Security and Training - Information Management Today

A cyberattack blocked the trains in Denmark

Security Affairs

NOVEMBER 6, 2022

At the end of October, a cyber attack caused the trains to stop in Denmark, the attack hit a third-party IT service provider. A cyber attack caused training the trains operated by DSB to stop in Denmark the last weekend, threat actors hit a third-party IT service provider. DSB is the largest train operating company in Denmark.

Ransomware

Ransomware IT Access Security

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

22, 2024, CyberNewswire — INE Security offers essential advice to protect digital assets and enhance security. Warn “Small businesses face a unique set of cybersecurity challenges and threats and must be especially proactive with cybersecurity training,” said Dara Warn, CEO of INE Security. “At Cary, NC, Oct.

Security

Security Data breaches Passwords Cybersecurity

FBI training document shows lawful access to multiple encrypted messaging apps

Security Affairs

DECEMBER 1, 2021

Which are the most secure encrypted messaging apps? The Record shared an FBI training document that reveals the surveillance capabilities of the US law enforcement detailing which data can be extracted from encrypted messaging apps. An FBI document shows what data can be obtained from them. ” reads the document.

Encryption

Encryption FOIA Access Metadata

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Experts warn of China-linked APT’s Raptor Train IoT Botnet

Security Affairs

SEPTEMBER 18, 2024

Researchers warn of a new IoT botnet called Raptor Train that already compromised over 200,000 devices worldwide. Cybersecurity researchers from Lumen’s Black Lotus Labs discovered a new botnet, named Raptor Train, composed of small office/home office (SOHO) and IoT devices. “This botnet has targeted entities in the U.S.

IoT

IoT Military Education Cybersecurity

Gamification Can Make Security Training Fun

Data Breach Today

JULY 24, 2023

Webhelp CISO on Interactive Tools for Cybersecurity Awareness Training In a bid to revolutionize information security training and make it more engaging and memorable for employees, Ivan Milenkovic, group CISO at WebHelp, advises firms to adopt gamification and interactive content in corporate training to make it more accessible and memorable for employees. (..)

Security

Security Information Security Cybersecurity Access

Conti ransomware affiliate leaked gang’s training material and tools

Security Affairs

AUGUST 5, 2021

An affiliate of the Conti RaaS has leaked the training material shared by the group with its network along with the info about one of the operators. An affiliate of the Conti RaaS has leaked the training material provided by the group to the customers of its RaaS, he also published the info about one of the operators.

Ransomware

Ransomware Archiving IT Security

ISACA Generative AI Survey: Training Gaps, Focus on Security

Data Breach Today

DECEMBER 1, 2023

AI and Governance Expert Stresses Importance of Training for All Employees According to a recent pulse poll from ISACA on generative AI, only 6% of respondents' organizations are providing training to all staff on AI, and more than half - 54% - say that no AI training is provided at all, even to teams directly affected by AI.

Security

Security Government

Researchers devised an attack technique to extract ChatGPT training data

Security Affairs

DECEMBER 2, 2023

Researchers devised an attack technique that could have been used to trick ChatGPT into disclosing training data. A team of researchers from several universities and Google have demonstrated an attack technique against ChetGPT that allowed them to extract several megabytes of ChatGPT’s training data. ” continues the analysis.

Paper

Paper Privacy IT Access

Artificial intelligence (AI) as an Enabler for Enhanced Data Security

Security Affairs

FEBRUARY 11, 2025

Artificial intelligence enhances data security by identifying risks and protecting sensitive cloud data, helping organizations stay ahead of evolving threats. With over 90% of enterprises storing at least some of their data in the cloud, AIs ability to enhance security across complex, distributed environments is more vital than ever.

Artificial Intelligence

Artificial Intelligence Security Unstructured data Cloud

Brazil data protection authority bans Meta from training AI models with data originating in the country

Security Affairs

JULY 4, 2024

Brazil’s data protection authority temporarily banned Meta from using data originating in the country to train its artificial intelligence. Human Rights Watch recently published a report revealing that LAION-5B, a major image-text dataset used for training AI models, includes identifiable photos of Brazilian children.

Artificial Intelligence

Artificial Intelligence Personal data Privacy Compliance

Meta delays training its AI using public content shared by EU users

Security Affairs

JUNE 18, 2024

Meta announced it is postponing the training of its large language models using public content from adult Facebook and Instagram users in the EU. “The DPC welcomes the decision by Meta to pause its plans to train its large language model using public content shared by adults on Facebook and Instagram across the EU/EEA.

