CILIP

FEBRUARY 20, 2024

Protect funding for public libraries at risk In this election year it is more important than ever to bring libraries into the public and political spotlight as central government cuts council budgets across the country. The Libraries at Risk Monitor builds on the Know your Rights campaign, which has been running since 2023.

Libraries 80

Libraries Risk Government IT 80

CILIP

FEBRUARY 29, 2024

New Partner in Green Libraries Campaign: NHS Knowledge and Library Services Community of Practice There are more than 500 libraries within NHS England, an organisation that is committed to net zero by 2040. Green Libraries Campaign Find out more about the Green Libraries Campaign and how your library can get involved!

Libraries 52

Libraries IT 52

CILIP

MARCH 1, 2024

Libraries in 19 councils at risk of ‘fire sale’ with new Exceptional Financial Support Framework Image of birmingham library via wikimedia commons CILIP is sounding the alarm over a potential 'fire sale' of library buildings following the Government announcement of 'exceptional financial support' to 19 Councils.

Libraries 88

Libraries Sales Risk Government 88

CILIP

MARCH 4, 2024

Decision-makers and sector leaders from CILIP’s Employer and Learning Partners met last Wednesday at the Hive Library in Worcester for a hybrid in-person and online programme that focussed on getting a head start on AI policy. The day was made possible with sponsorship from CB Resourcing and WF Education. Read more about the workshop.

Libraries 52

Libraries Education Archiving Government 52

Archive-It

MARCH 21, 2024

Empowering GLAM Institutions: The Launch of Digital Library Accessibility Policy and Practice Guidelines – The DLF Digital Accessibility Working Group publishes best practices for galleries, libraries, archives, and museums, fostering accessibility through policies and workflows. All are welcome!

Archiving 26

Archiving IT Libraries Digital preservation 26

CILIP

JUNE 23, 2023

Chartered Institute of Library and Information Professionals (CILIP) 23rd June 2023 Published: 14 June 2023 More from Information Professional News In depth Interview Insight This reporting is funded by CILIP members. We will continue to work with IFLA to ensure that this is the case.

Libraries 52

Libraries Government IT 52

CILIP

JANUARY 16, 2024

CILIP welcomes publication of Sanderson Review of Public Libraries CILIP has welcomed the publication of the findings of Baroness Sanderson of Welton’s Independent Review of Public Libraries, announced today at an event at the House of Lords attended by our CEO, Nick Poole.

Libraries 86

Libraries Government Education Communications 86

Security Affairs

MARCH 8, 2024

Cisco released security patches to address two high-severity vulnerabilities in Secure Client respectively tracked as CVE-2024-20337 and CVE-2024-20338. The vulnerability CVE-2024-20337 (CVSS score 8.2) resides in the ISE Posture (System Scan) module of Cisco Secure Client for Linux. ” reads the advisory.

Security 109

Security IT Authentication Libraries 109

Archive-It

APRIL 17, 2024

by the Archive-It team Community News Save the Date for 2024 Partner Meeting Archive-It’s annual Partner Meeting returns in person on Wednesday, August 14, 2024 for a half day in Chicago, just ahead of the 2024 ARCHIVES*RECORDS Society of American Archivists (SAA) conference. We hope you can join us!

Archiving 26

Archiving IT Analytics Libraries 26

CILIP

FEBRUARY 20, 2024

Urgent appeal: protect funding for public libraries at risk CILIP is the leading industry voice championing and representing library and information professionals across the United Kingdom, guided by our Royal Charter to develop and improve library and information services, and as a Charity to act in the public good.

Libraries 59

Libraries Risk Education Access 59

CILIP

FEBRUARY 1, 2024

Future Libraries Video: What is futures literacy? In this introductory video from the Future Libraries Toolkit , Ben Lee from Shared Intelligence lays down the basics of Futures Literacy, how it works, what it is, and how it can benefit your thinking, workforce, and library.

Libraries 52

Libraries IT 52

CILIP

JANUARY 5, 2024

Annual Buyer's Guide 2024t Find out what buyers and providers are saying about technology, ethics, careers, start-ups, pop-up banks and more CILIP’s Annual Buyers’ Guide Directory 2024, which will be delivered with your January/February issue of Information Professional. Find out more about CILIP’s Supplier Partners and how they can help you.

Libraries 52

Libraries Marketing Access Archiving 52

The Schedule

DECEMBER 18, 2023

Records Management Annual Section Meeting, July 2024! Jessika Drmacich, Chair, former 2021 Chair: Jessika, Records Manager and Digital Resources Archivist at Williams College Special Collections (Libraries), leads Williams’ campus-wide Records Management Program, web archiving, and digital preservation.

