Krebs on Security

JULY 15, 2024

At least a dozen organizations with domain names at domain registrar Squarespace saw their websites hijacked last week. Squarespace bought all assets of Google Domains a year ago, but many customers still haven’t set up their new accounts. Experts say malicious hackers learned they could commandeer any migrated Squarespace accounts that hadn’t yet been registered, merely by supplying an email address tied to an existing domain.

Security 256

Security Passwords Access Phishing 256

Data Breach Today

JULY 15, 2024

Disney’s Data Targeted for Using Artists’ Work in AI Systems, Hacking Group Says An apparent hacktivist group known as NullBulge claimed to have released a major data trove of sensitive information from Disney’s third-party digital workplace collaboration platform, Slack, after reportedly targeting the tech giant for its use of artists' work in training advanced AI systems.

IT 292

IT 292

The Last Watchdog

JULY 15, 2024

In our digital age, managing passwords effectively is crucial not just for our security while we’re alive, but also for ensuring our digital legacies are secure after we’re gone. Related : Understanding digital footprints A recent study by All About Cookies sheds light on the alarming lack of preparation most internet users have for their digital assets.

Passwords 130

Passwords Education Access Information Security 130

Data Breach Today

JULY 15, 2024

Largest Deal in Cyber History Would Help Google Rival Microsoft, Limit Partnerships Despite all the platformization buzz, there are very few vendors with market-leading capabilities in at least three disparate security technology categories. That could change if Google forges ahead with buying cloud security firm Wiz for a reported $23 billion just two years after buying Mandiant.

Cloud 300

Cloud Security Marketing 300

Advertisement

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

IT

Security Affairs

JULY 15, 2024

Multiple ransomware groups were spotted exploiting a vulnerability, tracked as CVE-2023-27532, in Veeam Backup & Replication. The vulnerability CVE-2023-275327 (CVSS score of 7.5) impacts the Veeam Backup & Replication component. An attacker can exploit the issue to obtain encrypted credentials stored in the configuration database, potentially leading to gaining access to the backup infrastructure hosts.

Ransomware 130

Ransomware Encryption Access Security 130

WIRED Threat Level

JULY 15, 2024

A hacker group called “NullBulge” says it stole more than a terabyte of Disney’s internal Slack messages and files from nearly 10,000 channels in an apparent protest over AI-generated art.

IT 121

IT Security 121

Data Breach Today

JULY 15, 2024

Paying Criminals for a Promise to Delete Data Is Part of the Problem What will it take for victims of ransomware, extortion and other types of cybercrime to stop directly funding their attackers? The latest breached business to pay a ransom to its attackers appears to be AT&T, which reportedly paid Shiny Hunters over $350,000 for a promise to delete stolen data.

Ransomware 288

Ransomware IT 288

Security Affairs

JULY 15, 2024

Wired attributes the recently disclosed AT&T data breach to a hacker living in Turkey and reported the company paid a $370,000 ransom. An American hacker who lives in Turkey claimed responsibility for the recently disclosed AT&T data breach. The man also said the company paid a ransom to ensure that stolen data would be deleted, reported Wired.

Data breaches 124

Data breaches Cloud Blockchain Metadata 124

Data Breach Today

JULY 15, 2024

GAO: Department Lacks Cybersecurity Strategies for Major Business IT Programs The U.S. Department of Defense still hasn't addressed a series of critical cybersecurity gaps in its information technology business programs, according to an annual assessment conducted by the Government Accountability Office, despite years of warnings from the government watchdog.

Cybersecurity 282

Cybersecurity Government IT 282

Speaker: Anindo Banerjea, CTO at Civio & Tony Karrer, CTO at Aggregage

When developing a Gen AI application, one of the most significant challenges is improving accuracy. This can be especially difficult when working with a large data corpus, and as the complexity of the task increases. The number of use cases/corner cases that the system is expected to handle essentially explodes. 💥 Anindo Banerjea is here to showcase his significant experience building AI/ML SaaS applications as he walks us through the current problems his company, Civio, is solving.

eSecurity Planet

JULY 15, 2024

Last week’s vulnerability news highlighted major flaws across industries, urging quick patch response. The majority of incidents involved malicious threat actors exploiting vulnerabilities in several software and systems. Gogs’ security issues caused command execution and file deletion. Microsoft patched 143 vulnerabilities. OpenSSH and PHP exposed an RCE issue, and RADIUS protocols became susceptible to MitM attacks.

Authentication 109

Authentication Risk Access Cybersecurity 109

Data Breach Today

JULY 15, 2024

Ransomware Hit on Pathology Firm Still Disrupting Organ Transplants, Blood Supply Nearly 8,000 National Health Service patient procedures including organ transplants and cancer treatments have been canceled, postponed or diverted to other facilities in London over the past six weeks since a ransomware attack disrupted blood testing firm Synnovis.

Ransomware 200

Ransomware 200

WIRED Threat Level

JULY 15, 2024

Senator Mark Warner is trying to pass new limits on when the government can wiretap Americans. At least two senators are quietly trying to stop him.

Government 102

Government Privacy Security 102

Data Breach Today

JULY 15, 2024

Driven Technologies Chief Operating Officer Vinu Thomas provides an in-depth look at how AI and automation are enhancing cybersecurity. He talks about the shift to distributed environments, the integration of security tools, and the effectiveness of AI in threat detection and response.

Cybersecurity 251

Cybersecurity Security 251

Advertisement

Leverage the Cloud Development Environment Maturity Model to elevate your software development practices with scalable, secure cloud-based workspaces. This model offers a structured approach to modernizing development, aligning technology, developer experience, security, and workflows. By implementing Cloud Development Environments (CDEs), teams can boost efficiency, improve security, and streamline operations through centralized governance.

