Tue.May 07, 2024

article thumbnail

RSAC Fireside Chat: Lacework’s cloud-native security platform delivers useful context

The Last Watchdog

SAN FRANCISCO — Cloud security is stirring buzz as RSA Conference 2024 ramps up at Moscone Convention Center here. Related: The fallacy of ‘security-as-a-cost-center’ Companies are clambering to mitigate unprecedented exposures spinning out of their increasing reliance on cloud hosted resources. The unfolding disruption of Generative AI — and rising compliance requirements — add to the mix.

Cloud 264
article thumbnail

LockBitSupp's Identity Revealed: Dmitry Yuryevich Khoroshev

Data Breach Today

Russian National Faces US Criminal Indictment, Sanctions The Russian national known as LockBitSupp, head of ransomware-as-a-service group LockBit, came under indictment Tuesday in U.S. federal court and faces sanctions from the U.S. Department of the Treasury. Prosecutors say LockBitSupp's real identity is Dmitry Yuryevich Khoroshev.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

RSAC Fireside Chat: AT&T, WillJam Ventures partner to launch new MSSP — LevelBlue

The Last Watchdog

SAN FRANCISCO – The already simmering MSSP global market just got hotter. Related: The transformative power of GenAI/LLM This week at RSA Conference 2024 , AT&T announced the launch of LevelBlue – a top-tier managed security services business formed by an alliance with AT&T and WillJam Ventures. I had the chance to sit down earlier with Theresa Lanowitz , Chief Evangelist of AT&T Cybersecurity /Agent at LevelBlue, to discuss this alliance.

article thumbnail

Ransomware Attack Shuts Down Kansas City Systems

Data Breach Today

Phones, Wi-Fi, Digital Payments Are Among the Affected Systems The city administration of Kansas's largest city shut down IT systems and switched to cash transactions in the wake of a ransomware attack detected on Sunday. Municipal officials from the city of Wichita said Tuesday that no timetable yet exists for the restoration of systems.

article thumbnail

Prevent Data Breaches With Zero-Trust Enterprise Password Management

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

article thumbnail

Law enforcement agencies identified LockBit ransomware admin and sanctioned him

Security Affairs

The FBI, UK National Crime Agency, and Europol revealed the identity of the admin of the LockBit operation and sanctioned him. The FBI, UK National Crime Agency, and Europol have unmasked the identity of the admin of the LockBit ransomware operation, aka ‘LockBitSupp’ and ‘putinkrab’ , and issued sanctions against him. It was the first time that the admin of the notorious group was identified by law enforcement.

More Trending

article thumbnail

MITRE attributes the recent attack to China-linked UNC5221

Security Affairs

MITRE published more details on the recent security breach, including a timeline of the attack and attribution evidence. MITRE has shared more details on the recent hack , including the new malware involved in the attack and a timeline of the attacker’s activities. In April 2024, MITRE disclosed a security breach in one of its research and prototyping networks.

article thumbnail

ISMG Editors: Day 1 Highlights at RSA Conference 2024

Data Breach Today

Panel on Secretary of State Antony Blinken's Keynote, Risk and Emerging Tech From the RSA Conference in San Francisco, four ISMG editors discussed highlights from the first day including the keynote on global threats by U.S. Secretary of State Antony Blinken, enterprise risk management concerns and the role of the board, and the latest technology innovations.

Risk 173
article thumbnail

New Attack on VPNs

Schneier on Security

This attack has been feasible for over two decades: Researchers have devised an attack against nearly all virtual private network applications that forces them to send and receive some or all traffic outside of the encrypted tunnel designed to protect it from snooping or tampering. TunnelVision, as the researchers have named their attack, largely negates the entire purpose and selling point of VPNs, which is to encapsulate incoming and outgoing Internet traffic in an encrypted tunnel and to cloa

article thumbnail

Influencing Change as Security Leader: Communication Is Key

Data Breach Today

Nordstrom CISO Nicole Darden Ford Shares Her Journey From B2B to B2C Industry From working in B2B industries to now shifting to a B2C industry, Nicole Darden Ford, CISO, Nordstrom, is confident of bringing a fresh perspective to tackling the retail sector's complex cybersecurity and fraud challenges.

B2C 173
article thumbnail

Optimizing The Modern Developer Experience with Coder

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

article thumbnail

The Alleged LockBit Ransomware Mastermind Has Been Identified

WIRED Threat Level

Law enforcement officials say they’ve identified, sanctioned, and indicted the person behind LockBitSupp, the administrator at the heart of LockBit’s $500 million hacking rampage.

article thumbnail

Report: US Cybersecurity Makes Major Gains Amid New Threats

Data Breach Today

First-Ever US National Cybersecurity Posture Report Highlights AI, Cloud Migrations The Office of the National Cyber Director released the United States' first-ever report on the nation's overall cybersecurity posture, revealing significant improvements despite an ever-changing threat landscape and emerging technologies such as artificial intelligence that pose new challenges.

article thumbnail

An inspirational week at Data Citizens ‘24: Collibra AI Governance is now live

Collibra

There’s no feeling quite like getting together with customers and partners to celebrate the amazing achievements they’ve made as well as introduce them to new innovations available now, and on the horizon. While Data Citizens ‘24 was filled with engaging sessions and content, more importantly, it brought together our community of data and AI professionals to learn and connect with one another.

article thumbnail

U.S. Government Warns of North Korean Spear-Phishing Campaigns

KnowBe4

The North Korean state-sponsored threat actor Kimsuky is launching spear phishing attacks against individuals working at think tanks and academic institutions in the US, according to a joint advisory from the US State Department, the FBI, and the NSA.

