Hunton Privacy

MAY 20, 2014

On May 19, 2014, the French Data Protection Authority (the “CNIL”) published its Annual Activity Report for 2013 (the “Report”) highlighting its main accomplishments in 2013 and outlining some of its priorities for the upcoming year. In 2013, the CNIL conducted 414 inspections. Read the CNIL’s full report.

Personal data 40

Personal data Risk Marketing Security 40

Security Affairs

APRIL 22, 2020

China-linked Winnti cyberespionage group targets South Korean video gaming company Gravity, QuoIntelligence (QuoINT) firm reported. Security experts from QuoIntelligence (QuoINT) firm reported that China-linked Winnti cyberespionage group targets South Korean video gaming company Gravity. a South Korean video game company.”

Healthcare 113

Healthcare Communications IT Security 113

Security Affairs

MAY 13, 2023

A data breach disclosed by Toyota Motor Corporation exposed info of more than 2 million customers for ten years Toyota Motor Corporation disclosed a data breach that exposed the car-location information of 2,150,000 customers between November 6, 2013, and April 17, 2023. ” reads the data breach notification published by the automaker.

Data breaches 86

Data breaches Access Authentication Cloud 86

Security Affairs

JULY 17, 2020

Iran-linked APT35 group accidentally exposed one of its servers, leaving online roughly 40 GB of videos and other files associated with its operations. The experts found several files on the server, roughly five hours of training videos recorded by the APT group. Some of the videos were showing how to exfiltrate data (i.e.

Military 88

Military Authentication Cloud IT 88

Security Affairs

DECEMBER 16, 2020

Security experts spotted a new malware strain, named Goontact, that allows its operators to spy on both Android and iOS users. Security researchers from Lookout have discovered new spyware, dubbed Goontcat, that could target both Android and iOS users. ” continues the report. ” continues the report. Pierluigi Paganini.

Communications 111

Communications Security IT Information Security 111

Security Affairs

JANUARY 10, 2023

The StrongPity APT group targeted Android users with a trojanized version of the Telegram app served through a website impersonating a video chat service called Shagle. The campaign has been active since November 2021, threat actors served the malicious app through a website impersonating a video chat service called Shagle.

Data collection 85

Data collection Access Communications IT 85

Security Affairs

MARCH 16, 2020

Security experts Simon Zuckerbraun from Zero Day Initiative published technical details on how to exploit the Microsoft Exchange CVE-2020-0688 along with a video PoC. The vulnerability impacts Microsoft Exchange 2010, 2013, 2016, and 2019. ” reads the report published by Kenna Security. Pierluigi Paganini.

Authentication 94

Authentication Access Security Cybersecurity 94

Security Affairs

MAY 22, 2020

Winnti hacking group is using a new malware dubbed PipeMon and a novel method to achieve persistence in attacks aimed at video game companies. The Winnti group was first spotted by Kaspersky in 2013, but according to the researchers the gang has been active since 2007. ” reads the report published by the company.

Healthcare 103

Healthcare Encryption Passwords IT 103

Security Affairs

SEPTEMBER 30, 2020

Security experts Simon Zuckerbraun from Zero Day Initiative published technical details on how to exploit the Microsoft Exchange CVE-2020-0688 along with a video PoC. Researchers from Rapid7 reported that 61 percent of Exchange 2010, 2013, 2016 and 2019 servers are still vulnerable to the vulnerability. Pierluigi Paganini.

Authentication 101

Authentication Cybersecurity Risk Security 101

Krebs on Security

MARCH 9, 2023

The WorldWiredLabs website, in 2013. A Youtube video invoking this corporate name describes Godbex as a “next generation platform” for exchanging gold and cryptocurrencies. A review of DNS records for both printschoolmedia[.]org org and wwlabshosting[.]com worldwiredlabs[.]com. Source: Archive.org.

Access 248

Access Passwords Sales Retail 248

Krebs on Security

MARCH 22, 2022

But according to information obtained by KrebsOnSecurity, it is equally likely Vrublevsky was arrested thanks to his propensity for carefully documenting the links between Russia’s state security services and the cybercriminal underground. In 2013, Vrublevsky was sentenced to 2.5

Risk 193

Risk Marketing Archiving IT 193

National Archives Records Express

MARCH 3, 2020

Any member of the public, including detainees in ICE custody, can file complaints about civil rights and civil liberties regarding Department of Homeland Security (DHS) policies, programs, and activities. In addition, NARA has produced a video that describes the critical role the public plays in the records scheduling process.

