Security Affairs

JANUARY 16, 2024

Last week, software firm Ivanti reported that threat actors are exploiting two zero-day vulnerabilities (CVE-2023-46805, CVE-2024-21887) in Connect Secure (ICS) and Policy Secure to remotely execute arbitrary commands on targeted gateways. The second flaw, tracked as CVE-2024-21887 (CVSS score 9.1) x and Ivanti Policy Secure.

Security 92

Security Authentication Military Government 92

IT Governance

FEBRUARY 14, 2024

Compromised data included names, ID card numbers, phone numbers, emails, salaries and personal photographs. The incident is one of a series of major data breaches in Thailand in recent months that have been analysed by the security company Resecurity. Data breached: 19,718,687 records. TB Cole, Cole, Easley & Sciba Source New Legal USA Yes 1.5

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

The Last Watchdog

SEPTEMBER 21, 2023

Access Living is committed to launching an Independent Living Technology Program to address the gap in digital skills in the disability community to reach 150 disabled participants by the end of 2024. They then attend Access Living’s disability centered technology training course and receive one-on-one support.

Cybersecurity 147

Cybersecurity Manufacturing Military Artificial Intelligence 147

Krebs on Security

JANUARY 8, 2024

government said Grichishkin and three others set up the infrastructure used by cybercriminals between 2009 to 2015 to distribute malware and attack financial institutions and victims throughout the United States. He is 36 years old, has a wife and kids in Thailand, and is slated for release on February 8, 2024.

Computer and Electronics 206

Computer and Electronics Passwords Sales Government 206

Security Affairs

JANUARY 20, 2020

The Chairman of the NATO Military Committee announced that the alliance has sent a counter-hybrid team to Montenegro to face Russian hybrid attacks. Last week in Brussels, the Chairman of the NATO Military Committee (MC), Marshal Sir Stuart Peach, announced the effort of the Alliance in facing Russian hybrid attacks.

Military 84

Military Government Phishing Cybersecurity 84

eSecurity Planet

MARCH 3, 2023

The first is to rebalance responsibility for cybersecurity away from individuals, small businesses and local governments, and towards “the owners and operators of the systems that hold our data and make our society function, as well as of the technology providers that build and service these systems.”

Cybersecurity 129

Cybersecurity Government Manufacturing Personal data 129

Data Protection Report

DECEMBER 12, 2023

The lack of progress had led to questions over whether the AI Act would be finalised before the end of Spain’s presidency of the Council at the end of the year, and whether an agreement would be possible before the next Parliament elections in June 2024. It does not apply systems used for purely military or defence purposes.

Artificial Intelligence 58

Artificial Intelligence Risk Marketing Military 58

IT Governance

APRIL 22, 2024

million records from World-Check, a screening database used to screen potential customers for links to illegal activity and government sanctions. Publicly disclosed data breaches and cyber attacks: in the spotlight Criminal hackers threaten to leak World-Check screening database A criminal group known as GhostR claims to have stolen 5.3

Data Privacy 52

Data Privacy Privacy Manufacturing Security 52

IT Governance

MARCH 11, 2024

We also found 14 organisations providing a significant update on a previously disclosed incident. Organisation(s) Sector Location Data breached? Source 1 ; source 2 (Update) IT services Taiwan Yes 2,451,197 RMH Franchise Corporation Source (New) Hospitality USA Yes 1.5 TB Paysign, Inc. TB Paysign, Inc.

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

The Last Watchdog

MAY 2, 2024

Tel Aviv, Israel, May 2, 2024, CyberNewsWire — LayerX , pioneer of the LayerX Browser Security platform, today announced $24 million in Series A funding led by Glilot+, the early-growth fund of Glilot Capital Partners, with participation from Dell Technologies Capital and other investors. LayerX has Fortune 100 clients worldwide.

Security 130

Security IT Marketing Phishing 130

IT Governance

APRIL 9, 2024

Cybernews has now discovered that the company has, once again, exposed highly sensitive children’s data because of configuration errors. The company is yet to comment. We also found 15 organisations providing a significant update on a previously disclosed incident. Organisation(s) Sector Location Data breached?

