#cybersecur

[ follow ]

Leveraging PKI-Based Digital Certificates as Strategic Assets, Rather than Management Burdens - Developer Tech News

Digital certificates can be a time-consuming manual process for IT and security teams.
Transforming digital certificates into a valuable asset requires a proactive approach, including leveraging advanced technologies like PKI.
#cyber-attack

British Library says final cost of cyber attack is not confirmed'

The British Library will have to use 40% of its reserves, equivalent to 6-7 million pounds, to rebuild its digital services after a cyber attack.
The library has not applied for additional funding and maintains its own financial reserve to address unexpected issues.

Top 10 Web Application Security Threats to Look Out For in 2024

The threat landscape has changed due to technological innovations in 2023, with new threats emerging and old threats reducing.
Businesses need to adapt to digital portals but must also secure their digital footprint to avoid being targeted by attackers.

British Library says final cost of cyber attack is not confirmed'

The British Library will have to use 40% of its reserves, equivalent to 6-7 million pounds, to rebuild its digital services after a cyber attack.
The library has not applied for additional funding and maintains its own financial reserve to address unexpected issues.

Top 10 Web Application Security Threats to Look Out For in 2024

The threat landscape has changed due to technological innovations in 2023, with new threats emerging and old threats reducing.
Businesses need to adapt to digital portals but must also secure their digital footprint to avoid being targeted by attackers.
morecyber-attack

How 50% of telco Orange Spain's traffic got hijacked - a weak password

An outage at Orange Spain was caused by a BGP hijack, where the threat actor accessed Orange's RIPE account.
The threat actor used the access.ripe.net website to log into the account and make changes to the BGP routing configurations.
#identity-theft

4 Remote Workplaces Most Vulnerable To Cyberattacks And 9 Common Mistakes

Remote workers face increased cyber threats as cyberattacks on individuals and companies continue to rise.
Co-working spaces, libraries, coffee shops, cafes, and working in a different country or city from your company are the most vulnerable locations for data theft.

A Better New Year's Resolution: Make Your Passwords Secure

Use unique passwords for each account
Avoid storing login credentials in easily accessible places

4 Remote Workplaces Most Vulnerable To Cyberattacks And 9 Common Mistakes

Remote workers face increased cyber threats as cyberattacks on individuals and companies continue to rise.
Co-working spaces, libraries, coffee shops, cafes, and working in a different country or city from your company are the most vulnerable locations for data theft.

A Better New Year's Resolution: Make Your Passwords Secure

Use unique passwords for each account
Avoid storing login credentials in easily accessible places
moreidentity-theft

Attorney General James Reaches Agreement with Refuah Health Center to Invest $1.2 Million to Protect Patient Data and Pay $450,000 in Penalties to State

Refuah Health Center, Inc. has agreed to invest $1.2 million to strengthen its cybersecurity following a ransomware attack that compromised the personal information of 250,000 New Yorkers.
The New York Attorney General will continue to protect the data of New Yorkers from companies with inadequate cybersecurity measures.
#ransomwar

Xerox says subsidiary XBS U.S. breached after ransomware gang leaks data

Xerox Business Solutions (XBS), a subsidiary of Xerox Corporation, has been compromised by hackers with limited personal information possibly exposed.
INC Ransom ransomware gang claimed to have stolen sensitive data and confidential documents from Xerox's systems, but the extent of the breach remains unknown at this time.

ChatGPT-aided ransomware in China results in four arrests as AI raises cybersecurity concerns

Four cyber attackers in China have been arrested for developing ransomware with the help of ChatGPT.
The hackers demanded 20,000 Tether, a cryptocurrency stablecoin, to restore access.
The suspects admitted to writing ransomware versions, optimizing the program with ChatGPT's help, conducting vulnerability scans, and carrying out extortion.

Estes refuses to deliver ransom, but did lose client data

Estes Express Lines has notified over 20,000 customers that their personal information may have been stolen in a ransomware attack.
The attack was originally disclosed in October and the company has now confirmed that the criminals did steal personal information, although the specific data accessed has not been specified.

A point worth considering

Misconception that education is the most frequent target of ransomware
Education sector needs to prioritize implementing best practices to reduce cyber incidents

Xerox says subsidiary XBS U.S. breached after ransomware gang leaks data

Xerox Business Solutions (XBS), a subsidiary of Xerox Corporation, has been compromised by hackers with limited personal information possibly exposed.
INC Ransom ransomware gang claimed to have stolen sensitive data and confidential documents from Xerox's systems, but the extent of the breach remains unknown at this time.

ChatGPT-aided ransomware in China results in four arrests as AI raises cybersecurity concerns

Four cyber attackers in China have been arrested for developing ransomware with the help of ChatGPT.
The hackers demanded 20,000 Tether, a cryptocurrency stablecoin, to restore access.
The suspects admitted to writing ransomware versions, optimizing the program with ChatGPT's help, conducting vulnerability scans, and carrying out extortion.

