Data Breach Today
FEBRUARY 15, 2024
GoldPickaxe Malware Can Record User’s Face, Use Video to Commit Deepfake Scams A Chinese-speaking cybercrime group with the codename GoldFactory has built a new Android and iOS banking Trojan, GoldPickaxe, that can harvest and steal personal details, including biometric face profiles, that attackers use to create AI-driven deepfakes to fool bank defenses, researchers warn.
Security Affairs
FEBRUARY 15, 2024
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds 2 Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following two vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog : CVE-2024-21412 Microsoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability CVE-2024-21351 Microsoft Windows SmartScreen Security Feature Bypass Vulnerability This week.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Data Breach Today
FEBRUARY 15, 2024
Outdated Software, Exploited Flaws, Security Loopholes Expose Ivanti's Devices Supply chain security firm Eclypsium found corporate VPN maker Ivanti's Pulse Secure devices - which underwent much emergency patching amid a likely Chinese espionage zero-day hacking campaign - operate on an 11-year old version of Linux and use many obsolete software packages.
The Last Watchdog
FEBRUARY 15, 2024
Rochester, N.Y. Feb. 15, 2024 – Harter Secrest & Emery LLP , a full-service business law firm with offices throughout New York, is pleased to announce that it has been selected as a NetDiligence-authorized Breach Coach ® , a designation only extended to law firms that demonstrate competency and sophistication in data breach response. Through its Breach Coach ® designation, NetDiligence recognizes Harter Secrest & Emery as an industry leader and enhances the firm’s reputation as a trusted
Advertisement
Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.
Data Breach Today
FEBRUARY 15, 2024
Also: Polish Prime Minister Says Previous Administration Deployed Pegasus Spyware This week, the Zeus leader pleaded guilty, Prudential detected hackers, U.S. telecoms have to report breaches, Microsoft patched zero-days, researchers said Chinese threat intel is faulty, ransomware hit Romanian healthcare entities, Juniper was breached and Poland allegedly previously used Pegasus.
Information Management Today brings together the best content for information management professionals from the widest variety of industry thought leaders.
Data Breach Today
FEBRUARY 15, 2024
Also: Changpeng Zhao's Sentencing; UN Probe of North Korean Hacks This week, the U.S. Treasury reported on crypto in crime, Changpeng Zhao's sentencing was rescheduled, PlayDapp was hacked, the UN probed North Korean hacking, suspicious crypto transactions increased in South Korea, the U.K. blocked fraud sites and Hong Kong warned about crypto phishing sites.
Security Affairs
FEBRUARY 15, 2024
The US authorities dismantled the Moobot botnet, which was controlled by the Russia-linked cyberespionage group APT28. A court order allowed US authorities to neutralize the Moobot botnet, a network of hundreds of small office/home office (SOHO) routers under the control of the Russia-linked group APT28. The botnet was used by the Russian state-sponsored hackers to carry out a broad range of attacks. “A January 2024 court-authorized operation has neutralized a network of hundreds of small
Data Breach Today
FEBRUARY 15, 2024
Both iOS and Android Variants Can Record Face Videos, Used to Create AI Deepfakes A Chinese-speaking cybercrime group codenamed GoldFactory has built a new Android and iOS banking Trojan, GoldPickaxe, that can to harvest and steal personal details, including biometric face profiles, which attackers use to create AI-driven deepfakes to fool bank defenses, researchers warn.
Schneier on Security
FEBRUARY 15, 2024
Good essay on software bloat and the insecurities it causes. The world ships too much code, most of it by third parties, sometimes unintended, most of it uninspected. Because of this, there is a huge attack surface full of mediocre code. Efforts are ongoing to improve the quality of code itself, but many exploits are due to logic fails, and less progress has been made scanning for those.
