Security Affairs

JANUARY 23, 2022

CVE Number CVE Title Required Action Due Date CVE-2021-32648 October CMS Improper Authentication 2/1/2022 CVE-2021-21315 System Information Library for node.js CVE Number CVE Title Required Action Due Date CVE-2021-32648 October CMS Improper Authentication 2/1/2022 CVE-2021-21315 System Information Library for node.js

CMS 104

CMS IT Authentication Libraries 104

The Schedule

SEPTEMBER 18, 2018

NARA’s policies are social media include: NARA Bulletin 2015-02: Guidance on managing electronic messages. NARA Bulletin 2014-02: Guidance on managing social media records. This guidance utilizes principles that can be adopted by a variety of institutions, not just Federal agencies. Best Practices for Social Media White Paper.

Records Management 45

Records Management FOIA e-Discovery Energy and Utilities 45

Krebs on Security

JUNE 25, 2019

In 2018, Dr.Web expanded its research when it discovered the Triada malware installed on 40 different models of Android devices. com 2016-02-18 ALIBABA CLOUD COMPUTING (BEIJING) CO., jyhxz.net 2013-07-02 — longmen[.]com com 2016-02-18 ALIBABA CLOUD COMPUTING (BEIJING) CO., jyhxz.net 2013-07-02 — longmen[.]com

Cloud 254

Cloud Manufacturing Marketing Data breaches 254

Krebs on Security

JULY 26, 2021

02, 2020, pitching him as a trustworthy cryptocurrency expert and advisor. “REACT began receiving tips in 2018 regarding illegal activity of an individual using the online moniker ‘PlugwalkJoe,’ purportedly identified as O’Connor from the United Kingdom,” the indictment states.

Communications 325

Communications Passwords Access Government 325

Security Affairs

SEPTEMBER 16, 2018

They've been affected by Magecart since Friday, August 17 2018 @ 16:51:01 GMT as we recorded it. — Yonathan Klijnsma (@ydklijnsma) September 11, 2018. — Placebo (@Placebo52510486) September 11, 2018. — Yonathan Klijnsma (@ydklijnsma) September 12, 2018. /cc URL: hxxps://cdn[.]feedify[.]net/getjs/feedbackembad-min-1.0.js.

Cloud 90

Cloud Libraries Access Security 90

Security Affairs

APRIL 12, 2022

Cyclops Blink is believed to be a replacement for the VPNFilter botnet, which was first exposed in 2018 and at the time was composed of more than 500,000 compromised routers and network-attached storage (NAS) devices. The vulnerabilities added to the catalog have to be addressed by federal agencies by May 02, 2022.

IT 95

IT Cybersecurity Ransomware Access 95

Security Affairs

JANUARY 21, 2019

One of the vulnerabilities, tracked as CVE-2018-19027 received a “high” severity rating. The CVE-2018-19027 flaw affects the CX-One products, the flaw was reported to the vendor on 2018-07-02 while it was publicly disclosed on 2019-01-14. The vulnerabilities were reported through Trend Micro’s Zero Day Initiative (ZDI).

IT 67

IT Libraries Security 67

Security Affairs

APRIL 11, 2019

Users that have downloaded the VSDC multimedia editing software between 2019-02-21 and 2019-03-23, may have been infected with malware. Users that have downloaded the VSDC multimedia editing software between 2019-02-21 and 2019-03-23, may have been infected with a banking trojan and an information stealer.

Passwords 67

Passwords Security IT 67

Krebs on Security

JUNE 25, 2019

In 2018, Dr.Web expanded its research when it discovered the Triada malware installed on 40 different models of Android devices. com 2016-02-18 ALIBABA CLOUD COMPUTING (BEIJING) CO., jyhxz.net 2013-07-02 — longmen[.]com com 2016-02-18 ALIBABA CLOUD COMPUTING (BEIJING) CO., jyhxz.net 2013-07-02 — longmen[.]com

Cloud 169

Cloud Manufacturing Marketing Data breaches 169

Security Affairs

MARCH 14, 2019

Below the timeline shared by the expert: Date What 2018/10/24 Reported that it is possible to inject more HTML tags than should be allowed via CSRF to WordPress. 2018/10/25 WordPress triages the report on Hackerone. 2019/02/05 WordPress proposes a patch, we provide feedback. 2019/03/13 WordPress 5.1.1

Security 92

Security IT 92

Krebs on Security

MARCH 23, 2020

In December 2018, KrebsOnSecurity looked at how dozens of U.S. weblistingsinc.net 2016-02-09 ENOM, INC.,ENOM, weblistingsinc.net 2016-02-09 ENOM, INC.,ENOM, political campaigns, cities and towns had paid a shady company called Web Listings Inc. finzthegoose.com 2010-08-03 enom, inc. web-listings.net 2007-04-24 ENOM, INC.,ENOM,

Sales 264

Sales Marketing Financial Services IT 264

Security Affairs

MARCH 2, 2019

File name: patent-2019-02-20T093A283A05-1.xls xls MD5: d490573977cc6b42ba0b4325df953a7f SHA1: dacf34580c09f7b1e4b8ba02f3ab8b6be08d03ab Creation date: 2018-12-19 10:42:12 First submission in VT: 2019-02-19 23:16:29. That malware is known as FlawedAmmyy RAT and was discovered by Proofpoint researchers in March 2018.

