Tue.Nov 05, 2024

article thumbnail

Driving Real Cyber Risk Reduction in Healthcare

Data Breach Today

Key Steps for Healthcare Organizations to Safeguard Sensitive Data Cyber risk reduction is critical as the healthcare landscape has undergone dramatic shifts - a significant portion of the workforce has transitioned to remote work and digital services have surged, breeding new cybersecurity threats and vulnerabilities.

Risk 240
article thumbnail

Canadian Man Arrested in Snowflake Data Extortions

Krebs on Security

A 26-year-old man in Ontario, Canada has been arrested for allegedly stealing data from and extorting more than 160 companies that used the cloud data service Snowflake. Image: [link] On October 30, Canadian authorities arrested Alexander Moucka, a.k.a. Connor Riley Moucka of Kitchener, Ontario, on a provisional arrest warrant from the United States.

Sales 195
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Google AI Agent Finds Zero-Day in Popular Database Engine

Data Breach Today

Now-Fixed Flaw Is Big Sleep's First Real-World Bug Find, Say Researchers Google's "highly experimental" artificial intelligence agent Big Sleep has autonomously discovered an exploitable memory flaw in popular open-source database engine SQLite. The researchers detail how the AI agent discovered the now-patched vulnerability.

article thumbnail

High-Stakes AI Implementation: Why Information Management is More Critical Than Ever

AIIM

As an information management professional, I've observed a concerning trend in the rush to adopt artificial intelligence (AI) technologies, particularly when the stakes are high. There's a significant disconnect between the allure of these powerful AI tools and the reality of most organizations' data readiness. This disconnect, which I call the "data delusion," poses significant challenges for successful AI implementation, especially in critical decision-making scenarios.

article thumbnail

Optimizing The Modern Developer Experience with Coder

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

article thumbnail

Pros and Cons of Anti-Scam Rules in UK, Australia, Singapore

Data Breach Today

3 Countries Taking Different Approaches to Accountability and Victim Compensation Governments globally are intensifying anti-scam measures, introducing new guidelines to banks, telecom providers and other key sectors to bolster security controls and mitigate fraud risks for consumers and businesses. Some new frameworks threaten to levy stiff penalties for non-compliance.

More Trending

article thumbnail

Canadian Cops Bust Suspected Hacker Tied to Snowflake Hits

Data Breach Today

Hacking Suspect Tied to Theft of Data From AT&T, TicketMaster, Santander and Others Canadian authorities arrested a suspected extortionist tied to the hacking theft of terabytes of data from clients of cloud-based data warehousing platform Snowflake. Charges against the suspect, Alexander Moucka, aka Connor Moucka, have yet to be publicly detailed.

Cloud 195
article thumbnail

AIs Discovering Vulnerabilities

Schneier on Security

I’ve been writing about the possibility of AIs automatically discovering code vulnerabilities since at least 2018. This is an ongoing area of research: AIs doing source code scanning, AIs finding zero-days in the wild, and everything in between. The AIs aren’t very good at it yet, but they’re getting better. Here’s some anecdotal data from this summer: Since July 2024, ZeroPath is taking a novel approach combining deep program analysis with adversarial AI agents for valid

Security 111
article thumbnail

Could New Cyber Regs Be in the Future for Clinicians?

Data Breach Today

Medicare 2025 Pay Rule for Physicians Hints of Possible New Cyber Expectations Federal regulators are again signaling that stronger cybersecurity practices could be tied to financial incentives for doctor offices that participate in Medicare. The regulatory lever may be the Centers for Medicare and Medicaid Services Merit-based Incentive Payment System.

article thumbnail

2025 Timeline for CMMC 2.0 Compliance

Daymark

The Cybersecurity Maturity Model Certification (CMMC) program journey started back in 2019, which eventually led to DFARS Case 2019-D041. Since then, it has gone through several changes and program evolutions. Nearing 4 years in the making and getting closer to being finalized, companies are wondering what is next. What is the target date for the new rule?