Cloud

Collaboration 2.0

JULY 15, 2024

The Bose QuietComfort Ultra headphones top every 'best headphones' list I've written, and for good reason. They're on sale for $80 off ahead of Amazon Prime Day 2024.

Sales 97

Sales 97

Data Breach Today

JULY 15, 2024

Andres Andreu Discusses How to Make an Organization Secure - and Successful To make cybersecurity a business enabler, cybersecurity teams need to focus on opening things up in a secure fashion so that the functionality and productivity of the business can flourish. Hearst's Andres Andreu discusses the areas in which this can be done.

Cybersecurity 177

Cybersecurity Security 177

Data Protection Report

JULY 15, 2024

The Government of Ontario recently introduced the Strengthening Cyber Security and Building Trust in the Public Sector Act, 2024 (Bill 194) seeking to strengthen cybersecurity programs in the public sector and provide the groundwork for the responsible use of artificial intelligence (AI) among various public sector entities. If passed, Bill 194 will enact the Enhancing Digital Security and Trust Act, 2024 (the Act) and significantly amend the Freedom of Information and Protection of Privacy Act

Artificial Intelligence 92

Artificial Intelligence Cybersecurity Government Privacy 92

Data Breach Today

JULY 15, 2024

Complaint Seeks SEC Investigation of Whistleblower Practices, Financial Penalty Whistleblowers from OpenAI have reportedly complained to the Securities and Exchange Commission that the company unlawfully restricted employees from alerting regulators of the artificial intelligence technology's potential risks to humanity.

Artificial Intelligence 177

Artificial Intelligence Risk Security 177

Advertisement

Tech leaders today are facing shrinking budgets and investment concerns. This whitepaper provides insights from over 1,000 tech leaders on how to stay secure and attract top cybersecurity talent, all while doing more with less. Download today to learn more!

Cybersecurity

Collaboration 2.0

JULY 15, 2024

AI tools can help you generate text, images, and code, but they can also work as a great shopping assistant this Prime Day. Here's how.

97

97

KnowBe4

JULY 15, 2024

Phishing remains a top initial access vector for ransomware actors, according to researchers at Cisco Talos. The threat actors often use phishing to steal legitimate credentials so they can use employee accounts without raising suspicion.

Phishing 75

Phishing Ransomware Access 75

Collaboration 2.0

JULY 15, 2024

Prime Day is one of the few times a year when you can buy a video doorbell for the price of a trip to a fast-food restaurant.

98

98

Collibra

JULY 15, 2024

“With our automated world, every second thousands of decisions hinge on your data. Poor data quality doesn’t just mean mistakes—it means mistakes at lightning speed.” – Kirk Haslbeck, Founder of Collibra Data Quality, Inventor of Automated Rules State and local governments (SLED) are leveraging AI to enhance public safety, streamline operations, and improve citizen services.

Government 73

Government Artificial Intelligence Data structuring Risk 73

Speaker: Aindra Misra, Senior Manager, Product Management (Data, ML, and Cloud Infrastructure) at BILL

Join us for an insightful webinar that explores the critical intersection of data privacy and AI governance. In today’s rapidly evolving tech landscape, building robust governance frameworks is essential to fostering innovation while staying compliant with regulations. Our expert speaker, Aindra Misra, will guide you through best practices for ensuring data protection while leveraging AI capabilities.

Data Privacy

Collaboration 2.0

JULY 15, 2024

The Yeedi Cube almost does everything: strong suction, self-emptying, and self-cleaning. And it's one of the most affordable robot vacuums and mops to combine all these features.

IT 85

IT 85

Jamf

JULY 15, 2024

Jamf Pro’s implementation of Local Administrator Password Solution (LAPS) is now finalized. William Smith takes a deep dive into how it works and how to implement it.

Passwords 75

Passwords Security IT 75

Collaboration 2.0

JULY 15, 2024

Forget Prime Day -- Best Buy has Samsung's popular TV that doubles as a work of art on deep discount right now.

98

98

KnowBe4

JULY 15, 2024

New data shows that only 3 percent of organizations are solely relying on their current cyber defenses when adding on cyber insurance, indicating that organizations are beginning to understand the true value and place of a cyber insurance policy.

Insurance 64

Insurance Security 64

Speaker: Christophe Louvion, Chief Product & Technology Officer of NRC Health and Tony Karrer, CTO at Aggregage

Christophe Louvion, Chief Product & Technology Officer of NRC Health, is here to take us through how he guided his company's recent experience of getting from concept to launch and sales of products within 90 days. In this exclusive webinar, Christophe will cover key aspects of his journey, including: LLM Development & Quick Wins 🤖 Understand how LLMs differ from traditional software, identifying opportunities for rapid development and deployment.

Sales

Collaboration 2.0

JULY 15, 2024

I use this electric screwdriver with its built-in light all the time. Grab one on sale for Amazon Prime Day now.

Sales 94

Sales IT 94

Daymark

JULY 15, 2024

Companies performing work in the Defense Industrial Base (DIB) often contemplate whether they should use a cloud service provider for their business, then wonder which version of the cloud service they should consider. The rules and regulations passed down to the DIB from the Federal Government are quite confusing when it comes to trying to figure out what their requirements are.

Cloud 62

Cloud Compliance Government IT 62

Collaboration 2.0

JULY 15, 2024

Give these Xfce tweaks a try if you want a lightning-fast desktop operating system that's as user-friendly as possible.

91

91