Information Management Today

Shadowserver reported that +15K Citrix servers are likely vulnerable to attacks exploiting the flaw CVE-2023-3519

Security Affairs

JULY 23, 2023

Most of the servers are located in the United States and Germany. Update on CVE-2023-3519 vulnerable IPs: we now tag 15K Citrix IPs as vulnerable to CVE-2023-3519. We extended the tagging logic to tag as vulnerable all that return Last Modified headers with a date before July 1, 2023 00:00:00Z.

Cybersecurity

Cybersecurity Cloud Encryption Passwords

Security Affairs newsletter Round 371 by Pierluigi Paganini

Security Affairs

JUNE 26, 2022

SecurityAffairs awarded as Best European Personal Cybersecurity Blog 2022 Crooks are using RIG Exploit Kit to push Dridex instead of Raccoon stealer Flagstar Bank discloses a data breach that impacted 1.5

Security

Security Data breaches Phishing Ransomware

Fortinet FortiNAC CVE-2022-39952 flaw exploited in the wild hours after the release of PoC exploit

Security Affairs

FEBRUARY 23, 2023

Tags and blocklists available now. Hat tip to @Horizon3Attack [link] pic.twitter.com/tHyYHIXQKA — Andrew Morris (@Andrew Morris) February 22, 2023 At the time of this writing, the attacks observed by GreyNoise originated from two IP addressed, respectively in Germany and the US. 1/ Heads Up!

Honeypots

Honeypots File names Cybersecurity Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Malicious dropper apps on Play Store totaled 30.000+ installations

Security Affairs

OCTOBER 31, 2022

Germany, Spain, Poland, Austria, the U.S., “Android offers a way to tag the content of the window as secure, by using the “FLAG_SECURE” , which prevents it “from appearing in screenshots or from being viewed on non-secure displays”. Australia, France, and the Netherlands. ” continues the report.

Authentication

Authentication Security IT Information Security

PoC exploits for Atlassian CVE-2022-26134 RCE flaw released online

Security Affairs

JUNE 5, 2022

Tags available to all @GreyNoiseIO users now – Create an account to deploy a dynamic block list to block it [link] pic.twitter.com/xXldngWdPH — Andrew Morris @ RSA (@Andrew Morris) June 4, 2022. China, and Germany. “It 23 unique IPs so far. Most of the installs are located in the U.S.,

Cybersecurity

Cybersecurity IoT Security IT

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Security Affairs

JUNE 6, 2022

Other divisions involved in the DDoS attacks included “Vera”, “FasoninnGung”, “Mirai”, “Jacky”, “DDOS Gung” and “Sakurajima” who previously attacked multiple WEB-resources in Germany. .

Government

Government Cybersecurity IoT Security

Balada Injector still at large – new domains discovered

Security Affairs

AUGUST 9, 2023

Within the file, there were seven brackets of PHP tags and each of them contained an obfuscated piece of code within. The PHP tags were stacked on top of each other, having legitimate code of the website at the very bottom. Therefore, if the syntax was correct, it ran the malicious code before serving the actual website being visited.

Access

Access IT Security Information Security

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

Krebs on Security

NOVEMBER 28, 2022

.” The company’s founder Max Konev told Reuters Pushwoosh “has no connection with the Russian government of any kind” and that it stores its data in the United States and Germany. Pushwoosh employees posing at a company laser tag event. But Reuters found that while Pushwoosh’s social media and U.S.

Government

Government Risk IT Marketing

Maciej Ceg?owski on Privacy in the Information Age

Schneier on Security

JUNE 19, 2019

Even police states like East Germany, where one in seven citizens was an informer, were not able to keep tabs on their entire population. If I'm subjected to facial recognition at the airport, or tagged on social media at a little league game, or my public library installs an always-on Alexa microphone, no one is violating my legal rights.

Privacy

Privacy Libraries IT

BlackCat (aka ALPHV) Ransomware is Increasing Stakes up to $2,5M in Demands

Security Affairs

JULY 11, 2022

In a recent post from 10 Jul 2022, 15:35 pm in Dark Web , “ALPHV” introduced search not only by text signatures, but also supporting tags for search of passwords and compromised PII. It seems that some of the stolen files are still under indexing, but majority is already available for quick navigation.

Ransomware

Ransomware Passwords Communications Cybersecurity

EUROPE: e-Privacy Regulation – changes regarding electronic communications and digital marketing

DLA Piper Privacy Matters

AUGUST 1, 2019

b) Cookies and similar files/tags. The current Council draft of the e-Privacy Regulation also provides comprehensive rules for use of web cookies and similar files or tags, considerably extending the current regulations. The use of cookies (and similar files/tags) requires consent in general. Next steps.

Communications

Communications Marketing Privacy Metadata

Subject Finding Aid Project (Update 3)

Unwritten Record

MAY 17, 2022

In Batches 6 and 7, we’ve been able to add 4,356 new descriptions to the NARA Catalog, while adding, roughly, 5,000 tags to the new descriptions, as well as already existing descriptions. List of Finding Aid Tags from Batches 6 and 7: Batch 6: WWII Asia 1-War in China – StillPixFindingAid.

Military

Military Government

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

IT Governance

MARCH 5, 2024

The ICO has issued an enforcement notice and a warning to the Home Office. Italian data protection authority fines Enel €79 million Italy’s data protection regulator, the Garante per la Protezione dei Dati Personali, has fined the country’s largest utility company, Enel, more than €79 million for misusing customer data for telemarketing.

