Information Management Today

Weekly Update 384

Troy Hunt

JANUARY 27, 2024

To add some more perspective, I've just posted a poll immediately before publishing this blog post, let's see what the masses have to say: Scraping: should we be concerned if an individual's personal data is scraped, aggregated en mass and redistributed if that same data is already publicly accessible on the service anyway?

Personal data

Personal data Access Risk IT

Hive ransomware gang hit Costa Rica public health service

Security Affairs

MAY 31, 2022

CCSS sufrió hackeo en la madruga de este martes El hackeo se dio en horas de la madrugada de este martes 31 de mayo. Estoy de momento sola en la oficina y la impresora empezó a funcionar y está tirando estas hojas. Se están realizando los análisis correspondientes. — CCSSdeCostaRica (@CCSSdeCostaRica) May 31, 2022.

Ransomware

Ransomware Government Security Cybersecurity

Investigación Digital y la Web: Explorando fuentes y métodos de investigación emergentes

Archive-It

DECEMBER 7, 2023

Por el equipo ARCH, traducido por Rosario Rogel-Salazar ¿Qué es la investigación computacional crítica y cómo afianzarla en la comunidad académica? Izquierda: Karl Blumenthal presenta el Archive Research Compute Hub (ARCH); derecha: Rosario Rogel-Salazar describe las iniciativas de archivo web en América Latina (fotos de Brian Rosenblum).

Archiving

Archiving Libraries

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Threat actors are actively exploiting CVE-2022-1388 RCE in F5 BIG-IP

Security Affairs

MAY 10, 2022

Estoy viendo la explotación masiva de F5 BIG-IP CVE-2022-1388 (RCE), instalando #Webshell en /usr/local/www/xui/common/css/ como backdoor para mantener el acceso. Ataques desde: 216.162.206.213 209.127.252.207 Payload escribe en /tmp/f5.sh, sh” and install them to “/usr/local/www/xui/common/css/.”. sh, ejecuta y elimina.

Cybersecurity

Cybersecurity Access Security IT

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

Security Affairs

APRIL 10, 2023

“DEV-1084 was then later observed leveraging highly privileged compromised credentials to perform en masse destruction of resources, including server farms, virtual machines, storage accounts, and virtual networks, and send emails to internal and external recipients.” ” reads the report published by Microsoft.

Ransomware

Ransomware File names Access Education

Inside the Massive Alleged AT&T Data Breach

Troy Hunt

MARCH 18, 2024

I linked to the story from the beginning of this blog post and got a handful of willing respondents for whom I sent their data and asked two simple questions: Does this data look accurate? As I said in the intro, this is not the conclusive end I wanted for this blog post.

Data breaches

Data breaches Encryption Sales IT

Are you using a Sophos UTM appliance? Be sure it is up to date!

Security Affairs

AUGUST 23, 2021

” explained the expert in a blog post. Accept : text/javascript, text/html, application/xml, text/xml, */* Accept-Language : en-US,en;q=0.5 “I grabbed ISOs for versions 9.510-5 and 9.511-2 of the Sophos UTM platform and spun them up in a lab environment. Host : 192.168.50.17 User-Agent : Mozilla/5.0 (X11;

IT

IT Authentication Security Information Security

Russia-linked Fronton botnet could run disinformation campaigns

Security Affairs

MAY 23, 2022

The botnet provides a web-based dashboard known as SANA that allows operators to spread trending social media events, called ‘newsbreaks,’ en masse. The botnet was developed to interact with multiple social media platforms, including Blog Sites, Media Sites, Forums (various engines), Sites (various engines).

IoT

IoT Sales Security Cybersecurity

IBM Cloud delivers enterprise sovereign cloud capabilities

IBM Big Data Hub

FEBRUARY 22, 2024

For example, last year our cloud services in both our MZRs in Frankfurt and Madrid received Spain’s National Security Framework (ENS) High certification. The post IBM Cloud delivers enterprise sovereign cloud capabilities appeared first on IBM Blog.

Cloud

Cloud Computer and Electronics Compliance Financial Services

Hybrid IT fuels digital transformation

CGI

AUGUST 1, 2017

De ce fait, les organisations s’attendent désormais à pouvoir mettre en œuvre de nouveaux modèles d’affaires avec davantage de flexibilité et de rapidité dans le cadre de leur transformation numérique. Selon mon expérience, la réponse est non.