article thumbnail

15 Modern Use Cases for Enterprise Business Intelligence

Large enterprises face unique challenges in optimizing their Business Intelligence (BI) output due to the sheer scale and complexity of their operations. Unlike smaller organizations, where basic BI features and simple dashboards might suffice, enterprises must manage vast amounts of data from diverse sources. What are the top modern BI use cases for enterprise businesses to help you get a leg up on the competition?

article thumbnail

Atos Sells Off A Unit as Lawmakers Ponder Nationalization

Data Breach Today

French Ministry Says Talks Are Ongoing to Acquire Cybersecurity Unit French IT consultancy Atos on Tuesday announced the sale of a power grid consulting and engineer services unit days after some French lawmakers pushed for nationalizing the beleaguered company. The French government considers the company strategically important.

Sales 166
article thumbnail

The Apple Pencil Pro has dropped down to $92 on Amazon ahead of Black Friday

Collaboration 2.0

After purchasing the latest iPad Pro, the Apple Pencil Pro may seem like an expensive add-on. Ahead of Black Friday, the stylus has been discounted by $37, bringing it down to $92.

IT 96
article thumbnail

Russian Fake News and Bomb Threats Target Election Day Votes

Data Breach Today

Russian Threats Aim to Disrupt Nationwide Voting as Americans Flock to the Polls U.S. intelligence agencies warned that Russian interference efforts are escalating on Election Day as millions of Americans cast their ballots nationwide. The Cybersecurity and Infrastructure Security Agency said it was not tracking significant threats to the vote.

article thumbnail

Your dream programming job demands this language, every site agrees

Collaboration 2.0

Want a programming job? Learning any language is good but only one is essential in 2024.

131
131
article thumbnail

The Tumultuous IT Landscape Is Making Hiring More Difficult

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

article thumbnail

New Bolster CEO Discusses AI-Driven Fraud and Data Security

Data Breach Today

CEO Rod Schultz Aims to Bridge External, Internal Data Challenges, Eyes CISO Bonds New Bolster CEO Rod Schultz shares his priorities in combating AI-based fraud, underscoring the potential of internal data security solutions. Schultz sees Bolster’s established brand protection tools as a foundation for addressing broader enterprise data security needs and better engaging CISOs.

Security 152
article thumbnail

Microsoft's Copilot AI is coming to your Office apps - whether you like it or not

Collaboration 2.0

Microsoft 365 subscribers in Australia, New Zealand, and some Asian markets are about to get an AI upgrade and a price increase. How long until customers in the US and Europe see the same?

article thumbnail

ToxicPanda Android banking trojan targets Europe and LATAM, with a focus on Italy

Security Affairs

The ToxicPanda Android malware has infected over 1,500 devices, enabling attackers to perform fraudulent banking transactions. Cleafy researchers spotted a new Android banking malware, dubbed ToxicPanda, which already infected over 1,500 Android devices. The ToxicPanda malware shares some bot command similarities with the TgToxic trojan family was observed spreading in Southeast Asia.

article thumbnail

Russia Is Going All Out on Election Day Interference

WIRED Threat Level

Along with other foreign influence operations—including from Iran—Kremlin-backed campaigns to stoke division and fear have gone into overdrive.

article thumbnail

Improving the Accuracy of Generative AI Systems: A Structured Approach

Speaker: Anindo Banerjea, CTO at Civio & Tony Karrer, CTO at Aggregage

When developing a Gen AI application, one of the most significant challenges is improving accuracy. This can be especially difficult when working with a large data corpus, and as the complexity of the task increases. The number of use cases/corner cases that the system is expected to handle essentially explodes. 💥 Anindo Banerjea is here to showcase his significant experience building AI/ML SaaS applications as he walks us through the current problems his company, Civio, is solving.

article thumbnail

Attackers Abuse Eventbrite to Send Phishing Emails

KnowBe4

Attackers are abusing Eventbrite’s scheduling platform to send phishing emails, according to researchers at Perception Point. These attacks increased by 900% between July and October 2024.

