IBM Big Data Hub

DECEMBER 16, 2022

At the same time, governments around the world are continuously evaluating and implementing new AI guidelines and AI regulation frameworks. We think that businesses have an opportunity to act now to put guardrails in place internally to govern how AI is developed and deployed.

Government 117

Government Artificial Intelligence Metadata Data collection 117

Krebs on Security

SEPTEMBER 14, 2022

Worst in terms of outright scariness is CVE-2022-37969 , which is a “privilege escalation” weakness in the Windows Common Log File System Driver that allows attackers to gain SYSTEM-level privileges on a vulnerable host. .” CVE-2022-32984 is a problem in the deepest recesses of the operating system (the kernel).

Privacy 175

Privacy Security Authentication Cybersecurity 175

IG Guru

FEBRUARY 17, 2022

The post Happy Global Information Governance Day 2022! Read about GIGD here. appeared first on IG GURU.

Information governance 87

Information governance Government 87

Data Matters

NOVEMBER 19, 2021

The post Governance Challenges 2021–2022: Digital Transformation Oversight appeared first on Data Matters Privacy Blog. View article.

Digital transformation 109

Digital transformation Government Privacy Cybersecurity 109

Data Breach Today

DECEMBER 30, 2022

A Reflection on Top Thought-Leader Interviews of the Year In the latest update, four ISMG editors discuss important issues of 2022, including: CISO Marene Allison's unique career path; Ukrainian government cybersecurity official Victor Zhora on lessons learned from countering cyberattacks; and insights from CEO Nikesh Arora of Palo Alto Networks.

Cybersecurity 130

Cybersecurity Government 130

Data Breach Today

JUNE 15, 2023

Also: LockBit Was Tops in 2022 and North Koreans Ape Web Portal This week, the list of MOVEit victims grew and now includes the U.S. government.

Government 147

Government Ransomware IT 147

Security Affairs

JANUARY 23, 2024

The Australian government announced sanctions for a member of the REvil ransomware group for the Medibank hack that occurred in 2022. The Australian government announced sanctions for Aleksandr Gennadievich Ermakov (aka GustaveDore, aiiis_ermak, blade_runner, JimJones), a Russian national who is a member of the REvil ransomware group.

Government 99

Government Insurance Ransomware Data breaches 99

Security Affairs

MARCH 28, 2024

Google’s Threat Analysis Group (TAG) and its subsidiary Mandiant reported that in 2023 97 zero-day vulnerabilities were exploited in attacks, while in 2022 the actively exploited zero-day flaws were 62. In 2023, Google (TAG) and Mandiant discovered 29 out of 97 vulnerabilities exploited in the wild. ” continues the report.

Government 113

Government Ransomware Libraries Access 113

Security Affairs

MAY 26, 2022

Italy announced its National Cybersecurity Strategy for 2022/26, a crucial document to address cyber threats and increase the resilience of the country. The threat landscape rapidly changes and urges the government to review its strategy and propose a series of objectives to achieve in the next four years. Pierluigi Paganini.

Cybersecurity 139

Cybersecurity IT Risk Government 139

Security Affairs

MARCH 19, 2024

The campaign seems active since at least early 2022 and focuses primarily on government organizations. The group often exploited access to government infrastructure to target other government entities. “Earth Krahang abuses the trust between governments to conduct their attacks.

Government 83

Government Phishing Access Passwords 83

Everteam

DECEMBER 27, 2022

Analyzing , Archiving , Governing , Information Governance , Records Management. 2022 Retrospective. 27 December 2022. Why not start this year 2023, going back for a few seconds to 2022. Here is our 2022 retrospective, 1 year of work, good times, and fun spent creating content for you. Anne-Claire Girard.

Records Management 52

Records Management Information governance Archiving Government 52

IT Governance

JANUARY 9, 2023

Welcome to our review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly lists of data breaches and cyber attacks. IT Governance discovered 1,063 security incidents in 2022, which accounted for 480,014,323 breached records. The biggest data breaches of 2022.

Data breaches 126

Data breaches Ransomware Government Passwords 126

Security Affairs

MAY 26, 2022

Security researchers released PoC exploit code for the critical authentication bypass vulnerability CVE-2022-22972 affecting multiple VMware products. The virtualization giant recently warned that a threat actor can exploit the CVE-2022-22972 flaw (CVSSv3 base score of 9.8) using CVE-2022-22972. states VMware.