File names 92

File names Phishing Libraries IT 92

CGI

FEBRUARY 19, 2018

Mon, 02/19/2018 - 02:37. Key considerations for empowering a digital workforce. harini.kottees…. As discussed in my earlier blog post, Seizing the opportunities of digital transformation , the key to success in the digital age is not just about technology.

Digital transformation 70

Digital transformation Customer Experience Paper Marketing 70

CGI

FEBRUARY 16, 2018

Fri, 02/16/2018 - 02:11. Today’s financial consumer: Open for business (part 2 of 2). harini.kottees…. As a reminder, the insights discussed here are driven by CGI’s 2017 Global Financial Consumer Survey , which surveyed 2,250 bank consumers in nine countries.

Financial Services 40

Financial Services Marketing Access IT 40

Security Affairs

NOVEMBER 17, 2018

According to Group-IB’s annual Hi-Tech Crime Trends 2018 report, on average, from June 2017 to August 2018, 1.8 Another set under the name «PAKISTAN-WORLD-EU-MIX-02 (fresh skimmeD EU base ) : PAKISTAN/WORLD/EU TR1+TR2» was published on Joker’s Stash on Oct. ybercrime research unit. million were uploaded to card shops monthly.

Sales 102

Sales Data collection Marketing Security 102

Security Affairs

DECEMBER 11, 2019

The first two databases named “TURKEY-MIX-01 (FRESH SNIFFED CVV) 30.000 cards TURKEY MIX, HIGH VALID 85-90%, uploaded 2019-10-28 (NON-REFUNDABLE BASE)” and “TURKEY-MIX-02 (FRESH SNIFFED CVV) 30.000 cards TURKEY MIX, HIGH VALID 85-90%, uploaded 2019-10-28 (NON-REFUNDABLE BASE)” went on sale on 28.10.2019 and had 60,000 pcs.

Sales 69

Sales Marketing CMS Cybersecurity 69

CGI

FEBRUARY 12, 2020

Thu, 02/13/2020 - 00:20. We worked hard, bonded over many late nights, and successfully completed three project phases from 2016 to 2018. Transforming trade through hybrid blockchain solutions. Trade finance is a niche area of banking that most people are only vaguely aware of because it is part of the bank’s back-office operations.

Blockchain 52

Blockchain B2B Sales Paper 52

CGI

JUNE 8, 2018

Fri, 06/08/2018 - 02:14. Why cloud migration is still hard for federal agencies. harini.kottees…. The cloud is everywhere. Every organization is either in it, moving to it or considering how to get to it.

Cloud 40

Cloud Digital transformation Analytics Education 40

Security Affairs

APRIL 28, 2021

” The RotaJakiro backdoor was first spotted in 2018 when a sample was uploaded on VirusTotal’s anti-malware service. Since 2018, the researchers spotted four distinct samples of the malware that were uploaded between May 2018 and January 2021. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Encryption 86

Encryption Communications IoT Cybersecurity 86

CGI

JULY 2, 2018

Mon, 07/02/2018 - 06:17. How commercial best practices can aid federal agency process change. premanath.puch…. Process change is at the heart of federal digital transformation, which means IT leaders must understand it and make it a top priority at their agencies.

Digital transformation 40

Digital transformation Government Paper Compliance 40

CGI

AUGUST 21, 2018

Tue, 08/21/2018 - 02:42. This series of blog posts builds on the 2018 CGI Client Global Insights, providing insights into how utilities are making progress toward digital transformation. This year, however, utilities show a stagnated interest in mobile solutions, dropping from the #1 digital initiative in 2017, to third in 2018.

Energy and Utilities 40

Energy and Utilities Digital transformation IoT Customer Experience 40

CGI

FEBRUARY 19, 2019

Tue, 02/19/2019 - 10:45. The emergence of these innovative offerings clearly underscore the findings of the 2018 CGI Client Global Insights in which 76% (compared to 45% in 2017) of the utilities executives we interviewed identify changing business models to address distributed energy resources as a top trend.

Energy and Utilities 60

Energy and Utilities B2B Marketing Digital transformation 60

CGI

DECEMBER 12, 2018

Wed, 12/12/2018 - 02:22. Submitted by Wayne Peters on December 13, 2018. Submitted by Marcus Martinez on December 18, 2018. Open Banking: going beyond compliance. Over the last 2 years, the term “Open Banking” has been (over)used as a proxy to describe all sorts of innovations happening in the industry. Add new comment.