Phishing 100
article thumbnail

15 Modern Use Cases for Enterprise Business Intelligence

Large enterprises face unique challenges in optimizing their Business Intelligence (BI) output due to the sheer scale and complexity of their operations. Unlike smaller organizations, where basic BI features and simple dashboards might suffice, enterprises must manage vast amounts of data from diverse sources. What are the top modern BI use cases for enterprise businesses to help you get a leg up on the competition?

article thumbnail

DSAR and CIAM: A Strategic Guide for Businesses

Thales Cloud Protection & Licensing

DSAR and CIAM: A Strategic Guide for Businesses madhav Tue, 05/07/2024 - 09:30 Introduction to Data Subject Access Requests and CIAM When the GDPR was enforced in 2018, it set out to give individuals control over their data by granting eight data subject rights. One of these controls is the right of access, which allows individuals to request information about the personal data held by organizations and to find out how that information is being used.

article thumbnail

Verizon: Nearly 80% of Data Breaches Involve Phishing and the Misuse of Credentials

KnowBe4

Innovative analysis of data breaches shows which attack vectors are being used and how they’re enabled, highlighting the roles phishing and credentials play.

article thumbnail

4 key metrics to know when monitoring microservices applications running on Kubernetes

IBM Big Data Hub

Understanding how microservice applications works on Kubernetes is important in software development. In this article, we will discuss why observing microservice applications on Kubernetes is crucial and several metrics that you should focus on as part of your observability strategy. Why should you observe microservice health running on Kubernetes and what are the Kubernetes metrics you should monitor?

article thumbnail

The Education Sector Experienced the Highest Number of Data Breaches in 2023

KnowBe4

New data from Verizon makes it clear that the Education sector is under attack, but also breaks down which threat actions and patterns are used most.

Education 107
article thumbnail

The Cloud Development Environment Adoption Report

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

article thumbnail

Cisco Systems joins Microsoft, IBM in Vatican pledge to ensure ethical use and development of AI via AP

IG Guru

Check out the article here. The post Cisco Systems joins Microsoft, IBM in Vatican pledge to ensure ethical use and development of AI via AP first appeared on IG GURU.

article thumbnail

Credential-Harvesting Campaign Impersonates Fashion Retailer Shein

KnowBe4

A phishing campaign is impersonating fashion retailer Shein in an attempt to steal users’ credentials, according to researchers at Check Point.

Retail 91
article thumbnail

Maximize business outcomes on IBM Cloud with Concierge Platinum Services

IBM Big Data Hub

In the rapidly evolving digital landscape, we see that businesses are increasingly migrating to cloud services to enhance their operations, boost productivity and foster innovation. However, the process of transitioning clients to the cloud can often be intricate and time-intensive. To tackle this challenge head-on, IBM® offers clients access to a specialized Concierge Platinum Team, which is equipped with top-tier skills and expertise, to help expedite the cloud onboarding process and prov

Cloud 57
article thumbnail

CyberheistNews Vol 14 #19 [EPIC FAIL] Phishing Failures: How Not to Phish Your Users

KnowBe4

[EPIC FAIL] Phishing Failures: How Not to Phish Your Users

article thumbnail

The Tumultuous IT Landscape Is Making Hiring More Difficult

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

article thumbnail

Revolutionize your talent acquisition strategy: How AI can help you find the right candidates faster

IBM Big Data Hub

Imagine that you are a talent acquisition manager at a large corporation, and you’re struggling to find suitable candidates for a critical role. Despite posting the description on multiple job boards, the résumés received are either unqualified or uninteresting. This results in wasted valuable time and resources on manual screening, causing frustration among hiring managers.

article thumbnail

National Nurses Day and World Red Cross Day with the Home Nursing Series

Unwritten Record

Today’s post was written by Rachael Brittain and Ken Myers. In celebration of National Nurses Day and World Red Cross Day, the National Archives would like to commemorate the work and sacrifices nurses and Red Cross staff make to contribute to our nation’s health and safety. We invite you to celebrate their contributions with the American Red Cross collection.

article thumbnail

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

IT Governance

Plus, a further 3,029,461 known records newly breached Welcome to this week’s global round-up of the biggest and most interesting news stories. At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Publicly disclosed data breaches and cyber attacks: in the spotlight More than 6 million accounts compromised from streaming service MovieBoxPro MovieBoxPro, a streaming service of “questionable legalit

article thumbnail

Boosting US Tech Leadership: Antony Blinken's Agenda at RSAC

Data Breach Today

Secretary of State Antony Blinken Debuts New Policies to Propel US Tech Advancement U.S. Secretary of State Antony Blinken highlights a new international cyberspace strategy at RSA Conference 2024, aiming to protect democratic values and maximize technological potential in an era of rapid digital advancement through global cooperation.

173
173
article thumbnail

Introducing CDEs to Your Enterprise

Explore how enterprises can enhance developer productivity and onboarding by adopting self-hosted Cloud Development Environments (CDEs). This whitepaper highlights the simplicity and flexibility of cloud-based development over traditional setups, demonstrating how large teams can leverage economies of scale to boost efficiency and developer satisfaction.