Digital transformation

Digital transformation IT

Hybrid IT fuels digital transformation

CGI

AUGUST 1, 2017

De ce fait, les organisations s’attendent désormais à pouvoir mettre en œuvre de nouveaux modèles d’affaires avec davantage de flexibilité et de rapidité dans le cadre de leur transformation numérique. Selon mon expérience, la réponse est non.

Digital transformation

Digital transformation IT

U.S. data transparency act compliance in reach, offering potential for new data uses

CGI

JULY 28, 2016

La conformité à la loi américaine sur la transparence des données ouvre la voie à de nouvelles possibilités en matière d’utilisation des données. La date officielle d’entrée en vigueur de l’application de cette loi est prévue en mai 2017. Thu, 07/28/2016 - 07:04.

Compliance

Compliance Government Access

The drive to innovate among U.S. insurance carriers

CGI

JUNE 12, 2017

Les résultats de l’étude s’arriment aux perspectives issues du rapport CGI Global 1000 , qui révèle un sentiment d’urgence parmi les assureurs à l’échelle mondiale les incitant à élaborer des stratégies de transformation numérique, tout en modernisant les systèmes existants et en ayant recours aux nouvelles technologies pour stimuler l’innovation.

Insurance

Best practices for verifying SaaS security

CGI

DECEMBER 2, 2016

Le logiciel service (SaaS) est un modèle de prestation de services très prisé pour accroître l’efficacité des services en TI axés sur les activités opérationnelles. Les données des clients sont en effet gouvernées selon le cadre de gestion du fournisseur SaaS plutôt qu’en fonction de celui du client. Fri, 12/02/2016 - 03:47.

Security

Security Cloud Access

10 cybersecurity questions for elected officials

CGI

OCTOBER 1, 2015

L’ère numérique ainsi que les nouvelles attentes des citoyens obligent les élus à recourir aux technologies pour contribuer à la transformation des gouvernements en vue d’améliorer les services publics et les interactions avec les citoyens. Avons-nous un plan d’intervention à jour en cas d’intrusion?

Cybersecurity

Cybersecurity Communications IoT Risk

10 cybersecurity questions for elected officials

CGI

OCTOBER 1, 2015

L’ère numérique ainsi que les nouvelles attentes des citoyens obligent les élus à recourir aux technologies pour contribuer à la transformation des gouvernements en vue d’améliorer les services publics et les interactions avec les citoyens. Avons-nous un plan d’intervention à jour en cas d’intrusion?

Cybersecurity

Cybersecurity Communications IoT Risk

Digital scholarship and the web: Exploring new sources and emerging research methods

Archive-It

NOVEMBER 28, 2023

Emily Lynell Edwards introduced her team’s research on 2000s- and 2010s-era Mormon mommy blogging. Primary sources for this research include the Brigham Young University web archive collections: Mormon Blogs , Mormon Journals & Magazines , and Mormon Websites. It was developed with support from the Mellon Foundation.

Archiving

Archiving Libraries IT

Shared services are an effective means to innovation and savings

CGI

JULY 20, 2015

Il convient même aux entreprises de très grande envergure d’utiliser des processus et systèmes administratifs uniques pour la facturation, l’approvisionnement, les ressources humaines, la formation et les finances ainsi que pour le soutien en matière de communications, de marketing, d’affaires juridiques et de technologie.

Communications

Communications Marketing Access

Lessons learned in securing clouds and achieving compliance objectives

CGI

NOVEMBER 21, 2016

Évaluer les services proposés par les fournisseurs en fonction des risques actuels d’une organisation en ce qui a trait à l’information et aux applications essentielles. Vos installations locales d’entreposage en libre-service peuvent offrir une protection suffisante pour des biens de faible valeur tels que des meubles.

Compliance

Compliance Cloud Security Access

Improving efficiency and accountability in emergency funding programs

CGI

AUGUST 16, 2016

Dans le cas de catastrophes naturelles, les activités d’aide immédiate, comme l’apport d’eau et de nourriture ou la mise en place d’abris temporaires, tendent à être exercées plus rapidement que les efforts de rétablissement à long terme. en anglais. Blog moderation guidelines and term of use. S’inspirer des leçons apprises.