Compliance 40

Compliance Marketing Retail Risk 40

CGI

APRIL 19, 2018

Thu, 04/19/2018 - 02:18. Treating cybersecurity like workplace safety. Taking measures to protect employees from workplace accidents seems like an obvious need today, but that was not always the case. Less than half a century ago, there was no Occupational Safety and Health Administration (OSHA).

Cybersecurity 40

Cybersecurity Digital transformation Manufacturing Government 40

CGI

FEBRUARY 6, 2019

Wed, 02/06/2019 - 09:51. The Presidents Management Agenda (PMA) has inspired many a spirited conversation since it was released in March 2018, and with good reason. How to fight fraud, waste and abuse in healthcare. michael.hardy@….

Artificial Intelligence 40

Artificial Intelligence Insurance Phishing Government 40

CGI

FEBRUARY 6, 2019

Wed, 02/06/2019 - 09:51. The Presidents Management Agenda (PMA) has inspired many a spirited conversation since it was released in March 2018, and with good reason. How to fight fraud, waste and abuse in healthcare. michael.hardy@….

Artificial Intelligence 40

Artificial Intelligence Insurance Phishing Government 40

CGI

JULY 2, 2018

Mon, 07/02/2018 - 04:52. The Modern Federal CIO: Making the most of new tools. premanath.puch…. Over the last several years, the role of the federal CIO has evolved.

Digital transformation 40

Digital transformation Analytics Cybersecurity Government 40

CGI

FEBRUARY 28, 2018

Wed, 02/28/2018 - 10:36. Digital Customer Experience is becoming the deciding battlefield on the insurance landscape. p.butler@cgi.com.

Customer Experience 40

Customer Experience Insurance Artificial Intelligence Retail 40

CGI

FEBRUARY 2, 2020

Mon, 02/03/2020 - 01:59. Driving IT modernization remains the most important IT priority, as in 2018, as executives continue to grapple with aging, complex and highly customized systems that are expensive to maintain and are not designed for collaboration, flexibility and agility.

Energy and Utilities 92

Energy and Utilities Retail Digital transformation Analytics 92

CGI

FEBRUARY 27, 2020

In 2019, as in 2018, the number one technical priority raised by corporate clients is benefitting from new technologies, including blockchain. Thu, 02/27/2020 - 03:24. In this second blog, I explore the technology aspects of the corporate client-banking relationship, as well as how that relationship is evolving, alongside open banking.

Retail 90

Retail Marketing Blockchain Customer Experience 90

CGI

JUNE 5, 2018

Tue, 06/05/2018 - 02:25. Remember the human factor in the patient experience. Patients who come to healthcare facilities need and deserve a good experience. And, as a recent panel discussion I attended made clear, improving the patient experience demands a multi-faceted approach.

CMS 40

CMS Military Government Access 40

CGI

JULY 2, 2018

Mon, 07/02/2018 - 05:59. Blockchain: Should federal agencies use it? premanath.puch…. The distributed ledger technology, blockchain, has been touted for its ability to potentially revolutionize business models.

Blockchain 40

Blockchain IT Digital transformation Government 40

CGI

MAY 2, 2018

Wed, 05/02/2018 - 17:33. Three ways for agencies to prepare for the Internet of Things. The Internet of Things (IoT) will change many aspects of our daily lives. Everyday objects are becoming smart assets, seamlessly integrated across a global network and capable of generating and exchanging valuable data without human intervention.

IoT 40

IoT Digital transformation Military Artificial Intelligence 40

Data Protection Report

JULY 7, 2020

02-278 (Declaratory Ruling) (June 25 2020).). Circuit in 2018, however, set aside this broad definition of ATDS as an “unreasonable, and impermissible, interpretation” of the TCPA because such a construction would include all smartphones (their ability to download applications constituted “capacity”). Background – the law.

Government 59

Government Communications IT Privacy 59

DLA Piper Privacy Matters

OCTOBER 3, 2019

Although the case relates to the old DPA regime, the new GDPR and Data Protection Act 2018 are likely to be interpreted in the same way. In October 2018, the High Court refused permission, finding that Lloyd’s claim failed to identify a basis for the members of the represented class to claim compensation under the DPA. Same interest.

Privacy 40

Privacy GDPR Data breaches Personal data 40

CGI

AUGUST 22, 2018

Wed, 08/22/2018 - 02:17. Bulletproofing RPA implementation with an enterprise strategy. Earlier this year, we shared some insights on the application of robotic process automation (RPA) in our blog, “ Seven tips for executives considering robotic process automation.” As an RPA practitioner here in the U.S.,

Government 40

Government IT 40

CGI

AUGUST 22, 2018

Wed, 08/22/2018 - 02:17. Bulletproofing RPA implementation with an enterprise strategy. Earlier this year, we shared some insights on the application of robotic process automation (RPA) in our blog, “ Seven tips for executives considering robotic process automation.” As an RPA practitioner here in the U.S.,

Government 40

Government IT 40