2024, Access, Communications and Libraries - Information Management Today

Innovative approaches to literacy: Libraries Change Lives

CILIP

MAY 13, 2024

Innovative approaches to literacy: Libraries Change Lives Librarians from across the country have been submitting their stories of impact to share with MPs and political leaders as part of the Libraries Change Lives Campaign.

Libraries

Libraries Communications Archiving Education

Weekly Vulnerability Recap – January 2, 2024 – Barracuda ESG, Apache OfBiz Vulnerabilities Persist

eSecurity Planet

JANUARY 2, 2024

The fix: Access to fix data is currently limited. On December 24, when Barracuda released the security notice, there was no remediation or patch available for CVE-2023-7101 , the Spreadsheet::ParseExcel vulnerability, within the open-source library. Google has already seen this vulnerability exploited in the wild. 1020000 1.26.10-gke.1235000

Authentication

Authentication Libraries Cybersecurity Security

VulnRecap 1/8/24 – Ivanti EPM & Attacks on Old Apache Vulnerabilities

eSecurity Planet

JANUARY 8, 2024

January 3, 2024 52% of Exposed SSH Servers Vulnerable to Terrapin Attack Type of attack: Secure Shell (SSH) vulnerability enables prefix truncation attacks. and older of the Perl Spreadsheet::ParseExcel library ( CVE-2023-7101 ) contain a RCE vulnerability exploited by Chinese hackers, as noted on December 24th. Versions 0.65

Encryption

Encryption Libraries Cybersecurity Communications

Vulnerability Recap 4/1/24: Cisco, Fortinet & Windows Server Updates

eSecurity Planet

APRIL 1, 2024

March 22, 2024 Emergency Out-of-Band Windows Server Security Updates Type of vulnerability (or attack): Memory leak. or above March 25, 2024 Hackers Pollute Python Package Index Open-Source Libraries Type of vulnerability (or attack): Malicious library code. The fix: Update affected versions ASAP: FortiClient EMS 7.2:

Libraries

Libraries Authentication Artificial Intelligence Cloud

DinodasRAT Linux variant targets users worldwide

Security Affairs

MARCH 31, 2024

In March 2024, Trend Micro researchers uncovered a sophisticated campaign conducted by a threat actor tracked as Earth Krahang while investigating the activity of China-linked APT Earth Lusca. Both Linux and Windows versions of DinodasRAT communicates with the C2 over TCP or UDP. The C2 domain is hard-coded into the binary.

Libraries

Libraries Encryption Communications Government

DuneQuixote campaign targets the Middle East with a complex backdoor

Security Affairs

APRIL 21, 2024

Researchers from Kaspersky discovered the DuneQuixote campaign in February 2024, but they believe the activity may have been active since 2023. The malware is developed in C/C++ without utilizing the Standard Template Library (STL), and certain segments are coded in pure Assembler.”

Libraries

Libraries Communications IT Government

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

IT Governance

FEBRUARY 21, 2024

It is not known how long the database was publicly available, nor whether anyone else accessed it. In January 2024, it identified more potential victims, and has now written to inform them that their personal data may have been compromised in the incident. Date breached: 384,658,212 records. ALPHV/BlackCat ransomware gang adds 2.7

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

New Book by Facet first in series of titles for Academic Publishers

CILIP

OCTOBER 25, 2023

New Book by Facet first in series of titles for Academic Publishers The Scholarly Communication Handbook: From Research Dissemination to Societal Impact, by Lai Ma, is the ideal reference for students and researchers who are looking at their publication options and the scholarly teams who support them.

Communications

Communications Libraries Access IT

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

Further victims of last year’s Perry Johnson & Associates data breach identified Last year, the medical transcription company PJ&A (Perry Johnson & Associates) suffered a data breach in which an unauthorised third party was able to access its computer network. Key dates 31 March 2024 – PCI DSS v4.0 of the Standard.

Data Privacy

Data Privacy Manufacturing Privacy Security

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

IT Governance

MAY 7, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight More than 6 million accounts compromised from streaming service MovieBoxPro MovieBoxPro, a streaming service of “questionable legality”, suffered a data scraping incident on 15 April 2024, according to Have I Been Pwned.

