Data Breach Today
SEPTEMBER 18, 2020
Commerce Department Says Social Media Apps Pose National Security Threat The U.S. Commerce Department is banning the downloading and hosting of China-based social media apps TikTok and WeChat effective on Sunday, citing national security concerns. The announcement comes as Oracle continues to negotiate a deal for partnering on TikTok's U.S. operations.
Data Breach Today
SEPTEMBER 18, 2020
Ease of Use and Few Alternatives Keep Bringing Users Back Empire is the latest darknet market to "exit scam," meaning administrators ran away with users' cryptocurrency, leaving the market to fail. Given the ongoing risk of exit scams, as well as police often targeting such markets, why do they persist?
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Micro Focus
SEPTEMBER 17, 2020
The letter of the law Virtually anyone who has worked in IT over a meaningful period of time has experienced a software audit, which is sometimes called a License Verification (or LV) process. This practice is commonly carried out both internally within an organization (often under the IT Asset Management domain) and by vendors in. View Article.
Krebs on Security
SEPTEMBER 16, 2020
U.S. authorities today announced criminal charges and financial sanctions against two Russian men accused of stealing nearly $17 million worth of virtual currencies in a series of phishing attacks throughout 2017 and 2018 that spoofed websites for some of the most popular cryptocurrency exchanges. The Justice Department unsealed indictments against Russian nationals Danil Potekhin and Dmitirii Karasavidi , alleging the duo was responsible for a sophisticated phishing and money laundering campaig
Advertisement
Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.
AIIM
SEPTEMBER 16, 2020
Growing up, my parents taught me that there are some questions that aren’t appropriate to ask. Generally, it’s safe to avoid asking people their age, their salary, their weight, their politics, etc. Some questions can make the people being asked feel uncomfortable and so should be avoided. Are bots one of these hot-button topics that we avoid asking about at work?
Information Management Today brings together the best content for information management professionals from the widest variety of industry thought leaders.
Data Protector
SEPTEMBER 13, 2020
Early train from Euston, just a croissant and two teas Didn't get to eat last night Who today will I see pleading on their knees Liz, I had a dreadful fright I've breached the GDPR You don't know how lucky you are, boys Breaching the GDPR Been away so long I barely know the place BC, it's good to be back home Don't make me pack my case Honey disconnect the phone I'm fed up with the GDPR’s ploys You don't know how lucky you are, boys Breaching the GD Breaching the GD Breaching the GDPR Well paid
Krebs on Security
SEPTEMBER 14, 2020
Most of us automatically put our guard up when someone we don’t know promises something too good to be true. But when the too-good-to-be-true thing starts as our idea, sometimes that instinct fails to kick in. Here’s the story of how companies searching for investors to believe in their ideas can run into trouble. Nick is an investment banker who runs a firm that helps raise capital for its clients (Nick is not his real name, and like other investment brokers interviewed in this stor
AIIM
SEPTEMBER 15, 2020
This week brings another great episode of AIIM On Air , where we continue to explore the challenges, opportunities, and technologies that are driving digital transformation today. I was pleased to speak with Regina Martin , Records Manager at Howard County Government from Columbia, Maryland, in this episode. I caught up with Regina at the AIIM20 conference in Dallas earlier this year.
Data Breach Today
SEPTEMBER 18, 2020
Release of Code on Russian Darknet Forums Leads to Broader Use, Enhancements The posting on Russian underground forums of source code for the Android mobile banking Trojan Cerberus has led to an increase in attacks as well as updates to the malware, the security firm Kaspersky reports.
Advertisement
Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.
Security Affairs
SEPTEMBER 18, 2020
Chinese hackers have stolen information from Spanish laboratories working on a vaccine for COVID19, El Pais newspaper revealed. The El Pais newspaper reported that Chinese hackers have stolen information from Spanish laboratories working on a vaccine for COVID19. While pharmaceutical companies worldwide are working on the research of a vaccine for the ongoing COVID19 pandemic, threat actors are conducting cyber espionage campaigns in the attempt of stealing information on the work.
WIRED Threat Level
SEPTEMBER 15, 2020
Sara-Jayne Terp uses the tools of cybersecurity to track false claims like they’re malware. Her goal: Stop dangerous lies from hacking our beliefs.
Schneier on Security
SEPTEMBER 17, 2020
There’s a new unpatched Bluetooth vulnerability : The issue is with a protocol called Cross-Transport Key Derivation (or CTKD, for short). When, say, an iPhone is getting ready to pair up with Bluetooth-powered device, CTKD’s role is to set up two separate authentication keys for that phone: one for a “Bluetooth Low Energy” device, and one for a device using what’s known as the “Basic Rate/Enhanced Data Rate” standard.
Data Breach Today
SEPTEMBER 18, 2020
Siva Sivasubramanian of SingTel Optus on Measuring Success An organization has successfully implemented a "zero trust" framework when it can achieve context-aware resolution of a risk, says Dr. Siva Sivasubramanian, CISO of SingTel Optus, an Australian telecommunications firm.
Advertisement
Large enterprises face unique challenges in optimizing their Business Intelligence (BI) output due to the sheer scale and complexity of their operations. Unlike smaller organizations, where basic BI features and simple dashboards might suffice, enterprises must manage vast amounts of data from diverse sources. What are the top modern BI use cases for enterprise businesses to help you get a leg up on the competition?
