IT Governance

AUGUST 1, 2019

Phishing 67

Phishing 67

Dark Reading

AUGUST 2, 2019

OK, perhaps that's self-evident, so how come it far too often still takes an incident to trigger planning?

IT 106

IT 106

Thales Cloud Protection & Licensing

AUGUST 2, 2019

The British parliament has been unable to agree the exit package from the European Union. With the possibility of a “no deal” departure looming, EU leaders have granted a six-month extension to Brexit day. But the uncertainty that still lingers with regards to Britain’s future, creates various opportunities which cyber criminals could try to exploit.

Cybersecurity 117

Cybersecurity Personal data Data breaches GDPR 117

Data Breach Today

JULY 30, 2019

Researchers Detail use of Machine Learning to Find Phishing URLs JPMorgan Chase researchers have published a new paper describing their efforts at developing a novel "early warning" system based on artificial intelligence algorithms that can detect malware, Trojans and other advanced persistent threats before the phishing campaign that targets the bank's employees even starts.

Artificial Intelligence 182

Artificial Intelligence Phishing Paper 182

Advertisement

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

Passwords

Krebs on Security

JULY 30, 2019

Federal prosecutors this week charged a Seattle woman with stealing data from more than 100 million credit applications made with Capital One Financial Corp. Incredibly, much of this breach played out publicly over several months on social media and other open online platforms. What follows is a closer look at the accused, and what this incident may mean for consumers and businesses.

Data breaches 272

Data breaches Cloud Mining Insurance 272

AIIM

JULY 30, 2019

Everyone has a process for onboarding new hires, contractors, consultants, etc. There's a checklist to follow: issue the badge, issue the keys to the office and the parking garage, and of course set up the Active Directory account, the email account, and all the other information management system set-up tasks. Similarly, when employees separate, there's a checklist there too: remove access to systems, get the laptop back, get the keys back, etc.

Records Management 140

Records Management Archiving Access Cloud 140

Data Breach Today

JULY 30, 2019

Authorities Allege Paige A. Thompson Referenced Stolen Files on GitHub A Seattle-area woman has been charged with accessing tens of millions of Capital One credit card applications after allegedly taking advantage of a misconfigured firewall. The incident is likely to increase calls for better corporate caretaking of sensitive consumer data.

Data breaches 235

Data breaches Access 235

Krebs on Security

AUGUST 2, 2019

On Monday, a former Amazon employee was arrested and charged with stealing more than 100 million consumer applications for credit from Capital One. Since then, many have speculated the breach was perhaps the result of a previously unknown “zero-day” flaw, or an “insider” attack in which the accused took advantage of access surreptitiously obtained from her former employer.

Metadata 243

Metadata Cloud Data breaches Access 243

Security Affairs

AUGUST 2, 2019

Expert Luca Bongiorni was looking for new targets to test WHID Elite’s Radio Hacking capabilities and found an interesting one: Electrocuting C**k Ring. Last week I was looking for new targets to test WHID Elite’s Radio Hacking capabilities and suddenly I found an interesting one: an Electrocuting C**k Ring. Yes, you read it correctly (What you cannot find on Amazon…).

Manufacturing 111

Manufacturing Security IT Access 111

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Cloud

Schneier on Security

AUGUST 1, 2019

This article points out that Facebook's planned content moderation scheme will result in an encryption backdoor into WhatsApp: In Facebook's vision, the actual end-to-end encryption client itself such as WhatsApp will include embedded content moderation and blacklist filtering algorithms. These algorithms will be continually updated from a central cloud service, but will run locally on the user's device, scanning each cleartext message before it is sent and each encrypted message after it is dec

Encryption 55

Encryption Communications Manufacturing Cloud 55

Data Breach Today

JULY 31, 2019

Experts Say Bank May Have Made Several Errors The cause of Capital One's breach is known. But experts say the incident still raises questions over why Capital One held onto personal data so long and if the bank was adequately monitoring administrator accounts.

Personal data 227

Personal data 227

Krebs on Security

JULY 29, 2019

Marcus Hutchins , the “accidental hero” who helped arrest the spread of the global WannaCry ransomware outbreak in 2017, will receive no jail time for his admitted role in authoring and selling malware that helped cyberthieves steal online bank account credentials from victims, a federal judge ruled Friday. Marcus Hutchins, just after he was revealed as the security expert who stopped the WannaCry worm.

Ransomware 204

Ransomware Education Government Risk 204

IT Governance

JULY 31, 2019

Remember after last month’s relatively serene cyber security scene we said this wasn’t the beginning of the GDPRevolution ? July was bound to be a bounce-back month, but we couldn’t have expected the frighteningly high total of 2,266,042,039 breached records. Granted, a big chunk of those come from a single incident – a mammoth breach involving a Chinese smart tech supplier – but as unimaginative football commentators say, ‘they all count’.

Data breaches 111

Data breaches Ransomware Personal data Government 111

Advertisement

Large enterprises face unique challenges in optimizing their Business Intelligence (BI) output due to the sheer scale and complexity of their operations. Unlike smaller organizations, where basic BI features and simple dashboards might suffice, enterprises must manage vast amounts of data from diverse sources. What are the top modern BI use cases for enterprise businesses to help you get a leg up on the competition?

WIRED Threat Level

JULY 29, 2019

VxWorks is designed as a secure, "real-time" operating system for continuously functioning devices, like medical equipment, elevator controllers, or satellite modems.