Data breaches

Data breaches Education Manufacturing Retail

5 Major Cybersecurity Trends to Know for 2024

eSecurity Planet

DECEMBER 19, 2023

Various forms of AI, such as machine learning (ML) and large language models (LLM), already dominated headlines throughout 2023 and will continue to present both overhyped possibilities and realized potential in 2024. In 2024, AI poisoning attacks will become the new software supply chain attacks.

Cybersecurity

Cybersecurity Cloud Ransomware Risk

Finding the treasure in governement information management

CILIP

DECEMBER 11, 2023

He gives an example from his early days at the Department for the Environment: “I remember in April 1986, I was on the library enquiry desk. Decades later his library role has shifted into managing across the full gamut of KIM-related disciplines, but he is still supporting the Government’s information needs in crises.

Government

Government Libraries Computer and Electronics Information governance

More Companies Are Digitizing Records Than Ever Before

Armstrong Archives

APRIL 1, 2022

According to a recent IDC report , digital transformation investments are projected to account for over half of all information and communications technology investments by 2024, and document digitization likely has a key role to play in that transformation. Benefits of Using a Third-Party Solution for Digitizing Records. Consistency.

Customer Experience

Customer Experience Paper Records Management Archiving

IBM Cloud solution tutorials: 2023 in review

IBM Big Data Hub

DECEMBER 14, 2023

Transit VPC using VPN – The hub and spoke model allows communication to pass through a firewall-router using an off the shelf appliance. Access is then limited to configured service instances or specific network zones and addresses. The first was on how to clean up unused access policies.

Cloud

Cloud Cleanup Compliance Security

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

eSecurity Planet

MAY 2, 2024

Most organizations express confidence in their current status and budgets, but also expect to experience at least one data breach in 2024. 20% increase accesses of specific organizations advertised. 13% maintain access to company tools or resources after leaving the organization.

Cybersecurity

Cybersecurity Ransomware Passwords Cloud

Generative AI as a catalyst for change in the telecommunications industry

IBM Big Data Hub

SEPTEMBER 19, 2023

Watsonx’s open-source frameworks and SDK and API libraries are designed to make it easier to implement AI into existing software platforms that telcos already use to oversee their networks. CSPs can take advantage of watsonx.ai to train, validate, tune and deploy AI and machine learning capabilities to help optimize network performance.

Artificial Intelligence

Artificial Intelligence Customer Experience Information architecture Libraries

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

IT Governance

JANUARY 3, 2024

TB exfiltrated Comcast Cable Communications, LLC (Xfinity) Source 1 ; source 2 (New) Telecoms USA Yes 35,879,455 Tecnoquadri Srl Source (New) Manufacturing Italy Yes 33,000,000 Asia Insurance Co. Source 1 ; source 2 (New) Manufacturing Australia Yes 95.19 Source (New) Finance USA Yes 33.96

Data Privacy

Data Privacy Insurance Manufacturing Retail

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

IT Governance

DECEMBER 19, 2023

Source (New) Retail USA Yes 1,268 Lipsey Communications, LLC (Paycom Payroll, LLC) Source 1 ; source 2 (New) Telecoms USA Yes 1,202 Yorkshire Wellness Group, Corp. A draft implementation plan will set out steps towards three goals: interpersonal exchanges; co-creation of the economy and society; and peace and stability.

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Information Management Today

Innovative approaches to literacy: Libraries Change Lives

Weekly Vulnerability Recap – January 2, 2024 – Barracuda ESG, Apache OfBiz Vulnerabilities Persist

Trending Sources

VulnRecap 1/8/24 – Ivanti EPM & Attacks on Old Apache Vulnerabilities

Vulnerability Recap 4/1/24: Cisco, Fortinet & Windows Server Updates

DinodasRAT Linux variant targets users worldwide

DuneQuixote campaign targets the Middle East with a complex backdoor

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

New Book by Facet first in series of titles for Academic Publishers

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

5 Major Cybersecurity Trends to Know for 2024

Finding the treasure in governement information management

More Companies Are Digitizing Records Than Ever Before

IBM Cloud solution tutorials: 2023 in review

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

Generative AI as a catalyst for change in the telecommunications industry

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

Stay Connected