Advertisement
Large enterprises face unique challenges in optimizing their Business Intelligence (BI) output due to the sheer scale and complexity of their operations. Unlike smaller organizations, where basic BI features and simple dashboards might suffice, enterprises must manage vast amounts of data from diverse sources. What are the top modern BI use cases for enterprise businesses to help you get a leg up on the competition?
Data Breach Today
FEBRUARY 15, 2024
Pediatric Tech Vendor Hit by 2022 Data Breach Affecting 3 Million - Mostly Children An electronic health record and practice management software firm says the only way to avoid bankruptcy from the consolidation of nine proposed class action lawsuits filed in the wake of a 2022 data breach is to settle the case for $4 million.
OpenText Information Management
FEBRUARY 15, 2024
In just a few days, OpenText will make its mark at the TDWI Transform 2024 conference in Las Vegas as a Platinum Level Sponsor! As a global leader in data intelligence, we are excited to connect with a select group of professionals and unveil our latest innovations. Can’t attend in person? You can also check out … The post OpenText Elevates Data Intelligence with Aviator Platform at TDWI Transform 2024 appeared first on OpenText Blogs.
Data Breach Today
FEBRUARY 15, 2024
GRU Hackers Commandeered 'Moobot' for Cyberespionage The U.S. federal government says it disrupted a criminal botnet that Russian military intelligence had converted into a platform for global cyberespionage. The malware targets Linux-based IoT devices - in this case, routers made by New York manufacturer Ubiquiti.
Security Affairs
FEBRUARY 15, 2024
On February 12, 2023, a cyber attack halted operations at five production plants of German battery manufacturer Varta. On February 13, German battery manufacturer Varta announced that a cyber attack forced the company to shut down IT systems. The attack disrupted operations at five production plants and the administration. VARTA AG is a leading global manufacturer of batteries with over 4,500 employees worldwide, reporting revenue of €1.2 billion in 2023.
Advertisement
Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.
Data Breach Today
FEBRUARY 15, 2024
Hagerman Moves to Advisory Role After Leading Company for the Past 12 Years Sophos announced Thursday that its CEO for the past 12 years, Kris Hagerman, has stepped down. Long-time Sophos executive Joe Levy, who has nearly three decades of experience in cybersecurity products and services, is the new president and acting CEO, "effective immediately.
Security Affairs
FEBRUARY 15, 2024
The office of South Korean President Yoon Suk Yeol said that North Korea-linked actors breached the personal emails of one of his staff members. The office of South Korean President Yoon Suk Yeol announced a security incident involving the compromise of personal emails belonging to a member of the presidential staff. The government attributes the security breach to North Korean threat actors.
Data Breach Today
FEBRUARY 15, 2024
Google and Mandiant Researchers Track Russia-Ukraine War Tactics Ahead of Elections Russia continues to focus on running cyber operations and espionage that target Ukraine's military, government and civil society in support of its ground campaign, researchers at Google said, warning that the information operations will likely soon be brought to bear on Western elections.
KnowBe4
FEBRUARY 15, 2024
A phishing campaign is attempting to trick users into downloading remote monitoring and management (RMM) software like AnyDesk, Atera, and Splashtop, according to researchers at Malwarebytes.
Advertisement
After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!
Data Breach Today
FEBRUARY 15, 2024
Hackers Used LLMs to Perform Tasks That Non-AI Tools Can Perform Nation-state hackers including Russian military intelligence and hackers backed by China have used OpenAI large language models for research and to craft phishing emails, the artificial intelligence company disclosed Tuesday in conjunction with major financial backer Microsoft.
The Guardian Data Protection
FEBRUARY 15, 2024
DWP briefing says jobcentres should no longer issue ‘signposting slips’ over concerns about data privacy Jobcentre officials have been ordered to stop referring penniless benefit claimants to food banks because it breaches data privacy law, in a move charities have warned will cause delays in crisis help for thousands of hungry households. For years the Department for Work and Pensions (DWP) has allowed jobcentres to issue DWP-designed “signposting slips”, which allow claimants to access local f
KnowBe4
FEBRUARY 15, 2024
New data summarizing the compromises of data in 2023 provides key details on who’s being targeted, what types of data is being compromised, and what attack vectors are being used.