IT

IT Information Security Privacy Security

Italy’s data protection watchdog fined OpenAI €15 million over ChatGPT’s data management violations

Security Affairs

DECEMBER 23, 2024

” The content of the informational campaign, to be approved by the Authority, must raise public awareness about ChatGPTs data collection for AI training and user rights (objection, rectification, deletion). .” ” reads the press release published by Italy’s Garante.

Artificial Intelligence

Artificial Intelligence Personal data Data collection Privacy

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Security Affairs

JANUARY 4, 2025

In September 2024, cybersecurity researchers from Lumens Black Lotus Labs discovered a new botnet, named Raptor Train, composed of small office/home office (SOHO) and IoT devices. In September 2024, US authorities disrupted the “Raptor Train” botnet Now the U.S.

Cybersecurity

Cybersecurity IoT Risk IT

Cyber vandalism on Wi-Fi networks at UK train stations spread an anti-Islam message

Security Affairs

SEPTEMBER 27, 2024

UK police are investigating a cyberattack that disrupted Wi-Fi networks at several train stations across the country. “Telent can confirm that the incident was an act of cyber vandalism which originated from within the Global Reach network and was not a result of a network security breach or a technical failure.

Government

Government Security IT Information Security

How to Protect Privacy and Build Secure AI Products

Security Affairs

JULY 18, 2024

How to protect privacy and build secure AI products? How to Protect Privacy and Build Secure AI Products AI systems are transforming technology and driving innovation across industries. However, their unpredictability raises significant concerns about data security and privacy.

Privacy

Privacy Security Data Privacy Risk

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 34

Security Affairs

FEBRUARY 23, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. You’ve Got Malware: FINALDRAFT Hides in Your Drafts Telegram Abused as C2 Channel for New Golang Backdoor Infostealing Malware Infections in the U.S.

Security

Security Military Ransomware Cybersecurity

Deebot Robot Vacuums Are Using Photos and Audio to Train Their AI

Schneier on Security

OCTOBER 10, 2024

An Australian news agency is reporting that robot vacuum cleaners from the Chinese company Deebot are surreptitiously taking photos and recording audio, and sending that data back to the vendor to train their AIs. No word on whether the recorded audio is being used to train the vacuum in some way, or whether it is being used to train a LLM.

Privacy

Privacy IT Artificial Intelligence Data Privacy

From Risk Assessment to Action: Improving Your DLP Response

Security Affairs

OCTOBER 25, 2024

DLP is key in cybersecurity; a risk assessment identifies data risks, helping turn findings into real-world security improvements. They typically include an evaluation of data handling practices, security policies, and DLP solutions to identify and remediate any vulnerabilities that could result in a data breach.

Risk

Risk Cybersecurity Cloud Compliance

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 12

Security Affairs

SEPTEMBER 22, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security

Security IoT Ransomware Cloud

Zoom trains its AI model with some user data, without giving them an opt-out option

Security Affairs

AUGUST 7, 2023

Zoom changed its terms of service requiring users to allow AI to train on all their data without giving them an opt-out option. Zoom updated its terms of service and informed users that it will train its artificial intelligence models using some of its data. The users have no opt-out option. “ 10.2

Artificial Intelligence

Artificial Intelligence IT Privacy Data collection

Building Timely and Truthful LLMs for Security Operations

Data Breach Today

AUGUST 19, 2024

NYUs Brennan Lodge on Training Your Own Model With Retrieval Augmented Generation Many cybersecurity organizations hope generative artificial intelligence and large language models will help them secure the enterprise and comply with the latest regulations.

Artificial Intelligence

Artificial Intelligence Security Cybersecurity

Privacy and security in the software designing

Security Affairs

APRIL 22, 2021

The importance of carrying out a careful risk and impact assessment in order to safeguard the security of the information and the data privacy. Therefore, it’s essential to carry out a careful risk and impact assessment in order to safeguard the security of the information and the data privacy.

Privacy

Privacy Security Data Privacy Risk

Facebook Trains Its AI on Your Data. Opting Out May Be Futile

WIRED Threat Level

SEPTEMBER 7, 2023

Here's how to request that your personal information not be used to train Meta's AI model. "Request" is the operative word here.

IT

IT Security

ISACA Security Survey 2023: Technical Skills Gaps, Budgeting

Data Breach Today

OCTOBER 6, 2023

ISACA's Jon Brandt Discusses Threat Trends, Hiring Challenges, New Opportunities What kinds of training do security professionals need?

Security

Security Cloud Cybersecurity

Google AI Security Plan: Bug Bounty, Supply Chain Safety

Data Breach Today

OCTOBER 26, 2023

Google Makes Announcements on New Bug Reporting Guidelines, Supply Chain Security Security researchers with novel ways to make Google artificial intelligence models leak sensitive training data or otherwise misbehave can submit their findings to the internet giant's bug bounty program.

