2022, Analysis, Cybersecurity and Government - Information Management Today

2022

Analysis

Cybersecurity

Government

15 Top Cybersecurity Certifications for 2022

eSecurity Planet

JUNE 21, 2022

” Also read: Cybersecurity Employment in 2022: Solving the Skills Gap. “Certifications range from penetration testers , government/industry regulatory compliance , ethical hacking , to industry knowledge,” he said. Also read: How to Get Started in a Cybersecurity Career. CompTIA Security+.

Cybersecurity

Cybersecurity Systems administration Information Security Compliance

SEC Proposes Cybersecurity Rules for Public Companies

Hunton Privacy

MARCH 11, 2022

On March 9, 2022, the Securities and Exchange Commission (“SEC”) held an open meeting and proposed new cybersecurity disclosure rules for public companies by a 3-1 vote. In proposing the rules, the SEC hopes to improve the consistency and comparability of cybersecurity disclosures among public companies. Key Definitions.

Cybersecurity

Cybersecurity Risk Government Security

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Trending Sources

Australian Privacy Regulator Sues in Data Breach Case

Hunton Privacy

NOVEMBER 15, 2023

Patrick Gunning from King & Wood Mallesons reports that, on November 2, 2023, the Australian Information Commissioner filed proceedings in the Federal Court of Australia against Australian Clinical Labs Limited seeking a civil penalty ( i.e. , a fine) in connection with the company’s response to a data breach that occurred in February 2022.

Data breaches

Data breaches Privacy Risk Information Security

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Witchetty APT used steganography in attacks against Middle East entities

Security Affairs

OCTOBER 1, 2022

The group used the backdoor in attacks against Middle Eastern governments. The cyber espionage group Witchetty (aka LookingFrog) was first spotted by cybersecurity firm ESET in April 2022, the experts argue it is a sub-group of the China-linked TA410 group (aka APT10, Cicada, Stone Panda, and TA429)).

Manufacturing

Manufacturing Government Cybersecurity IT

Battle with Bots Prompts Mass Purge of Amazon, Apple Employee Accounts on LinkedIn

Krebs on Security

OCTOBER 20, 2022

On October 10, 2022, there were 576,562 LinkedIn accounts that listed their current employer as Apple Inc. 10, according to Pinho’s analysis: Image: twitter.com/jaypinho. The next day, half of those profiles no longer existed. Image: twitter.com/jaypinho. Neither Amazon or Apple responded to requests for comment.

IT Information Security Cybersecurity Security

What is the NIS2 Directive and How Does It Affect You?

Thales Cloud Protection & Licensing

NOVEMBER 28, 2022

Tue, 11/29/2022 - 06:08. Six years later, modifications to this regulation are gaining momentum, with the Commission, the European Parliament, and the European Council reaching their first agreements in May and June 2022. What is the NIS2 Directive and How Does It Affect You? Why is a revision to NIS Directive required?

IT Encryption Compliance Cybersecurity

The Week in Cyber Security and Data Privacy: 23–29 October 2023

IT Governance

OCTOBER 31, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. University of Tokyo PC Infected with Malware in July 2022; Possible Leak of Students’ Addresses, Grades Date of breach: July 2022 (first reported 24 October 2023).

Data Privacy

Data Privacy Privacy Data breaches Security

The new SCCs and what you need to know

Privacy and Cybersecurity Law

AUGUST 31, 2021

The transition period for replacing the old SCCs expires on 27 December 2022. Stop press: On 11 August, the ICO launched a public consultation on draft UK SCCs, use of the EU SCCs, and a DTIA tool. This aligns with Schrems II concerns and is more practical than starting with a legal analysis. Drafting tips.

Data breaches

Data breaches Compliance Privacy Risk

Congress Passes Cyber Incident Reporting for Critical Infrastructure Act of 2022

Data Matters

MARCH 21, 2022

Congress has passed a significant new cybersecurity law that will require critical infrastructure entities to report material cybersecurity incidents and ransomware payments to the Cybersecurity and Infrastructure Security Agency (CISA) within 72 and 24 hours, respectively. Background. Cyber Incident Report.

Ransomware

Ransomware Cybersecurity Agriculture Communications

The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years

Security Affairs

MARCH 13, 2022

This piece of malware is known for the usage of the Portuguese Government Finance & Tax (Autoridade Tributária e Aduaneira) email templates to lure victims to install the malicious loader (a VBS file). Filename : Comprovativo de pagamento_2866-XRNM_15-02-2022 06-43-54_28.vbs Figure 9: Lampion DLLs – release 212 (February 2022).

Passwords

Passwords IT Information Security Government

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Security Affairs

APRIL 2, 2023

LockBit leaks data stolen from the South Korean National Tax Service Italy’s Data Protection Authority temporarily blocks ChatGPT over privacy concerns CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog Hackers are actively exploiting a flaw in the Elementor Pro WordPress plugin Cyber Police of Ukraine (..)

Security

Security Artificial Intelligence Data breaches Ransomware

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. Investors recognize the potential too, as funding for cybersecurity ventures more than doubled from previous years to almost $22 billion in 2021. Top 10 Cybersecurity Startups.

Cybersecurity

Cybersecurity Cloud Compliance Analytics

Types of Encryption, Methods & Use Cases

eSecurity Planet

DECEMBER 7, 2023

Proper use of encryption preserves secrecy and radically lowers the potential damage of a successful cybersecurity attack. For example, the Social Security number “111-11-1111” might be encoded into the plaintext numeric code of “049049 049049 049049 049049 049,” which cannot be used in a database with a limit of 9 characters.

Encryption

Encryption Authentication Passwords Communications

The Hacker Mind: G-Men in Cyberspace

ForAllSecure

JULY 19, 2022

I'm not talking about 9/11, I'm talking about February 1993. What I say it was I was willfully ignorant to the threat of what it was about because I was just doing my thing until September 11 happened that day when I was working what I witnessed that day. Listen to the latest episode at The Hacker Mind.com.

Government

Government Ransomware IT Phishing

15 Top Cybersecurity Certifications for 2022

SEC Proposes Cybersecurity Rules for Public Companies

Webinars

Trending Sources

Australian Privacy Regulator Sues in Data Breach Case

Webinars

Witchetty APT used steganography in attacks against Middle East entities

Battle with Bots Prompts Mass Purge of Amazon, Apple Employee Accounts on LinkedIn

What is the NIS2 Directive and How Does It Affect You?

The Week in Cyber Security and Data Privacy: 23–29 October 2023

The new SCCs and what you need to know

Congress Passes Cyber Incident Reporting for Critical Infrastructure Act of 2022

The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Top Cybersecurity Startups to Watch in 2022

Types of Encryption, Methods & Use Cases

The Hacker Mind: G-Men in Cyberspace

Stay Connected