IBM Big Data Hub
FEBRUARY 15, 2024
You’re headed to your favorite drive-thru to grab fries and a cheeseburger. It’s a simple order and as you pull in you notice there isn’t much of a line. What could possibly go wrong? Plenty. The restaurant is near a busy freeway with roaring traffic noise and airplanes fly low overhead as they approach the nearby airport. It’s windy.
Advertisement
Explore how enterprises can enhance developer productivity and onboarding by adopting self-hosted Cloud Development Environments (CDEs). This whitepaper highlights the simplicity and flexibility of cloud-based development over traditional setups, demonstrating how large teams can leverage economies of scale to boost efficiency and developer satisfaction.
KnowBe4
FEBRUARY 15, 2024
Researchers at Volexity warn that the suspected Iranian threat actor CharmingCypress (also known as “Charming Kitten” or “APT42”) has been launching spear phishing attacks against Middle Eastern policy experts.
IBM Big Data Hub
FEBRUARY 15, 2024
ESG (environmental, social and governance) factors may not be the first thing that pops up when you search “what’s trending?” And yet, it has become a household (or rather, boardroom) acronym for today’s companies. It refers to a set of metrics used to measure an organization’s environmental and social impact and has become increasingly important as it relates to a company’s business model, risk management strategy , reporting requirements and more.
KnowBe4
FEBRUARY 15, 2024
As the popularity of SaaS apps continues to grow, security analysts expect the misuse of such apps as the host for malware downloads to continue to rise through 2024.
Data Matters
FEBRUARY 15, 2024
Policymakers around the world took significant steps toward regulating artificial intelligence (AI) in 2023. Spurred by the launch of revolutionary large language models such as OpenAI’s GPT series of models, debates surrounding the benefits and risks of AI have been brought into the foreground of political thought. Indeed, over the past year, legislative forums, editorial pages, and social media platforms were dominated by AI discourse.
Speaker: Anindo Banerjea, CTO at Civio & Tony Karrer, CTO at Aggregage
When developing a Gen AI application, one of the most significant challenges is improving accuracy. This can be especially difficult when working with a large data corpus, and as the complexity of the task increases. The number of use cases/corner cases that the system is expected to handle essentially explodes. 💥 Anindo Banerjea is here to showcase his significant experience building AI/ML SaaS applications as he walks us through the current problems his company, Civio, is solving.
OpenText Information Management
FEBRUARY 15, 2024
Every second, an exponential amount of healthcare data is created and mined for valuable insights. A staggering 30% of the world’s data volume is currently generated by the healthcare industry. The compound annual growth rate of healthcare data will reach 36% by 2025 – rising 6% faster than manufacturing, 10% faster than financial services and … The post How digital fax and capture are transforming healthcare appeared first on OpenText Blogs.
The Guardian Data Protection
FEBRUARY 15, 2024
Move comes after Swedish court rules that informing webmasters about delisted content is breach of privacy Google has quietly stopped telling publishers when it has removed websites from its search results under European “right to be forgotten” rules after a ruling in a Swedish court which the search engine is applying globally. Previously, when an individual applied to have records about them expunged under EU data protection laws, Google would notify the publisher of the original articles.
Hunton Privacy
FEBRUARY 15, 2024
On February 13, 2024, the European Data Protection Board (“EDPB”) adopted Opinion 04/2024 on the notion of the main establishment of a controller in the Union under Article 4(16)(a) of the EU General Data Protection Regulation (“GDPR”) (the “Opinion”). The Opinion was requested by the French Data Protection Authority (the “CNIL”) and aims at clarifying the notion of a data controller’s “main establishment” in the EU within the meaning of Article 4(16)(a) of the GDPR.
Expert insights. Personalized for you.
274 
Let's personalize your content