Data Privacy

Data Privacy Privacy Manufacturing Retail

Experts found Joker Spyware in 24 apps in the Google Play store

Security Affairs

SEPTEMBER 8, 2019

The campaign tag “ The spyware also automatically signs up victims for premium service subscriptions for various advertisements, the malware is able to automate the necessary interaction with the premium offer’s webpage, including intercepting the SMS containing the confirmation code. The C&C URL 6.

Encryption

Encryption Security IT Information Security

Traffic unrules - can we apply these patterns to enterprise IT?

ChiefTech

JUNE 27, 2008

Bohmte, a town in Germany, has abolished road signs in an effort to reduce accidents. Technorati tags: Bohmte , Shared Spaces , Hans Monderman , Road Rules , Wikis , Enterprise 2.0 , enterprise social software , enterprise social computing , IT Sounds a bit like a wiki-style approach to sharing the road, don't you think?

IT

The Future of the Web | ZDNet

Collaboration 2.0

AUGUST 12, 2008

Our semantic application (uses Freebase as a tag source) automatically tags content with tags. Then, users utilize tag browsing to find what they want. Much like this video, when you click on a tag, we show all tags associated with the tag clicked. Then, you can keep going. Thanks again.

Paper

Paper Archiving Education IT

Free Taxonomy & Folksonomy Book | ZDNet

Collaboration 2.0

JULY 15, 2008

The value of tagging and organizing information is central to this and Daniela’s ebook is an extremely useful resource that is very valuable for educating everyone involved in a team that is organizing their data. Weaving Taxonomies and Folksonomies into both legacy and new tools retains relevance for the weaker links.

Paper

Paper Metadata e-Delivery Education

Humanitarian Collaboration | ZDNet

Collaboration 2.0

AUGUST 10, 2008

Doctors can now use mobile devices to to tag patient condition and sending, for example, xrays from Africa to India by mobile network to be checked by doctors and diagnosed. “ Making the E Health Connection &# is a major conference to establishing partnerships, frameworks and agreements that will advance global health systems.

e-Delivery

e-Delivery Paper Education Cloud

'ESME': Social messaging within an enterprise SOA environment | ZDNet

Collaboration 2.0

AUGUST 4, 2008

In some ways ESME is more advanced than Twitter since it features user groups and tag clouds, enabling project based contextual messaging. ‘ESME’ (’Enterprise Social Messaging Experiment’) is essentially a behind the firewall version of Twitter, designed to run on top of Netweaver.

Paper

Paper Cloud Records Management IT

Autonomy CEO: Web 2.0 'under all the hype, there is something there.' | ZDNet

Collaboration 2.0

JUNE 30, 2008

In addition, they can automatically reconcile tags that differ but are close in meaning, or actually provide the level of specificity needed in the enterprise that social methods struggle to deliver.

Paper

Paper Communications Marketing CMS

Microsoft Office Sharepoint Server: a next generation of deeper, wider content silos? | ZDNet

Collaboration 2.0

JUNE 22, 2008

Taxonomies and tagging, threaded discussion, wikis and other ‘Enterprise 2.0 ‘ tools are an alternative solution to the problem of generating mountains of hard to find silo’d information and associated email.

Records Management

Records Management Paper Archiving ECM

Apple founder Steve Wozniak interview, answers your Tweeted questions | ZDNet

Collaboration 2.0

JULY 10, 2008

Weve actually resorted to putting name tags on the inisde of our childrens shirts. I mean, there are hundreds of the same-looking strollers and very young and curious-minded children adrift amongst the thousands upon thousands of visitors and families at theme parks and studios like Disney who get lost. which actually work.

Computer and Electronics

Computer and Electronics Paper Communications Marketing

The History of Computer Viruses & Malware

eSecurity Planet

NOVEMBER 2, 2022

2017 saw a pirated version of Petya, called “ NotPetya ,” hit multiple European countries in a major cyber attack, most notably Ukraine and Germany. It later evolved to also include file encryption. Petya was initially developed by a group called Janus Cybercrime Solutions as part of its ransomware-as-a-service (RaaS) platform.

Ransomware

Ransomware Cybersecurity Passwords Access

Information Management Today

Shadowserver reported that +15K Citrix servers are likely vulnerable to attacks exploiting the flaw CVE-2023-3519

Security Affairs newsletter Round 371 by Pierluigi Paganini

Webinars

Trending Sources

Fortinet FortiNAC CVE-2022-39952 flaw exploited in the wild hours after the release of PoC exploit

Webinars

Malicious dropper apps on Play Store totaled 30.000+ installations

PoC exploits for Atlassian CVE-2022-26134 RCE flaw released online

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Balada Injector still at large – new domains discovered

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

Maciej Ceg?owski on Privacy in the Information Age

BlackCat (aka ALPHV) Ransomware is Increasing Stakes up to $2,5M in Demands

EUROPE: e-Privacy Regulation – changes regarding electronic communications and digital marketing

Subject Finding Aid Project (Update 3)

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

Experts found Joker Spyware in 24 apps in the Google Play store

Traffic unrules - can we apply these patterns to enterprise IT?

The Future of the Web | ZDNet

Free Taxonomy & Folksonomy Book | ZDNet

Humanitarian Collaboration | ZDNet

'ESME': Social messaging within an enterprise SOA environment | ZDNet

Autonomy CEO: Web 2.0 'under all the hype, there is something there.' | ZDNet

Microsoft Office Sharepoint Server: a next generation of deeper, wider content silos? | ZDNet

Apple founder Steve Wozniak interview, answers your Tweeted questions | ZDNet

The History of Computer Viruses & Malware

Stay Connected