Authentication 135

Authentication Cybersecurity Access Education 135

IG Guru

MARCH 29, 2022

ARMA InfoCon 2022 is the premiere educational event for records management, information management, and information governance professionals to learn and share industry best practices. The post Register Now for InfoCon 2022! Registration is now open! Plan now and learn from the industries best this October in Nashville, TN!

Records Management 75

Records Management Education Information governance Government 75

Security Affairs

OCTOBER 16, 2022

Threat actors have compromised hundreds of servers exploiting critical flaw CVE-2022-41352 in Zimbra Collaboration Suite (ZCS). Last week, researchers from Rapid7 warned of the exploitation of unpatched zero-day remote code execution vulnerability, tracked as CVE-2022-41352 , in the Zimbra Collaboration Suite. reported Rapid7. “We

Archiving 120

Archiving Government Ransomware IT 120

Security Affairs

MAY 31, 2022

Cyber Research Labs reported a rise in ransomware attacks in the second quarter of 2022, small states are more exposed to these attacks. The experts warn of ransomware attacks against government organizations. The experts warn of ransomware attacks against government organizations. ” reads the post published by Cyble.

Ransomware 142

Ransomware Government Sales Cybersecurity 142

IT Governance

OCTOBER 19, 2022

Welcome to our third quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance identified 285 publicly disclosed security incidents between July and September 2022, which accounted for 232,266,148 compromised records.

Data breaches 116

Data breaches Ransomware Phishing Government 116

Data Breach Today

DECEMBER 26, 2023

of trafficking in a hacked database of online credentials will apparently evade American courts after the Russian government said it had succeeded in extraditing him. Russian prosecutors say Nikita Kislitsin faces charges related to an October 2022 hacking incident.

Government 288

Government IT 288

Data Matters

FEBRUARY 25, 2022

Join us from February 28 – March 3 for DPFS Week 2022 , a series of webinars looking at the impacts of data privacy across the financial sector. How to deal with and manage the key issues for 2022, such as AI, data governance, and international transfers. Ari Redbord, Head of Legal and Government Affairs, TRM Labs.

Financial Services 103

Financial Services Privacy Data Privacy Cybersecurity 103

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government. Gelsemium is a group focused on cyberespionage that has been active since at least 2014.

Government 107

Government Manufacturing Education Access 107

IT Governance

JULY 11, 2022

Welcome to our second quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance discovered 237 security incidents between April and June 2022, which accounted for 99,019,967 breached records.

Data breaches 105

Data breaches Ransomware Phishing Government 105

IG Guru

MARCH 3, 2022

The post Information Governance – Concept and principles (ISO/FDIS 24143) expected to be released May 2022 appeared first on IG GURU. According to those working on ISO/FDIS 24143, the new IG standard should be available in a few months. You can track the progress here.

Information governance 64

Information governance Government 64

IT Governance

APRIL 12, 2022

Welcome to our first quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance discovered 266 security incidents between January and March 2022, which accounted for 75,099,482 breached records.

Data breaches 115

Data breaches Ransomware Government Retail 115

Security Affairs

NOVEMBER 16, 2023

Google TAG revealed that threat actors exploited a Zimbra Collaboration Suite zero-day ( CVE-2023-37580 ) to steal emails from governments. The first campaign aimed at a government organization in Greece, threat actors sent emails containing exploit urls to their targets. ” continues the report. .”

Government 118

Government Authentication Phishing IT 118

Security Affairs

MARCH 7, 2023

Researchers discovered a new info stealer dubbed SYS01 stealer targeting critical government infrastructure and manufacturing firms. ” The experts reported that the campaign was first uncovered in May 2022 that Zscaler researchers linked to the Ducktail operation by Zscaler. ” reads the analysis published by Morphisec.

Government 96

Government Manufacturing Authentication Cybersecurity 96

eSecurity Planet

JUNE 21, 2022

.” Also read: Cybersecurity Employment in 2022: Solving the Skills Gap. “Certifications range from penetration testers , government/industry regulatory compliance , ethical hacking , to industry knowledge,” he said. As of mid-2022, the cost is $381 USD. As of mid-2022, the cost is $249. .