Estes refuses to deliver ransom, but did lose client data

Estes Express Lines has notified over 20,000 customers that their personal information may have been stolen in a ransomware attack.
The attack was originally disclosed in October and the company has now confirmed that the criminals did steal personal information, although the specific data accessed has not been specified.

A point worth considering

Misconception that education is the most frequent target of ransomware
Education sector needs to prioritize implementing best practices to reduce cyber incidents
moreransomwar

Cybersecurity teams urged to prioritize protecting AI

Companies are being urged to prioritize cybersecurity for AI and cloud computing despite budget cuts.
Reducing cybersecurity budgets could lead to increased risk of data breaches.

Lions and tigers and bears, oh my! Global legal risks in cybersecurity investigations

Companies facing global ransomware and cyberattacks grapple with complex global legal risks.
Organizing global legal risks can help companies prepare for cyber incident investigations.

'Get to Know Me' trend gives hackers coveted information

Sharing personal information on social media can put users at risk of hacking and cyber attacks.
Many people use their personal information, such as birth dates and favorite foods, as passwords for online accounts.
#fraud-detect

Professors develop anti-theft keystroke-tracking technology

Professors at Brigham Young University developed keystroke-tracking technology to detect hacking through typing patterns.
The tracker allegedly determined fraudulent activity with 95.5% accuracy.

Law Firms Taken Aback By The Impact Of AI And The Rise Of Exclusions On Their Cyberinsurance Policies

AI is being used in the cyberinsurance industry to assess risk and reduce errors in the application process.
AI can also be used to detect fraudulent insurance claims with a high level of accuracy.

Professors develop anti-theft keystroke-tracking technology

Professors at Brigham Young University developed keystroke-tracking technology to detect hacking through typing patterns.
The tracker allegedly determined fraudulent activity with 95.5% accuracy.

Law Firms Taken Aback By The Impact Of AI And The Rise Of Exclusions On Their Cyberinsurance Policies

AI is being used in the cyberinsurance industry to assess risk and reduce errors in the application process.
AI can also be used to detect fraudulent insurance claims with a high level of accuracy.
morefraud-detect

Save $130 on This VPN to Kick Off the New Year | Entrepreneur

Use a VPN on public Wi-Fi to keep your business data safe
Windscribe VPN offers advanced encryption, website unblocking, ad blocking, and more

As hackers escalate health care attacks, growing concerns over medical devices

Medical devices in hospitals and patients' homes are potential targets for hackers due to vulnerabilities and outdated software.
Government watchdogs have called for improved coordination on the cybersecurity of medical devices.

Cyber Leaders With Tight Budgets Still Must Secure AI, Cloud

Companies are looking to spend less on cybersecurity while still focusing on securing technologies for business operations.
Protecting artificial intelligence and cloud computing are high priorities for cybersecurity leaders.

Artificial intelligence faces more legal challenges

Generative AI developers are facing legal challenges related to privacy, cybersecurity, and defamation.

How 160 Legal Tech Decision-Makers Are Combating Cybersecurity Threats

Cyber breaches can have significant costs for law firms in terms of reputation, data, and monetary losses.
Clients are likely to leave law firms that do not prioritize cybersecurity.

SentinelOne acquires PingSafe to drive cloud security capabilities

PingSafe's CNAPP solution will be integrated into the SentinelOne Singularity Platform.
#data-breach

Ban on ransomware payments? The alternative isn't working

Emsisoft calls for a ban on ransom payments
Record-breaking year of ransomware attacks in the US

The biggest cybersecurity and cyberattack stories of 2023

2023 was a significant year for cybersecurity, with notable cyberattacks and data breaches.
BleepingComputer has compiled a list of the most impactful cybersecurity stories of 2023.

Ban on ransomware payments? The alternative isn't working

Emsisoft calls for a ban on ransom payments
Record-breaking year of ransomware attacks in the US

The biggest cybersecurity and cyberattack stories of 2023

2023 was a significant year for cybersecurity, with notable cyberattacks and data breaches.
BleepingComputer has compiled a list of the most impactful cybersecurity stories of 2023.
moredata-breach

Chatbots Trained to 'Jailbreak' Rivals

Researchers jailbroke popular LLM chatbots to generate valid responses to malicious queries.
The Masterkey method was three times more effective in jailbreaking the chatbots and rendered patches useless.

NIST publishes genomic data security report

The U.S. National Institute of Standards and Technology National Cybersecurity Center of Excellence has released a report on cybersecurity practices for securing genomic data.
The guidance aims to help organizations assess and prioritize their risk mitigation strategies and cyber investments for genomic data.