Security Affairs
SEPTEMBER 17, 2020
The Maze ransomware operators now use a virtual machine to encrypt a computer, a tactic previously adopted by the Ragnar Locker malware. The Maze ransomware operators have adopted a new tactic to evade detection, their malware now encrypts a computer from within a virtual machine. This technique was first adopted by Ragnar Locker gang in May, at the time the Ragnar Locker was deploying Windows XP virtual machines to encrypt victim’s files while bypassing security measures.
WIRED Threat Level
SEPTEMBER 15, 2020
How Dana DeBeauvoir set off the biggest, weirdest, and most promising revolution in election technology since the 1800s.
erwin
SEPTEMBER 17, 2020
Replace manual and recurring tasks for fast, reliable data lineage and overall data governance. It’s paramount that organizations understand the benefits of automating end-to-end data lineage. Critically, it makes it easier to get a clear view of how information is created and flows into, across and outside an enterprise. The importance of end-to-end data lineage is widely understood and ignoring it is risky business.
Data Breach Today
SEPTEMBER 16, 2020
CISA Alert Says 'Pioneer Kitten' Group Targeting U.S. Businesses, Agencies The hacking group "Pioneer Kitten," which has suspected ties to the Iranian government, is taking advantage of several unpatched vulnerabilities and using open source tools to target U.S. businesses as well as federal government agencies, according to the Cybersecurity and Infrastructure Security Agency.
Advertisement
After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!
Security Affairs
SEPTEMBER 17, 2020
University Hospital New Jersey (UHNJ) has suffered a ransomware attack, SunCrypt ransomware operators also leaked the data they have stolen. Systems at the University Hospital New Jersey (UHNJ) were encrypted with the SunCrypt ransomware, threat actors also stolen documents from the institution and leaked it online. The incident took place in September.
WIRED Threat Level
SEPTEMBER 17, 2020
The Internet Archive and the infrastructure company are teaming up to make sure sites never fully go down.
Schneier on Security
SEPTEMBER 18, 2020
Posted three years ago, but definitely appropriate for the times.
Data Breach Today
SEPTEMBER 17, 2020
FBI Releases Advisory on Previously Undisclosed Iranian Malware The U.S. Treasury Department on Thursday imposed sanctions on an Iranian advanced persistent threat group, 45 associated individuals and a front company the Iranian government used for a years-long malware campaign that targeted Iranian dissidents, journalists and others.
Speaker: Anindo Banerjea, CTO at Civio & Tony Karrer, CTO at Aggregage
When developing a Gen AI application, one of the most significant challenges is improving accuracy. This can be especially difficult when working with a large data corpus, and as the complexity of the task increases. The number of use cases/corner cases that the system is expected to handle essentially explodes. 💥 Anindo Banerjea is here to showcase his significant experience building AI/ML SaaS applications as he walks us through the current problems his company, Civio, is solving.
Security Affairs
SEPTEMBER 14, 2020
Giant office retail company Staples disclosed a data breach, threat actors accessed some of its customers’ order data. Staples, the office retail giant, disclosed a data breach, it notified its customers that their order data have been accessed by threat actors without authorization. The office retail giant sent out a data breach notification letter to the impacted customers, the incident took place around September 2.
Troy Hunt
SEPTEMBER 17, 2020
I want a "secure by default" internet with all the things encrypted all the time such that people can move freely between networks without ever needing to care about who manages them or what they're doing with them. I'm a massive proponent of Let's Encrypt's and Cloudflare's missions to secure the web and of browser paradigms such as HSTS and upgrade-insecure-requests via content security policies to help make it a reality.
Hunton Privacy
SEPTEMBER 18, 2020
On September 18, 2020, as confirmed by Brazilian firm Mattos Filho, Veiga Filho, Marrey Jr. e Quiroga Advogados , Brazil’s President signed a bill from Brazil’s Congress bringing the new Brazilian data protection law ( Lei Geral de Proteção de Dados Pessoais , “LGPD”) into effect with a retroactive applicability date of August 16, 2020. The LGPD’s sanctions provisions will apply beginning August 1, 2021, based on a previous delay passed by Brazil’s legislature.
Data Breach Today
SEPTEMBER 18, 2020
IBM: P2P Botnet Now Accounts for 90% of IoT Network Traffic Mozi, a relatively new peer-to-peer botnet, is now dominating global IoT network traffic, according to a new report from IBM's X-Force unit. The malware is being used to launch DDoS attacks as well as mine for cryptocurrency.
Advertisement
Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.
Security Affairs
SEPTEMBER 17, 2020
Drupal maintainers addressed several information disclosure and cross-site scripting (XSS) flaws in the popular content management system (CMS). Drupal maintainers addressed several information disclosure and cross-site scripting (XSS) vulnerabilities in the popular content management system (CMS). The most severe issue, tracked as CVE-2020-13668, is a critical reflected XSS issue affecting Drupal 8 and 9.
OneHub
SEPTEMBER 14, 2020
The sudden transition to remote working has meant that virtual tools and technologies are now uppermost in most business leaders minds. From chat and video to file sharing and more, there’s lots to consider when it comes to empowering teams to work efficiently from home. Businesses need to adapt existing elements of the business tech stack to make them more remote work friendly – as well as tackle new security and licensing issues.
Dark Reading
SEPTEMBER 17, 2020
Detecting doctored media has become tricky -- and risky -- business. Here's how organizations can better protect themselves from fake video, audio, and other forms of content.
Expert insights. Personalized for you.
347 
Let's personalize your content