AIIM

AUGUST 7, 2024

Information, or content, is nontabular, unstructured data. Sometimes called “dark data” it includes documents, emails, contracts, invoices, media, and other files that exist outside tabular data. Content is also the essential fuel for generative AI (Gen AI). Generative AI can also be used to better manage and find value in information. In this blog post, we’ll dive into the value of using generative AI to manage content.

Unstructured data 143

Unstructured data IT Artificial Intelligence 143

Data Breach Today

AUGUST 7, 2024

While AI Is a Top Priority, Relatively Few Businesses Are Using Automated Solutions Human error is a major contributor to payments fraud, but only about 5% of organizations have fully automated their payment processes to reduce mistakes. Experts say artificial intelligence-enabled automation will help reduce risks, but the benefits of this technology are still a distant reality.

Artificial Intelligence 162

Artificial Intelligence Risk 162

KnowBe4

AUGUST 7, 2024

A report from Darktrace has found that 62% of phishing emails in the first half of 2024 were able to bypass DMARC verification checks in order to reach users’ inboxes.

Phishing 102

Phishing Security awareness Security 102

Weissman's World

AUGUST 6, 2024

You know as well as I that people-related issues – not those related to technology – tend to be the ones that stand most in the way of information governance success. Our problem is that we need them to understand, to make time for us, to change their thinking. To help them get there, we… Read More » Make it Personal When People Slow Your InfoGov Roll The post Make it Personal When People Slow Your InfoGov Roll appeared first on Holly Group.

IT 279

IT Information governance Government Records Management 279

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Cloud

The Last Watchdog

AUGUST 3, 2024

When Tanisha Martin, a veteran software quality assurance analyst, sought to move over to a security team a few years ago, the doors should have been wide open, given the much-ballyhooed cybersecurity skills shortage. Related: Modernizing security training Instead, she ran into a rigid wall of shortsightedness. So, Martin taught herself ethical hacking skills and then founded Black Girls Hack to guide others down the trail she blazed.

Cybersecurity 246

Cybersecurity Security Access IT 246

Krebs on Security

AUGUST 7, 2024

A partial selfie posted by Puchmade Dev to his Twitter account. Yes, that is a functioning handheld card skimming device, encrusted in diamonds. Underneath that are more medallions, including a diamond-studded bitcoin and payment card. In January, KrebsOnSecurity wrote about rapper Punchmade Dev , whose music videos sing the praises of a cybercrime lifestyle.

Retail 247

Retail IT Access Security 247

Data Matters

AUGUST 9, 2024

During the King’s Speech on 17 July 2024, the newly appointed UK Prime Minister announced the UK Government’s intention to introduce a new Cyber Security and Resilience Bill to strengthen the UK’s defences against the global rise in cyberattacks and to protect the UK’s critical infrastructure. In background briefing notes published together with the King’s Speech, the UK Government stated that the new Cyber Security and Resilience Bill will “strengthen our defences and ensure that more essential

Security 163

Security Cybersecurity Government Privacy 163

The Last Watchdog

AUGUST 5, 2024

LAS VEGAS — Humans, unsurprisingly, remain the weak link in cybersecurity. Related: Digital identity best practices We’re gullible – and we can’t get away from relying on usernames and passwords. Steady advances in software and hardware mechanisms to secure identities and privileged access have helped; yet crippling network breaches that start by fooling or spoofing a single human user continue to proliferate.

Systems administration 173

Systems administration Passwords Encryption Communications 173

Data Breach Today

AUGUST 8, 2024

Clinicians Say Current Hack More Disruptive Than 2023 Attack Michigan-based McLaren Health Care is dealing with its second cyberattack in less than a year, disrupting IT systems and patient services at its 13 hospitals and other medical facilities. Ransomware gang INC Ransom allegedly claims to have carried out this latest attack.

Ransomware 253

Ransomware IT 253

Advertisement

Large enterprises face unique challenges in optimizing their Business Intelligence (BI) output due to the sheer scale and complexity of their operations. Unlike smaller organizations, where basic BI features and simple dashboards might suffice, enterprises must manage vast amounts of data from diverse sources. What are the top modern BI use cases for enterprise businesses to help you get a leg up on the competition?