article thumbnail

U.S. CISA adds PTZOptics camera bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds PTZOptics PT30X-SDI/NDI camera bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog : CVE-2024-8957 PTZOptics PT30X-SDI/NDI Cameras OS Command Injection Vulnerability CVE-2024-8956 PTZOptics PT30X-SDI/NDI Cameras Authentication Bypass Vulnerability Threat actors are attempting

IT 86
article thumbnail

Your Android device is vulnerable to attack and Google's fix is imminent

Collaboration 2.0

The November 2024 Android Security Update fixes these actively exploited flaws. Here's how to check for the patches.

article thumbnail

Canadian authorities arrested alleged Snowflake hacker

Security Affairs

Canadian authorities arrested a suspect linked to multiple hacks following a breach of cloud data platform Snowflake earlier this year. Canadian law enforcement agencies arrested a suspect, Alexander “Connor” Moucka (aka Judische and Waifu), who is accused of being responsible for a series of attacks relying on information stolen from the cloud data warehousing platform Snowflake earlier this year.

article thumbnail

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

Speaker: Aindra Misra, Senior Manager, Product Management (Data, ML, and Cloud Infrastructure) at BILL

Join us for an insightful webinar that explores the critical intersection of data privacy and AI governance. In today’s rapidly evolving tech landscape, building robust governance frameworks is essential to fostering innovation while staying compliant with regulations. Our expert speaker, Aindra Misra, will guide you through best practices for ensuring data protection while leveraging AI capabilities.

article thumbnail

3 handy upgrades in MacOS 15.1 - especially if AI isn't your thing (like me)

Collaboration 2.0

MacOS 15.1 may not include a ton of new features, but there are a few gems that could make life on a MacBook or iMac a bit easier. These are my favorites.

81
article thumbnail

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

Thales Cloud Protection & Licensing

Holiday Shopping Readiness: How is Retail Data Security Holding Up? madhav Wed, 11/06/2024 - 05:30 The 2024 holiday season is here. Retailers have been prepping for this season all year and are ready to provide a safe, secure, and seamless customer shopping experience. According to the National Retail Federation (NFR), retail sales during 2024 will grow between 2.5% and 3.5% from 2023 to between $5.23 trillion and $5.28 trillion.

Retail 62
article thumbnail

Election day is here! You can get a 50% off Lyft to the polls - here's how

Collaboration 2.0

If you are planning to vote in person; take advantage of Lyft's Voting Access Program, and get a massive discount on cars, bikes, and scooters to the polls.

Access 80
article thumbnail

Android flaw CVE-2024-43093 may be under limited, targeted exploitation

Security Affairs

Google warned that a vulnerability, tracked as CVE-2024-43093, in the Android OS is actively exploited in the wild. Threat actors are actively exploiting a vulnerability, tracked as CVE-2024-43093, in the Android OS, Google warns. The vulnerability is a privilege escalation issue in the Android Framework component. Successful exploitation of the vulnerability could lead to unauthorized access to “Android/data,” “Android/obb,” and “Android/sandbox” directories

Access 66
article thumbnail

The Cloud Development Environment Adoption Report

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

article thumbnail

Buy a lifetime license for Microsoft Office for Windows or Mac for $70

Collaboration 2.0

Pay just once and get a lifetime license to the Microsoft Office 2021 app suite (including Word, Excel, and PowerPoint) on your PC or Mac at a discount.

105
105
article thumbnail

BlackBasta Ransomware Gang Uses New Social Engineering Tactics To Target Corporate Networks

KnowBe4

ReliaQuest warns that the BlackBasta ransomware gang is using new social engineering tactics to obtain initial access within corporate networks.

article thumbnail

I travel with Bose's QuietComfort Ultra headphones, and not the Sony XM5. Here's why

Collaboration 2.0

I tested Bose's flagship headphones and its closest competitor, the Sony WH-1000XM5, back to back. The former is better for travel due to its design and performance.

IT 75