Archiving 121

Archiving Communications Government Security 121

Krebs on Security

MARCH 2, 2020

An individual thought to be involved has earned accolades from the likes of Apple , Dell , and Microsoft for helping to find and fix security vulnerabilities in their products. In 2018, security intelligence firm HYAS discovered a malware network communicating with systems inside of a French national power company.

Passwords 258

Passwords Manufacturing Security Data breaches 258

Security Affairs

APRIL 29, 2020

Keys was accused of providing Anonymous login credentials that allowed the group to deface access and deface the website of the Los Angeles Times in 2013. The post Journalist Matthew Keys is now charged with an attack on a magazine appeared first on Security Affairs. Pierluigi Paganini. SecurityAffairs – Matthew Keys, hacking).

CMS 90

CMS Cybersecurity Government Access 90

Security Affairs

NOVEMBER 13, 2019

In the past months, security researchers devised several speculative -channel RIDL (Rogue In-Flight Data Load), Fallout, Microarchitectural Data Sampling ( MDS attacks ), and ZombieLoad. ” reads the security advisory published by Intel. ” reads the security advisory published by Intel. Pierluigi Paganini.

Data structuring 82

Data structuring Manufacturing Encryption Passwords 82

ForAllSecure

FEBRUARY 2, 2021

In security, some may refute that there is “no savings to worry about" if no investment has been made to begin with, arguing that they’ve been “just fine so far” In this blog, we will argue there is a cost in doing nothing. billion in incident response and an overhaul of their technology and data security program.

Retail 52

Retail Data breaches Cybersecurity Paper 52

ForAllSecure

FEBRUARY 2, 2021

In security, some may refute that there is “no savings to worry about" if no investment has been made to begin with, arguing that they’ve been “just fine so far” In this blog, we will argue there is a cost in doing nothing. billion in incident response and an overhaul of their technology and data security program.

Retail 52

Retail Data breaches Cybersecurity Paper 52

Krebs on Security

JANUARY 25, 2019

Also in December 2017, Patel allegedly worked with Barriss to plan a bomb threat targeting a video game convention in Dallas, Texas. As the victim of a swatting attack in 2013 and several other unsuccessful attempts , I am pleased to see federal authorities continue to take this crime seriously.

IT 201

IT 201

Adapture

AUGUST 15, 2023

reaches more than 50 million people across a variety of channels, including events, print, digital, video, podcasts, newsletters and social media. It was founded in 2013 and is headquartered in Atlanta, Ga. Through its journalism, Inc. aims to inform, educate and elevate the profile of our community. Its proprietary Inc.

Education 52

Education Marketing Cloud Cybersecurity 52

Security Affairs

JUNE 18, 2020

Security researchers at ESET recently uncovered a campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations in the military sector and diplomatic missions in Eastern Europe. The SMInit exploit chain exploits a vulnerability in the legitimate Total Video Player software.

Military 79

Military Communications Libraries Encryption 79

Schneier on Security

NOVEMBER 30, 2017

ZDNet is reporting about another data leak, this one from US Army's Intelligence and Security Command (INSCOM), which is also within to the NSA. Chris Vickery, director of cyber risk research at security firm UpGuard, found the data and informed the government of the breach in October. This doesn't feel like a big deal to me.

Military 59

Military Cloud Risk Government 59

Security Affairs

APRIL 17, 2019

has been under active development since at least 2013. The malware also steals passwords from several browsers, including FileZilla, Beyluxe Messenger, CoreFTP, and the video game Minecraft. The post A new variant of HawkEye stealer emerges in the threat landscape appeared first on Security Affairs. ” states the analysis.

Passwords 83

Passwords Metadata Sales Security 83

Hunton Privacy

AUGUST 27, 2013

On August 22, 2013, Hunton & Williams partner Paul M. View the video coverage now. Tiao was featured on CNBC’s Fast Money discussing NASDAQ’s recent crash. In the feature, “Are markets ready for cyber threats?”,

Financial Services 40

Financial Services Cybersecurity Marketing Information Security 40

ForAllSecure

JUNE 2, 2021

One of those interests that took off was computer security. His approachable style and his desire to teach others what he’s learned about information security has resulted in a massive following of half a million subscribers. Maybe that's what makes this 300 plus videos so genuine. MODEM SOUND].

Marketing 52

Marketing Education IT Security 52

ForAllSecure

JUNE 2, 2021

One of those interests that took off was computer security. His approachable style and his desire to teach others what he’s learned about information security has resulted in a massive following of half a million subscribers. Maybe that's what makes this 300 plus videos so genuine. MODEM SOUND].

