Threatpost

DECEMBER 26, 2019

2019 was a banner year for data exposures, with billions of people affected by cloud misconfigurations, hacks and poor security practices in general. Here's the Threatpost Top 10 for data-breach news of the year, featuring all the low-lights.

Data breaches 60

Data breaches Cloud Security Privacy 60

Information Management Resources

NOVEMBER 9, 2018

Cyber attacks and data breaches continue to increase in both frequency and intensity, and organizations can expect more of the same in 2019. Here are 10 trends that are putting firms at greatest risk.

Cybersecurity 75

Cybersecurity Data breaches Risk Security 75

The Guardian Data Protection

DECEMBER 5, 2022

Big Brother Watch’s FoI request shows force rebuked by watchdog for recording 2019 school strike action in London Police unlawfully spied on children as young as 10 taking part in a climate strike protest in London, documents have shown.

Paper 99

Paper Privacy 99

Krebs on Security

JANUARY 9, 2019

All things considered, this first Patch Tuesday of 2019 is fairly mild, bereft as it is of any new Adobe Flash updates or zero-day exploits. Among the more eyebrow-raising flaws fixed this week is CVE-2019-0547 , a weakness in the Windows component responsible for assigning Internet addresses to host computers (a.k.a.

Security 165

Security IT 165

Krebs on Security

SEPTEMBER 10, 2019

Two of the bugs quashed in this month’s patch batch ( CVE-2019-1214 and CVE-2019-1215 ) involve vulnerabilities in all supported versions of Windows that have already been exploited in the wild. The trouble is, Windows 10 by default will install patches and reboot your computer whenever it likes.

Security 148

Security IT Access 148

Threatpost

DECEMBER 23, 2019

From more widescale, powerful distributed denial of service (DDoS) attacks, to privacy issues in children's connected toys, here are the top IoT disasters in 2019.

IoT 72

IoT Privacy Personal data Data Privacy 72

eSecurity Planet

MARCH 11, 2019

After five days of sessions, events and demos, what were the key cybersecurity themes that emerged at RSA Conference 2019?

Cybersecurity 111

Cybersecurity 111

eSecurity Planet

MARCH 1, 2019

Hundreds of vendors exhibit at the annual cybersecurity event, but only 10 are finalists in the 2019 Innovation sandbox contest. Find out who they are.

Cybersecurity 70

Cybersecurity 70

The Last Watchdog

AUGUST 8, 2023

Picus’ Blue Report data shows that, on average, organizations’ security controls (such as next-gen firewalls and intrusion prevention solutions) only prevent 6 out of every 10 attacks. Some CVEs discovered in 2019 remain a threat to more than 80% of organizations. Whether to optimize prevention or detection controls.

Security 100

Security Risk Ransomware Marketing 100

Data Breach Today

SEPTEMBER 17, 2022

In June 2019, Drake found himself standing outside a closed adult boutique in Houston at 10:00 a.m. Dain Drake was CEO of a steel fabrication factory. on a Sunday. He called the owner and pleaded for him to come. He needed something inside, which might just save his business - from ransomware.

Ransomware 241

Ransomware 241

eSecurity Planet

MARCH 6, 2019

Product announcements at the 2019 RSA Conference spanned email security, container security, threat detection, SIEM, EDR and cloud security.

Cloud 86

Cloud Security 86

Data Breach Today

MAY 13, 2020

Top 10 Vulnerabilities Exploited by Sophisticated Foreign Hackers Detailed by CISA From 2016 to 2019, sophisticated nation-state attackers preferred to target 10 vulnerabilities more than all others, the U.S. Cybersecurity and Infrastructure Security Agency and FBI warn in a new alert.

Cybersecurity 281

Cybersecurity Security 281

Threatpost

DECEMBER 30, 2019

Cybercrime increasingly went mobile in 2019, with everything from Apple iPhone jailbreaks and rogue Android apps to 5G and mobile-first phishing dominating the news coverage. Here are Threatpost's Top 10 mobile security stories of 2019.

Security 63

Security Phishing IoT Privacy 63

Krebs on Security

JANUARY 13, 2021

10 is the most dangerous). Allan Liska , senior security architect at Recorded Future , said while it is concerning that so many vulnerabilities around the same component were released simultaneously, two previous vulnerabilities in RPC — CVE-2019-1409 and CVE-2018-8514 — were not widely exploited.