Cybersecurity 116

Cybersecurity Systems administration Information Security Compliance 116

Security Affairs

JANUARY 12, 2023

Recently patched Fortinet FortiOS SSL-VPN zero-day exploited in attacks against government organizations and government-related targets. The CVE-2022-42475 flaw is a heap-based buffer overflow issue that resides in FortiOS sslvpnd. “A reads the advisory published by the security vendor. Pierluigi Paganini.

Government 93

Government Marketing Security Cybersecurity 93

IBM Big Data Hub

SEPTEMBER 12, 2023

The UK government’s Ecosystem of Trust is a potential future border model for frictionless trade, which the UK government committed to pilot testing from October 2022 to March 2023. The consortium ran a pilot that provided the government with additional supply chain data for 700,000 consignments.

Government 92

Government Data collection Analytics Risk 92

Thales Cloud Protection & Licensing

JANUARY 5, 2022

Trends and Predictions for 2022 – More of the Same? Wed, 01/05/2022 - 05:12. What will 2022 bring for cybersecurity? What are the key security challenges for 2022? Andy Green and I discussed many more pressing and emerging topics around the trends we expect to see in 2022.

Phishing 127

Phishing Digital transformation Communications Cybersecurity 127

Collibra

OCTOBER 25, 2023

In November 2022, generative AI exploded into public awareness, surging in popularity with the introduction of ChatGPT. That’s why AI governance is crucial in mitigating risks and ensuring your AI initiatives are transparent, ethical and trustworthy. AI models and governance An AI model is, at its core, a mathematical construct.

Government 103

Government IT Data science Compliance 103

Security Affairs

JANUARY 11, 2023

US CISA added Microsoft Exchange elevation of privileges bug CVE-2022-41080 to its Known Exploited Vulnerabilities Catalog. The first issue, tracked as CVE-2022-41080 , is a Microsoft Exchange server privilege escalation vulnerability. The issue can be chained with CVE-2022-41082 (ProxyNotShell) to achieve remote code execution.

IT 95

IT Ransomware Cloud Cybersecurity 95

IT Governance

OCTOBER 27, 2022

The Standard was last revised almost a decade ago (although a new iteration of the supplementary standard ISO 27002 was published in February 2022), meaning that the release of ISO 27001:2022 has been much needed and highly anticipated. However, the most significant changes with the 2022 version of ISO 27002 are in its structure.

IT 119

IT Information Security Compliance Security 119

Data Protection Report

JANUARY 9, 2023

With the year 2022 firmly in the rear view, and as we look to start the new year in 2023, Norton Rose Fulbright’s Regulatory Compliance and Investigations team looks back and rounds up the five key cyber and data protection developments that took place in Southeast Asia in 2022. . in damages to its customer over data leak.

Cybersecurity 112

Cybersecurity Personal data Data breaches Ransomware 112

Security Affairs

AUGUST 3, 2023

CISA, the FBI, and NSA, along with Five Eyes cybersecurity agencies published a list of the 12 most exploited vulnerabilities of 2022. CISA, the NSA, and the FBI, in collaboration with cybersecurity authorities from Australia, Canada, New Zealand, and the United Kingdom, have published a list of the 12 most exploited vulnerabilities of 2022.

Authentication 89

Authentication Cybersecurity Access Risk 89

KnowBe4

JANUARY 5, 2023

The UK’s National Cyber Security Centre (NCSC) has outlined the top six most impersonated UK government agencies in 2022. The most impersonated entity was the National Health Service (NHS), followed by TV Licensing, HM Revenue & Customs, Gov.uk, DVLA, and Ofgem.

Government 77

Government Phishing Security 77

eSecurity Planet

JANUARY 11, 2022

As we enter 2022, the shortage of cybersecurity pros hasn’t gotten better. With all that going on, the need for experienced cybersecurity staff hasn’t dwindled, causing recruiters and government officials alike to search for solutions to the skills shortage. Government Initiatives. In fact, it’s gotten worse.

Cybersecurity 135

Cybersecurity Government Digital transformation Communications 135