Russian hackers believed to be behind cyber attack on Victoria's County Court

A ransomware attack has hit Victoria's court system in Australia, believed to be orchestrated by Russian hackers.
Hackers may have accessed or stolen recordings of hearings, including witness testimony from sensitive cases.
Court Services Victoria is working to notify affected individuals and set up a contact center.

Parathon by JDA e-Health: what we still don't know about their July ransomware incident

Parathon by JDA e-Health was targeted by a cybersecurity attack and personal information of individuals was potentially accessed.
Parathon is offering affected individuals free credit monitoring and identity theft protection services.

Theft of Vancouver rape crisis centre server containing sensitive data raises privacy concerns

Cybersecurity experts warn of data privacy risks after a Vancouver rape crisis center experiences a server breach.
The breach is being investigated by Vancouver police and at least one woman plans to file a complaint with B.C.'s privacy watchdog.
#ai

Trellix | Cybersecurity Summit 2024

Public sector organizations face cybersecurity challenges and must make important decisions about their cyber enterprise.
The Trellix Public Sector Cybersecurity Summit will focus on emerging topics in cybersecurity and the intersection of AI with public sector cybersecurity.

Experts' Predictions for the Future of Tech in 2024

Octavia Butler's novel Parable of the Sower, set in 2024, accurately predicted social and environmental issues that we are currently facing.
Industry experts and tech leaders predict an increase in AI-related developments in 2024, including more corporate standardization and predictive security measures.

Trellix | Cybersecurity Summit 2024

Public sector organizations face cybersecurity challenges and must make important decisions about their cyber enterprise.
The Trellix Public Sector Cybersecurity Summit will focus on emerging topics in cybersecurity and the intersection of AI with public sector cybersecurity.

Experts' Predictions for the Future of Tech in 2024

Octavia Butler's novel Parable of the Sower, set in 2024, accurately predicted social and environmental issues that we are currently facing.
Industry experts and tech leaders predict an increase in AI-related developments in 2024, including more corporate standardization and predictive security measures.
moreai

Open Source in 2024: More Volatility, More Risk, More AI

More companies changing open source licenses to business ones
New wave of regulation and GenAI's evolution

Cybersecurity guru Mikko Hypponen's 5 biggest AI threats for 2024

Mikko Hyppönen, a renowned cybersecurity expert, has been at the forefront of fighting malware
Hyppönen believes that the AI revolution will be bigger than the internet revolution

Happy New Year 2024

DataBreaches has been posting breaches for 15 years.
Cybersecurity predictions for 2024 have been made.

Pro-Palestinian operation claims dozens of data breaches against Israeli firms

Pro-Palestinian hackers breached Israeli entities during the conflict in Gaza.
The hackers released stolen data from 60 sites, including Israeli and foreign companies.

Mortgage firm LoanCare warns 1.3 million people of data breach

Mortgage servicing company LoanCare is warning 1,316,938 borrowers across the U.S. that their sensitive information was exposed in a data breach at its parent company, Fidelity National Financial.

Anna Jaques Hospital's computer system compromised by cyberattack

Dave Rogers reports:

Kaspersky reveals previously unknown hardware 'feature' used in iPhone attacks

Kaspersky researchers have discovered a previously unknown vulnerability in Apple iPhones that allows attackers to bypass hardware-based memory protection.
The vulnerability, addressed in CVE-2023-38606 and patched in July 2023, affected iPhones running iOS versions up to 16.6.

Decoding zero trust in endpoint security: A practical guide for CISOs | Computer Weekly

The rapid pace of digital transformation has increased operational efficiency and enhanced the customer experience - but it has also created a nightmare for CISOs.

Oakland man says fraudulent accounts opened, home purchased in his name after city's ransomware hack

OAKLAND, Calif. (KGO) -- It's been ten months since the city of Oakland's network was hacked and the personal information of tens of thousands of people was leaked onto the dark web.

CBS and Paramount's parent company reports hack affecting over 80,000 people

National Amusements, CBS and Paramount's parent company, reported a year-old hack this month affecting 82,128 people.

Hackers steal customer data from Europe's largest parking app operator

Europe's largest parking app operator has reported itself to information regulators in the EU and UK after hackers stole customer data.

I'm a hacker - 5 signs your accounts have been compromised

Beware, cybercriminals may have access to your personal information - but there are some ways to spot it.

Indian organisations at very high risk of cyber attacks, says survey

As artificial intelligence and technological advancements continue to take over the world, a recent survey has revealed that cyber attacks and threats are currently the biggest risks faced by Indian organisations.

Troubling attacks on medical sector continue: cancer center's data leaked, specialty infusion pharmacies locked?

The Fred Hutchinson Cancer Center was attacked by a group called Hunters International, resulting in the exfiltration of 533.1 GB of files.
BioMatrix LLC was targeted by the Medusa gang, who are demanding ransom in exchange for not publishing patient data.
[ Load more ]