Data Privacy 52

Data Privacy Privacy Security Manufacturing 52

Krebs on Security

FEBRUARY 22, 2024

Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation’s burgeoning and highly competitive cybersecurity industry. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government 259

Government Cybersecurity Sales Blockchain 259

IT Governance

JANUARY 23, 2024

VF Corporation confirms 35.5 million customers’ data. Data breached: 35,500,000 records. O’Hara & Sons, Inc. Given that we can’t know the exact numbers, as it depends on the types of records included (e.g. We believe that this underestimates the records breached in most cases, but it is more accurate than not providing a number at all.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IBM Big Data Hub

FEBRUARY 22, 2024

Recognizing this, the Department of Defense (DoD) launched the Joint Artificial Intelligence Center (JAIC) in 2019, the predecessor to the Chief Digital and Artificial Intelligence Office (CDAO), to develop AI solutions that build competitive military advantage, conditions for human-centric AI adoption, and the agility of DoD operations.

Artificial Intelligence 107

Artificial Intelligence Metadata Military Government 107

eSecurity Planet

MAY 25, 2022

Through public and commercial development of advanced encryption methods, organizations from sensitive government agencies to enterprise companies can ensure protected communications between personnel, devices, and global offices. For users familiar with password management and the value of complex passwords, this makes sense.

Encryption 138

Encryption IT Computer and Electronics Passwords 138

Security Affairs

MARCH 3, 2024

Private Plane Owners’ Data Linked to LA Intl. Private Plane Owners’ Data Linked to LA Intl. Private Plane Owners’ Data Linked to LA Intl. Private Plane Owners’ Data Linked to LA Intl.

Security 114

Security Ransomware Retail Artificial Intelligence 114

ForAllSecure

MAY 17, 2023

Well, unlike large organizations, small to medium businesses lack the full accompaniment of network defenses. So they’re often unprepared when a nation state APT choses to focus on them. A lot of SMBs do not have security operations centers or SOCs. I’ve spoken about this before, about managed service providers or MSPs.

Insurance 40

Insurance Privacy Ransomware GDPR 40

eSecurity Planet

MARCH 4, 2024

February 26, 2024 FCKeditor Used for SEO Poisoning on Government, University Sites Type of vulnerability: Malicious URL redirect. February 27, 2024 Ransomware Gangs Target Unpatched ScreenConnect Servers Type of vulnerability: Authentication bypass and path traversal. The fix: Apply Windows patches ASAP.

IoT 117

IoT Ransomware Access Cybersecurity 117

KnowBe4

JUNE 6, 2023

China's People's Liberation Army (PLA) is increasingly focused on "Cognitive Warfare," a term referring to artificial intelligence (AI)-enabled military systems and operational concepts. This involves influencing the thinking of decision-makers, military commanders, and the general public in rival countries.

Phishing 73

Phishing Security awareness IT Passwords 73

The Last Watchdog

DECEMBER 27, 2023

Related: Cybersecurity takeaways of 2023 I recently visited with Mihoko Matsubara , Chief Cybersecurity Strategist at NTT to discuss why this worry has climbed steadily over the past few years – and is likely to intensify in 2024. The wider context is all too easy to overlook. For a full drill down, please view the accompanying videocast.

Cybersecurity 312

Cybersecurity Military Government Data Privacy 312

Security Affairs

FEBRUARY 13, 2024

Resecurity has identified a growing trend of malicious cyber-activity targeting sovereign elections globally With more voters than ever in history heading to the polls in 2024, Resecurity has identified a growing trend of malicious cyber-activity targeting sovereign elections globally. It’s perhaps the election year.”

Military 115

Military Passwords Government IT 115

Security Affairs

FEBRUARY 25, 2024

Not the LockBit gang is attempting to relaunch its RaaS operation, the group has set up a new infrastructure and is threatening to carry out cyber attacks on the government sector. The NCA and its global partners have secured over 1,000 decryption keys that will allow victims of the gang to recover their files for free.

Government 126

Government Ransomware Encryption Passwords 126