Coronavirus and the future of remote working

IT Governance

MAY 14, 2020

In this blog, we explain the biggest issues that organisations must address when considering their long-term plans for remote workers. The post Coronavirus and the future of remote working appeared first on IT Governance UK Blog. Technological risks.

Risk

Risk Phishing Authentication Security

Cybersecurity: Actions to take for elected officials and agency heads

CGI

OCTOBER 29, 2015

En cette ère numérique, alors que davantage de gens et d’appareils sont connectés, la volonté de « faire de son mieux » sous-tend le recours aux technologies appropriées en vue d’améliorer les services aux citoyens sans les exposer aux conséquences découlant d’une atteinte à la cybersécurité.

Cybersecurity

Cybersecurity Government

Health policy and implementation challenges to achieving big data outcomes - Part 2

CGI

MAY 12, 2015

Produire des résultats à partir des données massives : politiques de santé et défis liés à la mise en œuvre – 2e partie. Cependant, les défis traditionnels associés aux données dépersonnalisées constitueront des obstacles plus sérieux en ce qui a trait à d’autres résultats issus des données massives. Tue, 05/12/2015 - 05:00.

Big data

Big data Insurance Communications

I EDICIÓN DE ARCHIVOZ, “ARCHIVOS CON ARTE”

Archives Blogs

MAY 30, 2019

LA I EDICIÓN DE ARCHIVOZ, “ARCHIVOS CON ARTE”, ORGANIZADA EL 21 DE MAYO EN LA FACULTAD DE DOCUMENTACIÓN DE LA UCM, HA MOSTRADO COMO ARCHIVOS Y ARTE SE PUEDEN FUSIONAR. En cambio, las revistas divulgativas alimentan a un público más general, no tienen aparato crítico, el comité que tienen detrás no suele se académico, y poseen publicidad.

8 quick wins that will improve your cybersecurity posture without breaking your budget

CGI

MARCH 26, 2015

Et, bien qu’une énorme part du budget en TI continue d’être allouée aux dépenses en cybersécurité, cette enveloppe est désormais résolument réduite. Il est possible d’améliorer la protection et la surveillance de votre entreprise de façon significative en prenant quelques mesures de base qui génèrent des résultats appréciables.

Cybersecurity

Archive-It Partner News, February 2024

Archive-It

FEBRUARY 22, 2024

If you’d like to learn more and request access to your own ARCHWay account, check out the ARCHWay announcement on the Archive-It Blog. We invite you to discover the insightful results of this survey on the Archive-It blog. Miami-Dade Public Library System Historic Takoma, Inc.

Archiving

Archiving Digital preservation IT Libraries

Health policy challenges to achieving big data outcomes, part I

CGI

MAY 5, 2015

Produire des résultats à partir des données massives : politiques de santé et défis liés à la mise en œuvre – 1re partie. Les outils de données massives regroupent de grandes quantités de données disponibles afin d’atteindre un objectif, que les données aient été recueillies précisément et exclusivement en fonction de cet objectif ou non.

Big data

Big data Insurance Communications

Busy? Hire a Robot(ic Process Automation Tool)

Rocket Software

NOVEMBER 19, 2020

En masse, RPA can and has already replaced billions of hours of human work. Hire a Robot(ic Process Automation Tool) appeared first on The Rocket Software Blog. As you can tell, this has major import for the public and the private sectors, where labor tends to be among the biggest, if not the biggest, costs. The post Busy?

Insurance

Insurance Financial Services Sales Government

Where there’s opportunity, there is a cyber target

CGI

APRIL 1, 2015

En 1999, j’ai travaillé dans un grand immeuble de bureaux qui faisait face à une station de métro. En 15 minutes, des frais liés aux cartes de crédit volées étaient enregistrés au centre commercial situé deux stations plus loin. en anglais. Blog moderation guidelines and term of use. Voici pourquoi. Add new comment.

Attacks Escalating Against Linux-Based IoT Devices

eSecurity Planet

JANUARY 20, 2022

There was a 10-fold increase in the number of samples of Mozi found in the wild, Mihai Maganu, a threat researcher at CrowdStrike, wrote in a blog post. The primary goal of all this malware is to compromise the devices and systems, pull them into a botnet and use them for distributed denial-of-services (DDoS) attacks, Maganu wrote.