Artificial Intelligence

Artificial Intelligence Security IT

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 23, 2025

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Lazarus APT stole $1.5B

Security

Security CMS Phishing Encryption

How to Create a Strong Security Culture

IT Governance

NOVEMBER 18, 2024

Getting a greater return on investment on your security measures We all have a responsibility for security. But to ensure that all staff truly take note of security and apply the knowledge gained from any staff awareness training , security should be embedded in your organisation’s culture.

Security

Security Security awareness Phishing Information Security

Security Affairs newsletter Round 479 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JULY 7, 2024

Every week the best security articles from Security Affairs are free in your email box. GootLoader is still active and efficient Hackers stole OpenAI secrets in a 2023 security breach Hackers leak 170k Taylor Swift’s ERAS Tour Barcodes Polyfill.io A new round of the weekly SecurityAffairs newsletter arrived!

Data breaches

Data breaches Security Mining Education

Recall feature in Microsoft Copilot+ PCs raises privacy and security concerns

Security Affairs

MAY 24, 2024

Privacy advocates fear the potential abuses of the feature and have called it a potential “privacy nightmare” The IT giant attempted to downplay the risks for the users, it pointed out that the feature was developed with privacy and security by design and it is an “optional experience.”

Privacy

Privacy Security Encryption Passwords

Security Affairs newsletter Round 489 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

SEPTEMBER 14, 2024

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Data breaches Computer and Electronics Ransomware

The Tech Crash Course That Trains US Diplomats to Spot Threats

WIRED Threat Level

JULY 2, 2024

The US State Department is training diplomats in cybersecurity, privacy, telecommunications, and other technology issues, allowing them to advance US policy abroad.

Privacy

Privacy Cybersecurity Security

SAPwned flaws in SAP AI core could expose customers’ data

Security Affairs

JULY 18, 2024

Researchers discovered security flaws in SAP AI Core cloud-based platform that could expose customers’ data. Cybersecurity researchers at Wiz uncovered five security flaws, collectively tracked as SAPwned, in the SAP AI Core cloud-based platform. An attacker can exploit the flaws to obtain access tokens and customer data.

Cloud

Cloud Access Cybersecurity Risk

Security Affairs newsletter Round 448 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 2, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Sales Access

Black Hat Fireside Chat: User feedback, AI-infused email security are both required to deter phishing

The Last Watchdog

AUGUST 21, 2024

At Black Hat USA 2024 , I visited with Eyal Benishti , CEO of IRONSCALES , an Atlanta-GA-based supplier of advanced email security systems. More so than ever, companies need to continually train users to stay on high alert. Quick reporting by well-trained users isn’t going to be enough.

Phishing

Phishing Security IT

GUEST ESSAY: The promise and pitfalls of using augmented reality– ‘AR’ — in cybersecurity

The Last Watchdog

NOVEMBER 11, 2024

Related: Is the Metaverse truly secure? Quite like how pilots use AR simulation in training, cybersecurity professionals can use AR-enabled training simulations that immerse them in hyper-realistic scenarios, offering hands-on cyber defense training and education. Foremost among these are privacy and security concerns.

Cybersecurity

Cybersecurity Phishing Risk Privacy

GUEST ESSAY: The case for using augmented reality (AR) and virtual reality (VR) to boost training

The Last Watchdog

JANUARY 9, 2024

Augmented reality (AR) and virtual reality (VR) technologies provide intriguing opportunities for immersive and interactive experiences in cybersecurity training. Related: GenAI’ impact on DevSecOps Here’s how these technologies can bridge learning gaps in cybersecurity awareness and enhance the overall training experience.

Cybersecurity

Cybersecurity Risk Access Marketing

Security Affairs newsletter Round 488 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

SEPTEMBER 8, 2024

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Managing Cybersecurity in the Age of Artificial Intelligence Clearview AI Faces €30.5M

Security

Security Data breaches Artificial Intelligence Ransomware

Box-Checking or Behavior-Changing? Training That Matters

Data Breach Today

JANUARY 22, 2025

Exploring New Ways to Deliver and Measure Cybersecurity Awareness Programs Regulations like GDPR, HIPAA and CMMC have made security awareness training a staple of corporate security programs. Organizations face an even deeper challenge: influencing employee behavior in ways that create a truly secure workplace.