Security 111

Security 111

Data Breach Today

AUGUST 1, 2019

Researchers Say Proxy Machine Can Bypass Transaction Limits Via Man-in-the-Middle Attack A newly discovered vulnerability in Visa's contactless payment cards could allow fraudsters to bypass payment limits of 30 British pounds ($37) at U.K. banks, according to researchers at Positive Technologies, who claim the vulnerability could be exploited in other countries as well.

207

207

erwin

AUGUST 1, 2019

111

111

Security Affairs

JULY 28, 2019

Watch out! Playing a video on Android devices could be a dangerous operation due to a critical CVE-2019-2107 RCE flaw in Android OS between version 7.0 and 9.0. Playing a specially-crafted video on devices with the Android’s native video player application could allow attackers to compromise them due to a dangerous critical remote code execution flaw.

Manufacturing 111

Manufacturing Security IT Information Security 111

Advertisement

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

IT

WIRED Threat Level

JULY 29, 2019

It occupies a spot next to 'Black Mirror' and Big Brother in popular imagination, but China’s social credit project is far more complicated than a single, all-powerful numerical score.

IT 111

IT Privacy Security 111

Data Breach Today

JULY 31, 2019

Questions Remain Over How Hacker Breached Bank Files In what's likely the first of many investigations, the New York attorney general's office announced late Tuesday that it's launching a Capital One probe following the disclosure that over 100 million U.S. residents had their personal data exposed in a breach. Meanwhile, class action lawsuits are looming.

Personal data 199

Personal data IT 199

Schneier on Security

AUGUST 2, 2019

Yesterday, I blogged about a Facebook plan to backdoor WhatsApp by adding client-side scanning and filtering. It seems that I was wrong, and there are no such plans. The only source for that post was a Forbes essay by Kalev Leetaru, which links to a previous Forbes essay by him, which links to a video presentation from a Facebook developers conference.

Privacy 104

Privacy Encryption Authentication IT 104

Security Affairs

JULY 28, 2019

According to a report published by cyber security firm Sixgill data for over 23 million payment card were on offer in underground forums in the first half of 2019. . A report published by cybersecurity firm Sixgill revealed that data for over 23 million payment card were offered for sale in the cybercrime underground. The report, titled “ Underground financial fraud report “, provides interesting details about the sale of stolen financial data in the Dark Web. .

Marketing 111

Marketing Sales Encryption Retail 111

Speaker: Anindo Banerjea, CTO at Civio & Tony Karrer, CTO at Aggregage

When developing a Gen AI application, one of the most significant challenges is improving accuracy. This can be especially difficult when working with a large data corpus, and as the complexity of the task increases. The number of use cases/corner cases that the system is expected to handle essentially explodes. 💥 Anindo Banerjea is here to showcase his significant experience building AI/ML SaaS applications as he walks us through the current problems his company, Civio, is solving.

WIRED Threat Level

JULY 31, 2019

The Guardian Firewall app gives iOS users a reprieve from the scourge of online trackers.

Security 111

Security 111

Data Breach Today

AUGUST 2, 2019

Watchdog Points to Numerous Risk Management Shortcomings Some 23 federal agencies come up short in their cybersecurity efforts even as attacks on their IT infrastructures continue to grow and concerns about foreign interference in the upcoming 2020 elections persist, according to a Government Accountability Office report.

Cybersecurity 188

Cybersecurity Risk Government IT 188

Thales Cloud Protection & Licensing

JULY 31, 2019

Digital payments growth. According to 451 Research, digital payment channels are expected to grow from $2.8 trillion in 2018 to $5.8 trillion in 2022. That’s seven times the rate of in-store growth. Within digital payments, mobile payment transactions are expected to overtake e-commerce transactions in 2019 and represent 55% of transactions by 2022.

Authentication 102

Authentication Security Sales Marketing 102

Security Affairs

JULY 28, 2019

Experts at Trustwave observed threat actors using a rare technique to compromise fully patched websites. Security experts at Trustwave observed threat actors using a rare steganography technique, attackers are hiding PHP scripts in Exchangeable Image Format (EXIF) headers of JPEG images that are uploaded on the website. The Exchangeable image file format is a standard that specifies the formats for images, sound, and ancillary tags used by digital cameras (including smartphones), scanners and ot

GDPR 111

GDPR Security IT Information Security 111

Advertisement

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

Cloud

WIRED Threat Level

AUGUST 2, 2019

Amazon-owned Ring has cozied up to law enforcement, and critics say it's using police departments to help market its surveillance cameras.

Marketing 111

Marketing IT Privacy Security 111

Data Breach Today

JULY 29, 2019

Europol Marks Three-Year Anniversary of Non-Profit Security Initiative Three years since its launch, the No More Ransom portal has assisted 200,000 ransomware victims and stopped $108 million from being paid in ransom, according to Europol - one of its founding partners.

Ransomware 183

Ransomware Security IT 183

TAB OnRecord

AUGUST 1, 2019

Photo courtesy of Brighterside Vertical Farms. Vertical farming is the practice of producing food indoors on vertically inclined surfaces. By controlling light, temperature, water and often times carbon dioxide, vertical farmers are able to grow vegetables (most often leafy greens including lettuce and kale) year-round in vertically stacked layers. As opposed to farming in a [.

Records Management 102

Records Management IT 102