IoT

IoT Cybersecurity Communications Cloud

U.S. Supreme Court Takes Microsoft Corp. v. United States in Law Enforcement Access Row

HL Chronicle of Data Protection

OCTOBER 23, 2017

The case was previously decided twice in Microsoft’s favor in the Second Circuit, which declined to grant en banc review by a 4-4 decision.

Access

Access Communications Privacy Government

Enhancing customer experience: Streamlining orders with custom email notifications in IBM Cloud

IBM Big Data Hub

OCTOBER 11, 2023

Learn more about IBM Cloud Event Notifications The post Enhancing customer experience: Streamlining orders with custom email notifications in IBM Cloud appeared first on IBM Blog.

Customer Experience

Customer Experience Cloud Authentication Compliance

e-Invoicing mandates and updates: Germany

OpenText Information Management

MARCH 22, 2024

The official timeline remains as follows: All German companies must be prepared to receive electronic invoices based on EN 16931 standard as of Jan 1 st 2025. The post e-Invoicing mandates and updates: Germany appeared first on ONE OpenText Blogs.

e-Delivery

e-Delivery B2B Paper Government

FCC and FTC Enter Memorandum of Understanding to Coordinate Regulation of ISPs

Data Matters

JANUARY 19, 2018

AT&T Mobility , the court is rehearing en banc a Ninth Circuit panel opinion holding that the FTC is precluded from exercising jurisdiction over even the non-common-carrier services of a common carrier (e.g., the broadband services of a cell phone carrier).

Communications

Communications Privacy Education IT

FTC Posts Eleventh Blog in Its “Stick with Security” Series

Hunton Privacy

OCTOBER 3, 2017

On September 29, 2017, the Federal Trade Commission published the eleventh blog post in its “Stick with Security” series. Keep Safety Standards in Place When Data Is En Route : Security conscious companies should exercise care when transferring sensitive data.

IT

IT Security Paper Encryption

French Police remotely disinfected 850,000 PCs from RETADUP bot

Security Affairs

AUGUST 28, 2019

En lien avec le #FBI , les #cybergendarmes parviennent à "désinfecter" à distance plus de 850 000 ordinateurs. ” reads a blog post published by Avast. The operation allowed the France law enforcement agency to remotely disinfect more than 850,000 computers worldwide with the help of Avast malware researchers.

Mining

Mining Ransomware IT Security

Hackers exploit coronavirus fears as cyber attacks soar

IT Governance

MARCH 17, 2020

Meanwhile, the rapid onset of remote working en masse means many employees won’t get the training they need to manage risks effectively. The post Hackers exploit coronavirus fears as cyber attacks soar appeared first on IT Governance UK Blog.

Phishing

Phishing Risk Communications Government

Digital leaders: Driving pace and scale in a dynamic market, part 2 (organization)

CGI

OCTOBER 17, 2017

In reply to On parle de plus en plus de… by Daniel BELTRAMI. Blog moderation guidelines and term of use. Nous les avons traduits et transmis à Craig. Merci d’avoir pris part à cette intéressante discussion. Submitted by cgiblog on November 5, 2017. Add new comment.

Marketing

Marketing Digital transformation IT

No Mail, Low Morale: The 6888th Central Postal Battalion

Unwritten Record

FEBRUARY 8, 2022

Original Caption: “One of the two similar buildings, in France, which house the vast quantities of Christmas mail en route to American soldiers.” Pictures of African Americans During World War II, Select List of Photographs African American Women in the Military During WWII, Blog Post. Local Identifier: 111-SC-197654.

Archiving

Archiving Military Libraries Marketing

Leveraging user-generated social media content with text-mining examples

IBM Big Data Hub

AUGUST 28, 2023

Effective brand reputation management: Social media platforms are powerful channels where customers express opinions en masse. Learn more about IBM Watson Assistant The post Leveraging user-generated social media content with text-mining examples appeared first on IBM Blog.

Mining

Mining Marketing Artificial Intelligence Customer Experience

Weekly Update 369

Troy Hunt

OCTOBER 14, 2023

And we as builders are still creating systems that allow this to happen en mass. here's a blog post about how stupid class actions like this are! We're (us as end users) still reusing credentials, still not turning on MFA and still trying to sue when we don't do these things. Protect your identity now.