Security awareness

Security awareness GDPR Compliance Cybersecurity

From 2018: DeepMasterPrints: deceive fingerprint recognition systems with MasterPrints generated with GANs

Security Affairs

AUGUST 18, 2024

The experts introduced DeepMasterPrints, which are complete image-level prints, and used a method called Latent Variable Evolution, involving a Generative Adversarial Network (GAN) trained on real fingerprint images and a search strategy to generate prints that maximize impostor matches.

Risk

Risk Security Information Security IT

Security Affairs newsletter Round 484 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

AUGUST 11, 2024

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Is the INC ransomware gang behind the attack on McLaren hospitals?

Security

Security Ransomware MDM Personal data

News alert: Arsen’s rolls out AI-powered phishing tests to improve social engineering resilience

The Last Watchdog

MARCH 24, 2025

This AI-powered tool introduces dynamic, adaptive phishing conversations to train employees against evolving threats more effectively than ever before. As we train people to identify and mitigate those, we need to evolve as well and provide realistic conditions for testing and training, said Thomas Le Coz, CEO of Arsen.

Phishing

Phishing Security awareness Cybersecurity Marketing

Security Affairs newsletter Round 491 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

SEPTEMBER 29, 2024

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Phishing Cybersecurity

Amazon-Powered AI Cameras Used to Detect Emotions of Unwitting UK Train Passengers

WIRED Threat Level

JUNE 17, 2024

CCTV cameras and AI are being combined to monitor crowds, detect bike thefts, and spot trespassers.

Privacy

Privacy Security

Why Are Ransomware Attacks Intensifying?

Data Breach Today

JULY 14, 2022

The latest edition of the ISMG Security Report analyzes why the number of ransomware attacks and the amounts being paid in ransoms are both on the rise. It also discusses today's cyberthreat landscape and whether organizations should rely on user training to improve security.

Ransomware

Ransomware Security IT

A cyberattack blocked the trains in Denmark

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

Webinars

Trending Sources

FBI training document shows lawful access to multiple encrypted messaging apps

Webinars

Experts warn of China-linked APT’s Raptor Train IoT Botnet

Gamification Can Make Security Training Fun

Conti ransomware affiliate leaked gang’s training material and tools

ISACA Generative AI Survey: Training Gaps, Focus on Security

Researchers devised an attack technique to extract ChatGPT training data

Artificial intelligence (AI) as an Enabler for Enhanced Data Security

Brazil data protection authority bans Meta from training AI models with data originating in the country

Meta delays training its AI using public content shared by EU users

Italy’s data protection watchdog fined OpenAI €15 million over ChatGPT’s data management violations

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Cyber vandalism on Wi-Fi networks at UK train stations spread an anti-Islam message

How to Protect Privacy and Build Secure AI Products

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 34

Deebot Robot Vacuums Are Using Photos and Audio to Train Their AI

From Risk Assessment to Action: Improving Your DLP Response

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 12

Zoom trains its AI model with some user data, without giving them an opt-out option

Building Timely and Truthful LLMs for Security Operations

Privacy and security in the software designing

Facebook Trains Its AI on Your Data. Opting Out May Be Futile

ISACA Security Survey 2023: Technical Skills Gaps, Budgeting

Google AI Security Plan: Bug Bounty, Supply Chain Safety

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

How to Create a Strong Security Culture

Security Affairs newsletter Round 479 by Pierluigi Paganini – INTERNATIONAL EDITION

Recall feature in Microsoft Copilot+ PCs raises privacy and security concerns

Security Affairs newsletter Round 489 by Pierluigi Paganini – INTERNATIONAL EDITION

The Tech Crash Course That Trains US Diplomats to Spot Threats

SAPwned flaws in SAP AI core could expose customers’ data

Security Affairs newsletter Round 448 by Pierluigi Paganini – INTERNATIONAL EDITION

Black Hat Fireside Chat: User feedback, AI-infused email security are both required to deter phishing

GUEST ESSAY: The promise and pitfalls of using augmented reality– ‘AR’ — in cybersecurity

GUEST ESSAY: The case for using augmented reality (AR) and virtual reality (VR) to boost training

Security Affairs newsletter Round 488 by Pierluigi Paganini – INTERNATIONAL EDITION

Box-Checking or Behavior-Changing? Training That Matters

From 2018: DeepMasterPrints: deceive fingerprint recognition systems with MasterPrints generated with GANs

Security Affairs newsletter Round 484 by Pierluigi Paganini – INTERNATIONAL EDITION

News alert: Arsen’s rolls out AI-powered phishing tests to improve social engineering resilience

Security Affairs newsletter Round 491 by Pierluigi Paganini – INTERNATIONAL EDITION

Amazon-Powered AI Cameras Used to Detect Emotions of Unwitting UK Train Passengers

Why Are Ransomware Attacks Intensifying?

Stay Connected