Records Management 52

Records Management Digital preservation Archiving Libraries 52

CILIP

JANUARY 23, 2024

Sanderson Report Shows that libraries are part of something bigger UK media, leading writers, including two former Children's Laureates, and library advocates including CILIP CEO, Nick Poole came out in force to defend public and school libraries in response to Baroness Sanderson’s Review of Libraries.

Libraries 52

Libraries Risk Government Access 52

CILIP

FEBRUARY 20, 2024

Library buyers’ role in tech start-ups Frode Opdahl, CEO of Keenious explains the origins of an AI-driven start-up and how its success depends on library buyers keeping the sector attractive to start-ups that wish to innovate the research experience. It was later that we saw it as a tool for libraries.”

Libraries 52

Libraries Education Artificial Intelligence Sales 52

eSecurity Planet

JANUARY 2, 2024

On December 24, when Barracuda released the security notice, there was no remediation or patch available for CVE-2023-7101 , the Spreadsheet::ParseExcel vulnerability, within the open-source library. The technique that threat actors can use is Dynamic Link Library (DLL) search order hijacking. 1020000 1.26.10-gke.1235000 1235000 1.27.7-gke.1293000

Authentication 85

Authentication Libraries Cybersecurity Security 85

eSecurity Planet

APRIL 15, 2024

April 8, 2024 Multiple Vulnerabilities Discovered in LG WebOS Smart TVs Type of vulnerability: Authorization bypass, privilege escalation, command injection. The fix: LG issued security upgrades on March 22, 2024, which addressed the vulnerabilities. Check out our article on SaaS security checklist and learn how to create one.

Libraries 93

Libraries Risk Cybersecurity Honeypots 93

Security Affairs

MARCH 30, 2024

Red Hat warns of a backdoor in XZ Utils data compression tools and libraries in Fedora development and experimental versions. Red Hat urges users to immediately stop using systems running Fedora development and experimental versions because of a backdoor in the latest versions of the “xz” tools and libraries. rpm and xz-libs-5.6.0-2.fc40.x86_64.rpm

Libraries 129

Libraries Authentication Access Risk 129

CILIP

APRIL 15, 2024

CILIP Copyright COnference 2024 By Gary Horrocks THE summer 2023 issue of UKeiG’s open access journal, eLucidate , featured my reflections on the implications of a Members’ Day presentation by Ken Chad on the “library technology ecosystem". Are the LMS we know and love dead in the water? Who pays for the ecosystem? This Is Grim”.

Libraries 73

Libraries Education Analytics Marketing 73

CILIP

DECEMBER 14, 2022

£135,000 funding for Anti-racist library collections in Wales. The investment will fund a new project – Anti-racist Library Collections: a training plan for public libraries in Wales with the purpose of raising the profile of libraries. Phase 3 - April-September 2024. 14 December 2022. Commission training content.

Libraries 52

Libraries Government Security IT 52

CILIP

APRIL 8, 2024

CILIP Appoints Louis Coiffait-Gunn as new CEO The CILIP Board has appointed Louis Coiffait-Gunn as the charity's new CEO, and Louis will be starting in the new role on Wednesday 8th May 2024. Louis was introduced to public libraries at a young age as his grandmother was a librarian in a neighbouring village.

Libraries 95

Libraries Education Government Access 95

Thales Cloud Protection & Licensing

APRIL 16, 2024

Stop Ransomware in its Tracks With CipherTrust Transparent Encryption Ransomware Protection madhav Wed, 04/17/2024 - 05:22 Our last blog Ransomware Attacks: The Constant and Evolving Cybersecurity Threat described the ever dangerous and evolving cybersecurity threat of ransomware. As such, it would not be detected at process load time.

Encryption 62

Encryption Ransomware IT Cybersecurity 62

IT Governance

JANUARY 9, 2024

Capital Health operates two hospitals in the New Jersey-Pennsylvania region: Regional Medical Center in Trenton and Capital Health Medical Center in Hopewell. Data breached: >10 million records. HealthEC LLC breached, almost 4.5 Information relating to nearly 4.5 Source (New) Legal USA Yes 310,297 Bit24.cash

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

Archive-It

FEBRUARY 22, 2024

Community News Community Webs expanding with additional grant funding The Internet Archive is accepting applications from public libraries, local and community archives, and other cultural heritage organizations to join Community Webs , our Community History Archiving Program, as a result of recent funding from the Mellon Foundation.