Data breaches

Data breaches Marketing Security IT

CVE-2019-10149: “Return of the WiZard” Vulnerability: Crooks Start Hitting

Security Affairs

JUNE 24, 2019

Technical details, including IoCs and Yara Rules, are available in the analysis published in the Yoroi blog. 2>/dev/nulllscpu > lscpu 2>/dev/null # copy stuff from /etc? So, the Yoroi-Cybaze researchers recommend to update Exim servers in order to avoid the risk of other attack waves. Pierluigi Paganini.

IT

IT Ransomware Cloud Security

This is the old ChiefTech blog.: Another Wiki Case Study from Dan Bricklin: Thomson Learning

ChiefTech

MARCH 9, 2007

This is the old ChiefTech blog. However, you need to come over and see my new blog at chieftech.com.au. Disclaimer: Information on this blog is of a general nature and represents my own independent opinion. 7eighth.com es algo mas en lo que tenemos que colaborar. 7eighth.com es algo mas en lo que tenemos que colaborar.

Paper

Paper Archiving IT

Calif. Privacy Law Will Likely Prompt Flood Of Class Actions

Data Matters

MAY 16, 2019

In addition to instituting CCPA compliance and preparedness in order to comply with the CCPA’s notice and disclosure obligations, companies should consider including an arbitration clause and a class action waiver in the website’s terms and conditions, prohibiting users from litigating en masse. Clark , 137 S.Ct. 1421 (2017). [5]

Privacy

Privacy Data breaches Sales Access

Weekly Update 384

Hive ransomware gang hit Costa Rica public health service

Webinars

Trending Sources

Investigación Digital y la Web: Explorando fuentes y métodos de investigación emergentes

Webinars

Threat actors are actively exploiting CVE-2022-1388 RCE in F5 BIG-IP

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

Inside the Massive Alleged AT&T Data Breach

Are you using a Sophos UTM appliance? Be sure it is up to date!

Russia-linked Fronton botnet could run disinformation campaigns

IBM Cloud delivers enterprise sovereign cloud capabilities

Hybrid IT fuels digital transformation

Hybrid IT fuels digital transformation

U.S. data transparency act compliance in reach, offering potential for new data uses

The drive to innovate among U.S. insurance carriers

Best practices for verifying SaaS security

10 cybersecurity questions for elected officials

10 cybersecurity questions for elected officials

Digital scholarship and the web: Exploring new sources and emerging research methods

Shared services are an effective means to innovation and savings

Lessons learned in securing clouds and achieving compliance objectives

Improving efficiency and accountability in emergency funding programs

Coronavirus and the future of remote working

Cybersecurity: Actions to take for elected officials and agency heads

Health policy and implementation challenges to achieving big data outcomes - Part 2

I EDICIÓN DE ARCHIVOZ, “ARCHIVOS CON ARTE”

8 quick wins that will improve your cybersecurity posture without breaking your budget

Archive-It Partner News, February 2024

Health policy challenges to achieving big data outcomes, part I

Busy? Hire a Robot(ic Process Automation Tool)

Where there’s opportunity, there is a cyber target

Attacks Escalating Against Linux-Based IoT Devices

U.S. Supreme Court Takes Microsoft Corp. v. United States in Law Enforcement Access Row

Enhancing customer experience: Streamlining orders with custom email notifications in IBM Cloud

e-Invoicing mandates and updates: Germany

FCC and FTC Enter Memorandum of Understanding to Coordinate Regulation of ISPs

FTC Posts Eleventh Blog in Its “Stick with Security” Series

French Police remotely disinfected 850,000 PCs from RETADUP bot

Hackers exploit coronavirus fears as cyber attacks soar

Digital leaders: Driving pace and scale in a dynamic market, part 2 (organization)

No Mail, Low Morale: The 6888th Central Postal Battalion

Leveraging user-generated social media content with text-mining examples

Weekly Update 369

CVE-2019-10149: “Return of the WiZard” Vulnerability: Crooks Start Hitting

This is the old ChiefTech blog.: Another Wiki Case Study from Dan Bricklin: Thomson Learning

Calif. Privacy Law Will Likely Prompt Flood Of Class Actions

Stay Connected