Marketing 52

Marketing Education IT Security 52

Krebs on Security

NOVEMBER 9, 2018

A Connecticut man who’s earned bug bounty rewards and public recognition from top telecom companies for finding and reporting security holes in their Web sites secretly operated a service that leveraged these same flaws to sell their customers’ personal data, KrebsOnSecurity has learned. The Twitter account @phobia, a.k.a.

Sales 202

Sales Personal data Access Marketing 202

Security Affairs

AUGUST 23, 2020

Transparent Tribe has been active since at least 2013, it targeted entities across 27 countries, most of them in Afghanistan, Germany, India, Iran and Pakistan. The post Transparent Tribe APT hit 1000+ victims in 27 countries in the last 12 months appeared first on Security Affairs. Pierluigi Paganini.

Military 117

Military Phishing Passwords Communications 117

Security Affairs

OCTOBER 14, 2019

Security experts at ESET revealed that Winnti Group continues to update its arsenal, they observed that the China-linked APT group using a new modular Windows backdoor that they used to infect the servers of a high-profile Asian mobile hardware and software manufacturer. Pierluigi Paganini. SecurityAffairs – Winnti, malware).

Manufacturing 77

Manufacturing Paper Communications IT 77

Hunton Privacy

SEPTEMBER 5, 2013

On September 4, 2013, the Federal Trade Commission announced a settlement with TRENDnet, Inc. TRENDnet”) stemming from allegations that TRENDnet’s failure to provide reasonable security for its Internet Protocol (“IP”) security cameras allowed hackers to publicly post online live feeds from approximately 700 customers’ cameras.

Retail 40

Retail Security Compliance Information Security 40

Hunton Privacy

JULY 1, 2013

Today, July 1, 2013, the Federal Trade Commission’s changes to the Children’s Online Privacy Protection Rule (the “Rule”) officially come into effect. On December 19, 2012, the FTC announced that it had published the amended Rule following two years of public comments and multiple reviews of various proposed changes.

Privacy 40

Privacy Compliance Education Access 40

IT Governance

MAY 29, 2018

LifeBridge Health and LifeBridge Potomac Professionals Notify Patients of a Recent Security Incident. UT alerts some faculty, students of lost flash drive containing Social Security numbers. The University of Greenwich fined £120,000 by Information Commissioner for “serious” security breach. Hacker Steals $1.35 Fighting back.

Data breaches 89

Data breaches GDPR Ransomware Passwords 89

Krebs on Security

JANUARY 22, 2019

In July 2018, email users around the world began complaining of receiving spam which began with a password the recipient used at some point in the past and threatened to release embarrassing videos of the recipient unless a bitcoin ransom was paid. EARLY WARNING SIGNS. 13, 2018 bomb threat hoax.

Computer and Electronics 235

Computer and Electronics Cloud Phishing Authentication 235

Hunton Privacy

FEBRUARY 8, 2013

On February 7, 2013, the European Commission, together with the High Representative of the Union for Foreign Affairs and Security Policy, launched their cybersecurity strategy for the European Union (“Strategy”). Establishing a coherent international cyberspace policy for the EU that promotes core EU values. application stores.

Information Security 40

Information Security Cybersecurity Security Cloud 40

Security Affairs

SEPTEMBER 1, 2018

From April 2013 through October 2014, Garofano used phishing attacks against the victims to obtain their iCloud accounts credentials, access the accounts and steal personal information, including private photographs and videos. Pierluigi Paganini. Securi ty Affairs – Fappening, celebrities naked photos).

Phishing 43

Phishing Access Security 43

Hunton Privacy

MARCH 12, 2013

On March 12, 2013, Connecticut Attorney General George Jepsen announced that a coalition of 38 states had entered into a $7 million settlement with Google Inc. Google”) regarding its collection of unsecured Wi-Fi data via the company’s Street View vehicles between 2008 and 2010.

Education 40

Education Privacy Compliance Encryption 40

Hunton Privacy

AUGUST 6, 2013

On August 6, 2013, the UK Information Commissioner’s Office (“ICO”) opened a new consultation on a draft code of practice on conducting privacy impact assessments (the “Code”). The Code is open to public consultation until November 5, 2013. consult with internal and external stakeholders as needed throughout the process.

Privacy 40

Privacy Compliance Personal data Risk 40

Hunton Privacy

APRIL 27, 2016

Following a breach notification report from Raleigh Orthopaedic in April 2013, OCR investigated and discovered that Raleigh Orthopaedic had improperly disclosed protected health information (“PHI”) to a third-party service provider without entering into a business associate agreement (“BAA”) with that service provider. Raleigh Orthopaedic.

Privacy 45

Privacy Compliance Access IT 45