Marketing 266

Marketing Security IT Access 266

Dark Reading

DECEMBER 9, 2019

As mergers and acquisitions continued to shape the security industry throughout 2019, these deals were most significant.

Cybersecurity 54

Cybersecurity Security 54

Info Source

FEBRUARY 12, 2020

2019 was a busy year for DocuWare. This focus apparently paid off, as for 2019, DocuWare recently reported 17% YOY growth to reach approximately $60 million in annual revenue. We added nearly 2,000 customers in 2019 and 1,200 of them were cloud customers,” said Roberts. the Americas-based arm of the company.

ECM 78

ECM Cloud Sales Marketing 78

Data Matters

OCTOBER 28, 2019

Please join us for the fourth in a series of programs focused on 2019 blockchain developments. CT | 10:00 a.m. – Tuesday, October 29, 2019. The post Blockchain 2019: Smart Contracts appeared first on Data Matters Privacy Blog. This webinar will discuss legal, regulatory and other considerations for smart contracts.

Blockchain 60

Blockchain Privacy 60

Dark Reading

SEPTEMBER 20, 2019

The education sector has seen 10 new victims in the past nine days alone, underscoring a consistent trend throughout 2019.

Education 93

Education Ransomware 93

Dark Reading

JUNE 19, 2019

From 2018 to 2019, the percentage of cyberattacks costing $10 million or more nearly doubled, hitting 13%.

99

99

Security Affairs

APRIL 16, 2019

A recently fixed local privilege escalation flaw in windows (CVE-2019-0803) had been exploited by bad actors to deliver PowerShell Backdoor. The CVE-2019-0859 was the fifth Windows zero-day discovered by Kaspersky experts in a few months. SecurityAffairs – CVE-2019-0803, Zero-day. SecurityAffairs – CVE-2019-0803, Zero-day.

Authentication 84

Authentication Security IT 84

Security Affairs

MARCH 8, 2022

The US Federal Bureau of Investigation (FBI) and CISA published a flash alert to warn that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations across 10 critical infrastructure sectors. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Ransomware 80

Ransomware Passwords Financial Services Manufacturing 80

Data Breach Today

JANUARY 3, 2023

Avalon Health Care Pays $200,000 to Utah and Oregon, Pledges Security Enhancements A Utah-based senior healthcare firm paid a $200,000 settlement to two state attorneys general after it delayed reporting a 2019 data breach by 10 months.

Data breaches 130

Data breaches Security IT 130

Security Affairs

APRIL 18, 2021

Fedir Hladyr (35), a Ukrainian national was sentenced today to 10 years in prison for his role in the financially motivated group FIN7, aka Carbanak. law enforcement and was extradited to the US where in September 2019, he pleaded guilty to one count of conspiracy to commit wire fraud and one count of conspiracy to commit computer hacking.

Systems administration 109

Systems administration Encryption Communications Security 109

Micro Focus

DECEMBER 31, 2019

As is customary with this time of year, blogs, press and social media are filled with top 10 lists, year in review, articles reflecting back on what has passed and what is to come. I wanted to take a moment to reflect on 2019 and some of the ways the Micro Focus team has come. View Article.

Digital transformation 62

Digital transformation 62

Security Affairs

MAY 31, 2019

Researchers at 0patch released a temporary micropatch for the unpatched BearLPE local privilege escalation zero-day flaw in Windows 10. link] pic.twitter.com/gvWTpVM52f — 0patch (@0patch) May 31, 2019. I can confirm that this works as-is on a fully patched (May 2019) Windows 10 x86 system. Pierluigi Paganini.

Education 78

Education Cybersecurity Security IT 78

Krebs on Security

FEBRUARY 20, 2024

First surfacing in September 2019, the gang is estimated to have made hundreds of millions of U.S. By the way, I want to use this chance to increase the reward amount for a person who can tell me my full name from USD 1 million to USD 10 million. On the other hand, I am willing to pay USD 10 million, no more and no less.”

