, the security team detected suspicious activity in its ‘Order Information Distribution System,’ and immediately restricted access to device A. The company announced it will enhance security measures, improve service quality, and promptly disclose updates while maintaining customer confidentiality.

Data breaches

Data breaches Communications Access IT

Google fixed the first actively exploited Chrome zero-day since the start of the year

Security Affairs

MARCH 26, 2025

Google has released out-of-band fixes to address a high-severity security vulnerability, tracked as CVE-2025-2783 , in Chrome browser for Windows. Mojo is Googles IPC library for Chromium-based browsers, managing sandboxed processes for secure communication. ” reads the advisory published by Google.

Libraries

Libraries Communications Security IT

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The US agencies confirmed that Chinese threat actors had compromised the private communications of a “limited number” of government officials following the compromise of multiple U.S.

Data breaches

Data breaches Communications Artificial Intelligence Government

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

broadband providers and gained access to private communications of a limited number of U.S. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The security breach poses a major national security risk. China-linked threat actors breached U.S.

Government

Government Communications Access Risk

iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state

Security Affairs

NOVEMBER 8, 2024

Law enforcement warns that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them harder to unlock, reported 404 Media. Law enforcement warns that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media.

Communications

Communications Passwords Security IT

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Raising security baselines across industries is essential, with risk mitigationnot acceptancebecoming the standard. Salzman Shirley Slazman , CEO, SeeMetrics In 2025, organizations will recognize that adding more tools doesnt equate to better security. Attackers arent hacking in theyre logging in.

Security

Security Phishing IoT Risk

ConnectOnCall data breach impacted over 900,000 individuals

Security Affairs

DECEMBER 16, 2024

ConnectOnCall is a telehealth platform and after-hours on-call answering service designed to enhance communication between healthcare providers and patients. The company discovered the security breach on May 12 and promptly began investigating into the incident. ” reads the Notice of Data Security Incident. .

Data breaches

Data breaches Communications Insurance Cybersecurity

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Security Affairs

NOVEMBER 8, 2024

.” Palo Alto Networks recommends reviewing best practices for securing management access to its devices. Cybersecurity and Infrastructure Security Agency (CISA) added a Palo Alto Expedition Missing Authentication Vulnerability, tracked as CVE-2024-5910 , to its Known Exploited Vulnerabilities (KEV) catalog.

Authentication

Authentication Cybersecurity Access Communications

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

The government agencies released a guide that advises telecom and critical infrastructure defenders on best practices to strengthen network security against PRC-linked and other cyber threats. Enhancing secure logging, isolating device management, and enforcing strict access control lists (ACLs) are key strategies. broadband providers.

Government

Government Communications Access Passwords

Apple indeed added a feature called “inactivity reboot” in iOS 18.1 that reboots locked devices

Security Affairs

NOVEMBER 12, 2024

Apple iOS supports a new feature that reboots locked devices after extended inactivity, aiming to enhance data security for users. Apple ‘quietly’ implemented a new security feature that automatically reboots a locked device if it has not been used for several days. at the end of October. Three iPhones running iOS 18.0

Encryption

Encryption Passwords Security Communications

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

22, 2024, CyberNewswire — INE Security offers essential advice to protect digital assets and enhance security. Warn “Small businesses face a unique set of cybersecurity challenges and threats and must be especially proactive with cybersecurity training,” said Dara Warn, CEO of INE Security. “At Cary, NC, Oct.

Security

Security Data breaches Passwords Cybersecurity

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Affairs

DECEMBER 5, 2024

Security Operations Center (SOC) analyst burnout is a very real problem. The two key problems are: Alert Overload Modern security environments generate an extraordinary number of alerts. These are some of the most important cybersecurity professionals out there, and many of them are being worked to exhaustion.

Cybersecurity

Cybersecurity Artificial Intelligence Risk Data collection

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 30

Security Affairs

JANUARY 26, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Artificial Intelligence

Artificial Intelligence Security Ransomware Communications

Unmasking 2024’s Email Security Landscape

Security Affairs

FEBRUARY 28, 2024

Analyzing the Email Security Landscape and exploring Emerging Threats and Trends. VIPRE Security Group’s latest report, “Email Security in 2024: An Expert Insight into Email Threats,” delves into the cutting-edge tactics and technologies embraced by cybercriminals this year. million as malicious.