Krebs on Security

AUGUST 5, 2024

A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. Security experts say the Dark Angels have been around since 2021, but the group doesn’t get much press because they work alone and maintain a low profile, picking one target at a time and favoring mass data theft over disrupting the victim’s operations.

Ransomware 232

Ransomware Healthcare Insurance Cybersecurity 232

WIRED Threat Level

AUGUST 9, 2024

Researchers warn that a bug in AMD’s chips would allow attackers to root into some of the most privileged portions of a computer—and that it has persisted in the company’s processors for decades.

IT 145

IT Security 145

Security Affairs

AUGUST 4, 2024

Jerico Pictures Inc., operating as National Public Data, exposed the personal information of nearly 3 billion individuals in an April data breach. A proposed class action claims that Jerico Pictures Inc., operating with the National Public Data, exposed the personal information of nearly 3 billion individuals in a data breach that occurred in April.

Data breaches 145

Data breaches Personal data Sales Archiving 145

Data Breach Today

AUGUST 7, 2024

Regulators told Irish High Court that X, Formerly Twitter, Violated the GDPR The Irish data regulator sued social media platform X, accusing the service of wrongfully harvesting users' personal data for its artificial intelligence model Grok. During a hearing on Tuesday, regulators told the High Court of Ireland that X violated the GDPR.

Artificial Intelligence 240

Artificial Intelligence GDPR Personal data IT 240

Advertisement

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

IT

KnowBe4

AUGUST 6, 2024

On August 6th, 2024, we celebrate National Social Engineering Day – a new national day established by KnowBe4 and officially recognized by the National Day Calendar. The day aims to educate individuals and organizations about the risks associated with social engineering tactics used in cyber attacks.

Education 138

Education Risk 138

WIRED Threat Level

AUGUST 8, 2024

The Smishing Triad network sends up to 100,000 scam texts per day globally. One of those messages went to Grant Smith, who infiltrated their systems and exposed them to US authorities.

Security 141

Security 141

Security Affairs

AUGUST 4, 2024

A China-linked APT, tracked as StormBamboo, compromised an internet service provider (ISP) to poison software update mechanisms with malware. Volexity researchers reported that a China-linked APT group, tracked as StormBamboo (aka Evasive Panda , Daggerfly , and StormCloud), successfully compromised an undisclosed internet service provider (ISP) in order to poison DNS responses for target organizations.

IT 144

IT Information Security Security 144

Data Breach Today

AUGUST 5, 2024

Cybersecurity Firm Says Airline Rebuffed Help, Questions Its Incident Response CrowdStrike has dismissed claims of negligence leveled at it by Delta Air Lines, which is threatening to sue after a faulty security software update led to days of IT disruption. In response, the cybersecurity vendor is asking why Delta's competitors recovered so much more quickly.

IT 239

IT Cybersecurity Security 239

Speaker: Anindo Banerjea, CTO at Civio & Tony Karrer, CTO at Aggregage

When developing a Gen AI application, one of the most significant challenges is improving accuracy. This can be especially difficult when working with a large data corpus, and as the complexity of the task increases. The number of use cases/corner cases that the system is expected to handle essentially explodes. 💥 Anindo Banerjea is here to showcase his significant experience building AI/ML SaaS applications as he walks us through the current problems his company, Civio, is solving.

KnowBe4

AUGUST 8, 2024

The financial repercussions of the May 2024 ransomware attack on the electronics manufacturing services firm Key Tronic underscores just how costly these attacks are.

Ransomware 118

Ransomware Manufacturing Security 118

WIRED Threat Level

AUGUST 8, 2024

Hacker Samy Kamkar is debuting his own open source version of a laser microphone—a spy tool that can invisibly pick up the sounds inside your home through a window, and even the text you’re typing.

