Krebs on Security

JANUARY 7, 2025

Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden to users this way. However, new details about the internal operations of a prolific voice phishing gang show the group routinely abuses legitimate services at Apple and Google to force a variety of outbound communications to their users, including emails, automated phone calls and system-level messages sent to all signed-in devices.

Phishing 284

Phishing Passwords Authentication Data breaches 284

Data Breach Today

JANUARY 7, 2025

New Non-Binding Recommendations Target Medical Device Makers, Software Developers Manufacturers are eager to incorporate AI into a wide range of medical devices, from cardiac monitors that can spot developing heart problems to medical imaging systems that can find malignancies a radiologist might miss. The FDA released new guidance this week on how to secure these devices.

Risk 163

Risk Manufacturing Security 163

AIIM

JANUARY 7, 2025

The Digital Transformation Challenge As Chief Information Assets Officer at the Central Bank of the Bahamas, I've witnessed firsthand the complex transition from physical to digital records. The shift isn't as simple as scanning documents - it requires a complete transformation in how we think about and manage information.

Records Management 142

Records Management Digital transformation IT 142

Data Breach Today

JANUARY 7, 2025

Attorney General Accuses Telecom of Failing to Correctly Notify Millions of Victims Washington state's attorney general filed a consumer protection lawsuit against T-Mobile over a massive 2021 data breach that exposed personally identifiable information for more than 79 million consumers, alleging in part the telecom failed to correctly notify victims.

Data breaches 163

Data breaches 163

Advertiser: ZoomInfo

Incorporating generative AI (gen AI) into your sales process can speed up your wins through improved efficiency, personalized customer interactions, and better informed decision- making. Gen AI is a game changer for busy salespeople and can reduce time-consuming tasks, such as customer research, note-taking, and writing emails, and provide insightful data analysis and recommendations.

Sales

The Last Watchdog

JANUARY 7, 2025

Ramat Gan, Israel, January 7th, 2025, CyberNewswire — CyTwist , a leader in advanced next-generation threat detection solutions, has launched its patented detection engine to combat the insidious rise of AI-generated malware. The cybersecurity landscape is evolving as attackers harness the power of artificial intelligence (AI) to develop advanced and evasive threats.

Artificial Intelligence 130

Artificial Intelligence Cybersecurity Encryption Analytics 130

Collaboration 2.0

JANUARY 7, 2025

CES is in full swing, and we've seen major announcements from the likes of Samsung, Roborock, MSI, and more. Here's our roundup of the new tech you don't want to miss.

134

134

Data Breach Today

JANUARY 7, 2025

Campaign Uses Updated Version of the Malware Plugin, Kaspersky Says Hackers are deploying an updated strain of EagerBee malware to target internet service providers and government organizations in the Middle East, warn security researchers. EagerBee operates in memory and comes with advanced stealth and security evasion capabilities.

Government 148

Government Security 148

Collaboration 2.0

JANUARY 7, 2025

With Swippitt, you can insert your phone into a toaster-looking contraption and get a full charge in seconds -- and it actually works.

IT 132

IT 132

Data Breach Today

JANUARY 7, 2025

CISA Urges IT and Design Sector Software Developers to Improve Cyber Hygiene The Cybersecurity and Infrastructure Security Agency is urging the information technology and design sector to strengthen foundational cybersecurity practices throughout the software development lifecycle by aiming to achieve a series of new sector-specific goals released Tuesday.

Cybersecurity 130

Cybersecurity IT Security 130

Advertisement

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

Passwords

Collaboration 2.0

JANUARY 7, 2025

These over-the-counter CGMs from health brands Dexcom and Abbott make glucose monitoring affordable and accessible. Here's how they can help you - no prescription necessary.

Access 128

Access 128

Data Breach Today

JANUARY 7, 2025

ISMG Compendium Showcases More Than 50 Interviews on Threats, Emerging Solutions Welcome to Information Security Media Group's AWS re:Invent 2024 Compendium featuring the latest insights from the industry's premier cloud computing conference and the perspectives of CIOs, CISOs and other technology leaders on the future of IT and how to secure it.

Cloud 130

Cloud Information Security Security IT 130

Collaboration 2.0

JANUARY 7, 2025

You just followed a fascinating new account on Bluesky. But does that account really belong to who you think it does?

IT 126

IT 126

Data Breach Today

JANUARY 7, 2025

Flaws Enable Privilege Escalation and Remote Exploitation Taiwanese industrial computing firm Moxa Technologies is warning customers about two high-severity vulnerabilities affecting its routers and network appliances, posing significant security risks to operational technology environments.

Risk 130

Risk Security IT 130

Advertiser: ZoomInfo

In today’s ultra-competitive markets, it’s no longer enough to wait for buyers to show obvious signs of interest. Instead, sales teams must be proactive, identifying and acting on nuanced buyer behaviors — often before prospects are fully ready to make a purchase. In this eBook from ZoomInfo & Sell Better, learn 10 actionable ways to use these buyer signals to transform your sales strategy and close deals faster.