Security

Security Phishing Communications Financial Services

Palo Alto Networks confirmed active exploitation of recently disclosed zero-day

Security Affairs

NOVEMBER 16, 2024

Palo Alto Networks recommended reviewing best practices for securing management access to its devices. Restricting management interface access to specific IPs significantly reduces exploitation risk, requiring privileged access first. In this scenario, the CVSS score drops to 7.5 This week, the U.S.

Cybersecurity

Cybersecurity Access Communications Security

From Risk Assessment to Action: Improving Your DLP Response

Security Affairs

OCTOBER 25, 2024

DLP is key in cybersecurity; a risk assessment identifies data risks, helping turn findings into real-world security improvements. They typically include an evaluation of data handling practices, security policies, and DLP solutions to identify and remediate any vulnerabilities that could result in a data breach.

Risk

Risk Cybersecurity Cloud Compliance

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

According to Microsoft, the campaign aimed at building capabilities that could disrupt critical communications infrastructure between the United States and Asia region in the case of future crises. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

e-Discovery

e-Discovery Communications Ransomware Government

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 8

Security Affairs

AUGUST 25, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security

Security Ransomware Communications

0.0.0.0 Day flaw allows malicious websites to bypass security in major browsers

Security Affairs

AUGUST 8, 2024

Day,” allows malicious websites to bypass security in Chrome, Firefox, and Safari to breach local networks. Oligo Security’s research team warns of an 18-year-old bug, dubbed “0.0.0.0 Day,” that allows malicious websites to bypass security in Chrome, Firefox, and Safari to breach local networks.

Security

Security Communications Access IT

Abusing Windows Container Isolation Framework to avoid detection by security products

Security Affairs

AUGUST 31, 2023

Researchers demonstrated how attackers can abuse the Windows Container Isolation Framework to bypass endpoint security solutions. Researcher Daniel Avinoam at the recent DEF CON hacking conference demonstrated how attackers can abuse the Windows Container Isolation Framework to bypass endpoint security solutions.

Security

Security Ransomware Communications IT

Google Pixel 9 supports new security features to mitigate baseband attacks

Security Affairs

OCTOBER 6, 2024

Google announced that its Pixel 9 has implemented new security features, and it supports measures to mitigate baseband attacks. Pixel phones are known for their strong security features, particularly in protecting the cellular baseband, which is the processor handling LTE, 4G, and 5G communications.

Security

Security Communications IT Access

A cyberattack on gambling giant IGT disrupted portions of its IT systems

Security Affairs

NOVEMBER 23, 2024

” International Game Technology has yet to determine the full impact of the cyberattack but is communicating with stakeholders and implementing business continuity plans to mitigate disruptions. The Company’s ongoing investigation and response include efforts to bring its systems back online.”

IT

IT Cybersecurity Communications Ransomware

How to Protect Privacy and Build Secure AI Products

Security Affairs

JULY 18, 2024

How to protect privacy and build secure AI products? How to Protect Privacy and Build Secure AI Products AI systems are transforming technology and driving innovation across industries. However, their unpredictability raises significant concerns about data security and privacy.

Privacy

Privacy Security Data Privacy Risk

A crime ring compromised Italian state databases reselling stolen info

Security Affairs

OCTOBER 28, 2024

The charges being pursued by investigators include criminal conspiracy for unauthorized access to computer systems, illegal interception, falsification of electronic communications, disclosure of confidential information, aiding and abetting, and extortion. ” reads a statement from a lawyer for Del Vecchio.

Computer and Electronics

Computer and Electronics Access Communications Marketing

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 23, 2025

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Lazarus APT stole $1.5B

Security

Security CMS Phishing Encryption

Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JUNE 16, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Security Ransomware Sales

The Impact of Remote Work and Cloud Migrations on Security Perimeters

Security Affairs

MAY 27, 2024

Cloud-based tools such as Microsoft Teams, Slack, and Google Workspace also boost collaboration and communication among remote teams, driving productivity and innovation. This shift introduced new vulnerabilities, and conventional security measures designed to protect a well-defined, centralized perimeter were no longer enough.

Cloud

Cloud Security Compliance B2B

Security Affairs newsletter Round 454 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 13, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Data breaches Cybersecurity

Italy’s data protection watchdog fined OpenAI €15 million over ChatGPT’s data management violations

Security Affairs

DECEMBER 23, 2024

A communication campaign will inform users and non-users on how to oppose the use of their personal data for AI training, ensuring they can exercise their GDPR rights. OpenAI claims the fine is disproportionate and announced it will appeal.