Privacy 114

Privacy Security 114

Security Affairs

AUGUST 7, 2024

A previously unknown Android Spyware, dubbed LianSpy, has been targeting Russian users since at least 2021. In March 2024, cybersecurity researchers from Kaspersky discovered previously unknown Android spyware dubbed LianSpy. The malware has been active since July 2021, it is designed to capture screencasts, exfiltrate user files, and harvest call logs and app lists.

Cloud 143

Cloud Encryption Communications Data collection 143

Data Breach Today

AUGUST 6, 2024

Numerous Dealers Disrupted by Attack Against Software Provider CDK Global Ransomware attacks are continuing to lead to losses, to the tune of $30 million for automotive retail giant Sonic Automotive due to the attack disrupting car dealership software service provider CDK Global, and separately $17 million for printed circuit board assembly maker Key Tronic.

Ransomware 182

Ransomware Retail 182

Advertisement

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

Cloud

Collibra

AUGUST 6, 2024

Data governance doesn’t have to be boring — nor should it be. Adobe Senior Manager of Data Governance Joseph Wallace rightly challenged this and other misconceptions at the Data Citizens 2024 conference in Orlando, FL. Joseph was part of Adobe’s data governance team when the company first bought and implemented Collibra — a brand-new product at the time — and his experience has taught him that data governance is about unlocking the business potential of data, not just policing it.

Government 105

Government IT Compliance Security 105

WIRED Threat Level

AUGUST 9, 2024

A team of researchers have developed a method for extracting authentication keys out of HID encoders, which could allow hackers to clone the types of keycards used to secure offices and other areas worldwide.

Authentication 105

Authentication Security 105

Security Affairs

AUGUST 4, 2024

China-linked group APT41 breached a Taiwanese government-affiliated research institute using ShadowPad and Cobalt Strike. Cisco Talos researchers reported that the China-linked group compromised a Taiwanese government-affiliated research institute. The experts attributed the attack with medium confidence to the APT41 group. The campaign started as early as July 2023 and threat actors delivered the ShadowPad malware, Cobalt Strike , and other post-exploitation tools.

Government 142

Government Access IT Information Security 142

Data Breach Today

AUGUST 9, 2024

Also: Lone-Wolf Operators, Attacks on Medical Supply Chains – What's Next? In the latest weekly update, ISMG editors explore evolving ransomware threats, including rising attacks in healthcare and other critical sectors, a shift from cybercrime groups such as LockBit to lone-wolf operators, and why Russian ransomware gangs are dominating the global stage.

Ransomware 162

Ransomware 162

Speaker: Aindra Misra, Senior Manager, Product Management (Data, ML, and Cloud Infrastructure) at BILL

Join us for an insightful webinar that explores the critical intersection of data privacy and AI governance. In today’s rapidly evolving tech landscape, building robust governance frameworks is essential to fostering innovation while staying compliant with regulations. Our expert speaker, Aindra Misra, will guide you through best practices for ensuring data protection while leveraging AI capabilities.

Data Privacy

Schneier on Security

AUGUST 9, 2024

Consumer Reports has a new study of people-search site removal services, concluding that they don’t really work: As a whole, people-search removal services are largely ineffective. Private information about each participant on the people-search sites decreased after using the people-search removal services. And, not surprisingly, the removal services did save time compared with manually opting out.

Privacy 104

Privacy 104

eSecurity Planet

AUGUST 7, 2024

A cloud security strategy is an established set of tools, rules, and procedures for safeguarding cloud data, apps, and infrastructure against security threats. It covers encryption, identity and access management, network segmentation, and intrusion detection systems. The cloud security plan deals with your unique business security concerns while aligning with your overall security goals, including continuous threat monitoring and response methods.

Cloud 104

Cloud Security Compliance Encryption 104

Security Affairs

AUGUST 6, 2024

Threat actors breached the UK-based mobile device management (MDM) firm Mobile Guardian and remotely wiped thousands of devices. Hackers breached the mobile device management (MDM) firm Mobile Guardian, the company detected unauthorized access to iOS and ChromeOS devices on August 4th. The incident impacted users globally, the attackers remotely wiped a small percentage of devices, according to the company.

MDM 142

MDM Education Access Security 142