Sales

WIRED Threat Level

JANUARY 7, 2025

Misconfigured license-plate-recognition systems reveal the livestreams of individual cameras and the wealth of data they collect about every vehicle that passes by them.

Privacy 120

Privacy Security 120

Data Breach Today

JANUARY 7, 2025

Eclypsium Report Describes BIOS/UEFI Issues in Illumina iSeq 100 Firmware Certain vulnerabilities in device maker Illumina's iSeq 100 DNA gene sequencer could allow hackers to overwrite the system's firmware to render the device unusable or to install a firmware implant for ongoing attacker persistence, said researchers at Eclypsium who identified the flaws.

130

130

Collaboration 2.0

JANUARY 7, 2025

AI agents will change work forever. To embrace that chance, business leaders must focus on what matters most - designing and cultivating healthy and sustainable relationships.

119

119

Data Breach Today

JANUARY 7, 2025

Unified Extended Access Management Platform Gains Key Integrations and Workflows The addition of Trelica allows 1Password to accelerate its extended access management roadmap by 18 months. The acquisition emphasizes simplicity for end users while unifying SaaS visibility, device management and identity security under a single solution.

Access 130

Access Security IT 130

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Cloud

Collaboration 2.0

JANUARY 7, 2025

Meta CEO Mark Zuckerberg cited the recent elections as a 'cultural tipping point' for restoring free speech.

114

114

The Last Watchdog

JANUARY 7, 2025

Philadelphia, Pa., Jan. 7, 2025, CyberNewswire — Security Risk Advisors today announced it has become a member of the Microsoft Intelligent Security Association (MISA), an ecosystem of independent software vendors (ISVs) and managed security service providers (MSSPs) that have integrated their solutions with Microsoft Security technology to better defend mutual customers against a world of increasing cyber threats.

Risk 130

Risk Security Cybersecurity Marketing 130

Collaboration 2.0

JANUARY 7, 2025

If you could use a 10-port charger or 5-display docking station, Plugable has some CES 2025 reveals you should check out.

112

112

Security Affairs

JANUARY 7, 2025

US adds Chinese multinational technology and entertainment conglomerate Tencent to the list of companies supporting the Chinese military. The US Department of Defense has added Chinese multinational technology and entertainment conglomerate Tencent to its “Chinese military company” list under the Section 1260 requirement. The US government does not explain the decision.

Military 76

Military Cloud Analytics Government 76

Advertiser: ZoomInfo

As prospects define their problem, search for solutions, and even change jobs, they are generating high-value signals that the best go-to-market teams can leverage to close more deals. This is where signal-based selling comes into play. ZoomInfo CEO Henry Schuck recently broke down specific ways to put four key buying signals into action with the experts from 30 Minutes to President’s Club.

B2B

Collaboration 2.0

JANUARY 7, 2025

AI was featured in nearly every consumer tech category at CES. Here's what stood out.

111

111

Schneier on Security

JANUARY 7, 2025

From the Washington Post : The sanctions target Beijing Integrity Technology Group , which U.S. officials say employed workers responsible for the Flax Typhoon attacks which compromised devices including routers and internet-enabled cameras to infiltrate government and industrial targets in the United States, Taiwan, Europe and elsewhere.

Government 80

Government Security 80

Collaboration 2.0

JANUARY 7, 2025

Premium hardware maker OWC unveils a new RAID storage unit and Thunderbolt 5 hub.

111

111

eSecurity Planet

JANUARY 7, 2025

Our cybersecurity expert explores the security risks in the automotive industry, from remote hacks to data breaches, and explains the cyber attacks Mazda vehicles may be vulnerable to. The post Mazda Connect Systems Vulnerable to Cyber Attacks appeared first on eSecurity Planet.

Data breaches 79

Data breaches Cybersecurity Risk Security 79

Advertisement

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

Cloud

Collaboration 2.0

JANUARY 7, 2025

These over-the-counter GCMs from health brands Dexcom and Abbot make glucose monitoring affordable and accessible. Here's how they could help you - no prescription necessary.

Access 105

Access 105

Security Affairs

JANUARY 7, 2025

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an Oracle WebLogic Server and Mitel MiCollab vulnerabilities, to its Known Exploited Vulnerabilities (KEV) catalog. Below are the descriptions for the vulnerabilities added to the catalog: CVE-2020-2883 (CVSS score 9.8) is a vulnerability in Oracle WebLogic Server (v

IT 67

IT Authentication Cybersecurity Risk 67

Collaboration 2.0

JANUARY 7, 2025

These over-the-counter GCMs from health brands Dexcom and Abbot make glucose monitoring affordable and accessible. Here's how they can help you - no prescription necessary.

Access 105

Access 105