Artificial Intelligence

Artificial Intelligence Personal data Data collection Privacy

Security Affairs newsletter Round 475 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JUNE 9, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Data breaches Ransomware Phishing

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

Security and Exchange Commission (SEC) recently laid down the hammer charging and fining four prominent cybersecurity vendors for making misleading claims in connection with the SolarWinds hack. A security incident is often an indication of poor investment in security programs, rather than personal characeteriziation of the security leader.

Cybersecurity

Cybersecurity Risk Government Compliance

Why Your VPN May Not Be As Secure As It Claims

Krebs on Security

MAY 6, 2024

VPNs work by creating a virtual network interface that serves as an encrypted tunnel for communications. But researchers at Leviathan Security say they’ve discovered it’s possible to abuse an obscure feature built into the DHCP protocol so that other users on the local network are forced to connect to a rogue DHCP server.

IT

IT Security Encryption Passwords

BlackBerry Cuts Cylance Spend to Focus on Profitable Areas

Data Breach Today

OCTOBER 18, 2024

Company Shifts Cyber Focus to QNX and Secure Communications as Key Growth Drivers As Cylance continues to incur significant losses, BlackBerry is reallocating resources toward its more promising QNX and secure communications teams.

Communications

Communications Cybersecurity Security IT

Security Affairs newsletter Round 456 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 28, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Korea attempts to use generative AI for hacking attacks: spy agency Cybersecurity Is artificial intelligence the solution to cyber security threats? A new round of the weekly SecurityAffairs newsletter arrived!

Security

Security Artificial Intelligence Ransomware Data breaches

News alert: Aembit announces speakers for NHIcon event, highlighting non-human identity security

The Last Watchdog

JANUARY 15, 2025

15, 2025, CyberNewswire — Aembit , the non-human identity and access management (IAM) company, unveiled the full agenda for NHIcon 2025, a virtual event dedicated to advancing non-human identity security, streaming live on Jan. Silver Spring, MD, Jan. 28 and headlined by industry luminary Kevin Mandia.

Security

Security Cloud Risk Access

What's Next for Secure Communication After Exploding Pagers?

Foreign adversary hacked email communications of the Library of Congress says

Webinars

Trending Sources

Swiss Air Force sensitive files stolen in the hack of Ultra Intelligence & Communications

Webinars

RansomHub gang claims the hack of the telecommunications giant Frontier Communications

How and Why Should You Be Tracking Geopolitical Risk?

Cisco warns of a critical bug in Unified Communications products, patch it now!

Israel army hacked the communication network of the Beirut Airport control tower

Oracle privately notifies Cloud data breach to customers

International law enforcement operation dismantled criminal communication platform Ghost

Japanese telecom giant NTT suffered a data breach that impacted 18,000 companies

Google fixed the first actively exploited Chrome zero-day since the start of the year

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

ConnectOnCall data breach impacted over 900,000 individuals

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Apple indeed added a feature called “inactivity reboot” in iOS 18.1 that reboots locked devices

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 30

Unmasking 2024’s Email Security Landscape

Palo Alto Networks confirmed active exploitation of recently disclosed zero-day

From Risk Assessment to Action: Improving Your DLP Response

China’s Volt Typhoon botnet has re-emerged

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 8

0.0.0.0 Day flaw allows malicious websites to bypass security in major browsers

Abusing Windows Container Isolation Framework to avoid detection by security products

Google Pixel 9 supports new security features to mitigate baseband attacks

A cyberattack on gambling giant IGT disrupted portions of its IT systems

How to Protect Privacy and Build Secure AI Products

A crime ring compromised Italian state databases reselling stolen info

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION

The Impact of Remote Work and Cloud Migrations on Security Perimeters

Security Affairs newsletter Round 454 by Pierluigi Paganini – INTERNATIONAL EDITION

Italy’s data protection watchdog fined OpenAI €15 million over ChatGPT’s data management violations

Security Affairs newsletter Round 475 by Pierluigi Paganini – INTERNATIONAL EDITION

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

Why Your VPN May Not Be As Secure As It Claims

BlackBerry Cuts Cylance Spend to Focus on Profitable Areas

Security Affairs newsletter Round 456 by Pierluigi Paganini – INTERNATIONAL EDITION

News alert: Aembit announces speakers for NHIcon event, highlighting non-human identity security

Stay Connected