Ransomware 280

Ransomware Encryption Insurance Manufacturing 280

Security Affairs

JUNE 4, 2019

A security expert disclosed technical details of a new unpatched vulnerability (CVE-2019-9510) that affects Microsoft Windows Remote Desktop Protocol (RDP). The flaw, tracked as CVE-2019-9510, could be exploited by client-side attackers to bypass the lock screen on remote desktop (RD) sessions. medium severity).

Authentication 82

Authentication Security Access IT 82

Security Affairs

JANUARY 2, 2021

Ticketmaster agreed to pay a $10 million fine for hacking into the computer system of the startup rival CrowdSurge. The news is disturbing, Ticketmaster has agreed to pay a $10 million fine after being charged with illegally accessing computer systems into the computer system of the startup rival CrowdSurge. Pierluigi Paganini.

Passwords 81

Passwords Compliance Access Sales 81

eSecurity Planet

MARCH 4, 2019

Here are our picks for the top RSA conference sessions that could help you improve cybersecurity within your own organization.

Cybersecurity 105

Cybersecurity 105

Security Affairs

MARCH 4, 2019

Microsoft started rolling out a new software update for Windows 10 systems to apply mitigations against the Spectre attacks. Over the weekend, Microsoft started distributing software updates for Windows 10 systems to enable the Retpoline mitigations against Spectre attacks. . Pierluigi Paganini. SecurityAffairs – Spectre, hacking).

Cloud 80

Cloud Security Access IT 80

Krebs on Security

FEBRUARY 19, 2020

Networking software giant Citrix Systems says malicious hackers were inside its networks for five months between 2018 and 2019, making off with personal and financial data on company employees, contractors, interns, job candidates and their dependents. 10, 2020, Citrix disclosed additional details about the incident. 13, 2018 and Mar.

Passwords 359

Passwords Access Insurance Government 359

Security Affairs

DECEMBER 11, 2019

Microsoft’s December 2019 Patch Tuesday updates fix a total of 36 flaws, including CVE-2019-1458 Windows zero-day exploited in North Korea-linked attacks. Microsoft’s December 2019 Patch Tuesday updates address a total of 36 flaws, including a Windows zero-day, tracked as CVE-2019-1458 exploited in attacks linked to North Korea.

Sales 59

Sales Security IT Information Security 59

Security Affairs

MARCH 15, 2019

Experts from Qihoo 360 disclosed technical details of the actively exploited Windows zero-day flaw CVE-2019-0808 recently patched by Microsoft. Researchers at the security firm Qihoo 360 disclosed technical details of the zero-day vulnerability CVE-2019-0808 that was recently patched by Microsoft. Pierluigi Paganini.

Authentication 86

Authentication Security IT 86

Hunton Privacy

SEPTEMBER 20, 2019

On September 9, 2019, the Dutch Data Protection Authority ( Autoriteit Persoonsgegevens , the “Dutch DPA”) published a report on the privacy complaints it received between January 2019 and June 2019 (the “Report”). Read the full Report and the press release (in Dutch). Facts and Figures.

Personal data 72

Personal data Privacy Marketing IT 72

Security Affairs

AUGUST 23, 2019

Researchers at Pen Test Partners (PTP) discovered a privilege-escalation vulnerability in Lenovo Solution Centre (LSC) tracked as CVE-2019-6177. ” The vulnerability tracked as CVE-2019-6177 could be exploited by attackers to escalate privileges. . ” read the security advisory published by Lenovo. Pierluigi Paganini.

Authentication 86

Authentication Access Security IT 86

Security Affairs

DECEMBER 9, 2019

Google addressed a critical vulnerability, tracked as CVE-2019-2232, that could trigger a permanent denial of service (DoS) condition in Android. Google addressed more than 40 vulnerabilities, including 17 as part of the 2019-12-01 security patch level , and 27 more in the 2019-12-05 security patch level.

Risk 62

Risk Security IT Information Security 62

Security Affairs

DECEMBER 16, 2019

Another year is ending and this is the right time to discover which are the worst passwords of 2019 by analyzing data leaked in various data breaches. Independent anonymous researchers, compiled and shared with security firm NordPass a list of 200 most popular passwords that were leaked in data breaches during 2019. Pierluigi Paganini.

Passwords 79

Passwords Data breaches Cybersecurity Risk 79