Archiving 20

Archiving Digital preservation IT Libraries 20

eSecurity Planet

APRIL 1, 2024

March 22, 2024 Emergency Out-of-Band Windows Server Security Updates Type of vulnerability (or attack): Memory leak. or above March 25, 2024 Hackers Pollute Python Package Index Open-Source Libraries Type of vulnerability (or attack): Malicious library code. The fix: Update affected versions ASAP: FortiClient EMS 7.2:

Libraries 88

Libraries Authentication Artificial Intelligence Cloud 88

Security Affairs

APRIL 9, 2024

December 14, 2023: Vendor requests extension March 22, 2024: Patch release April 09, 2024: Public release of this report Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, smart TVs) running on LG43UM7000PLA webOS 5.5.0 – 04.50.51

Authentication 129

Authentication Libraries Access Information Security 129

Security Affairs

MARCH 11, 2024

ai have published technical details and a proof-of-concept (PoC) exploit for the critical security flaw CVE-2024-1403 in Progress Software OpenEdge Authentication Gateway and AdminServer. ” The vulnerability CVE-2024-1403 (CVSS score 10) is an authentication bypass issue that impacts OpenEdge versions 11.7.18

Authentication 124

Authentication Passwords Libraries Access 124

eSecurity Planet

JANUARY 8, 2024

January 3, 2024 52% of Exposed SSH Servers Vulnerable to Terrapin Attack Type of attack: Secure Shell (SSH) vulnerability enables prefix truncation attacks. and older of the Perl Spreadsheet::ParseExcel library ( CVE-2023-7101 ) contain a RCE vulnerability exploited by Chinese hackers, as noted on December 24th. Versions 0.65

Encryption 101

Encryption Libraries Cybersecurity Communications 101

CILIP

APRIL 26, 2024

CILIP Copyright COnference 2024 By Maureen Pinder, Faculty Librarian, J. Priestley Library, University of Bradford. ¬¬ Professional Registration Support Officers (PRSO) play a vital role in helping CILIP members navigate their way to Certification, Chartership and Fellowship. I now support pharmacy, for my sins!

Libraries 52

Libraries IT 52

IT Governance

FEBRUARY 21, 2024

In January 2024, it identified more potential victims, and has now written to inform them that their personal data may have been compromised in the incident. Recent victims of Rhysida include the British Library and Sony’s Insomniac Games. Key dates 31 March 2024 – PCI DSS v4.0 Date breached: 384,658,212 records.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

Security Affairs

JANUARY 26, 2024

The maintainers of the open-source platform have addressed nine security vulnerabilities, including a critical flaw, tracked as CVE-2024-23897 , that could lead to remote code execution (RCE). The open-source software uses the args4j library to parse CLI command arguments and options on the Jenkins controller.

Libraries 132

Libraries Access IT Security 132

Security Affairs

APRIL 21, 2024

Researchers from Kaspersky discovered the DuneQuixote campaign in February 2024, but they believe the activity may have been active since 2023. The malware is developed in C/C++ without utilizing the Standard Template Library (STL), and certain segments are coded in pure Assembler.”

Libraries 111

Libraries Communications IT Government 111

Security Affairs

MARCH 31, 2024

In March 2024, Trend Micro researchers uncovered a sophisticated campaign conducted by a threat actor tracked as Earth Krahang while investigating the activity of China-linked APT Earth Lusca. [executable_name].mu”. The Linux version of DinodasRAT uses Pidgin’s libqq qq_crypt library functions for encryption and decryption of data.

Libraries 139

Libraries Encryption Communications Government 139

eSecurity Planet

FEBRUARY 5, 2024

January 29, 2024 Juniper Releases Updates for Critical RCE Vulnerabilities Type of vulnerability: Missing authentication flaw and cross-site scripting (XSS) vulnerability. The fix: Juniper Networks has published out-of-cycle fixes for CVE-2024-21619 and CVE-2024-21620 — apply fixes to the identified versions.

Risk 89

Risk Authentication Cybersecurity Access 89

CILIP

MARCH 26, 2024

CILIP Copyright COnference 2024 By Lavinia Bentley, Archive Assistant, Jaguar Daimler Heritage Trust, Collections Centre, British Motor Museum Is starting an apprenticeship in the 60th year of your life a good idea? Galleries, Libraries, Archives and Museums,) sector and was able to mount a small exhibition as part of my End Point Assessment.

Archiving 73

Archiving Libraries Manufacturing Education 73

IT Governance

FEBRUARY 14, 2024

Compromised data included names, ID card numbers, phone numbers, emails, salaries and personal photographs. The incident is one of a series of major data breaches in Thailand in recent months that have been analysed by the security company Resecurity. Data breached: 19,718,687 records. TB Cole, Cole, Easley & Sciba Source New Legal USA Yes 1.5

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

Security Affairs

FEBRUARY 18, 2024

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks CISA adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited Vulnerabilities catalog US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders U.S.

Security 112

Security Ransomware Data breaches Libraries 112