Authentication, Manufacturing and Metadata - Information Management Today

Authentication

Manufacturing

Metadata

Volvo retailer leaks sensitive files

Security Affairs

APRIL 15, 2023

The Brazilian retail arm of car manufacturing giant Volvo leaked sensitive files, putting its clientele in the vast South American country in peril. Volvo’s retailer exposed its database’s authentication information, including MySQL and Redis database hosts, open ports and credentials. The issue causing the leak has been fixed.

Retail

Retail Manufacturing Communications Passwords

A million at risk from user data leak at Korean beauty platform PowderRoom

Security Affairs

MARCH 23, 2023

Backed by beauty-product manufacturers, PowderRoom has hundreds of thousands of followers on social media, and its Android app has been downloaded more than 100,000 times on Google Play. Among the leaked data, researchers found a million tokens used for authentication and accessing the website.

Risk

Risk Metadata Manufacturing Personal data

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

Trending Sources

Security cameras, CAN-SPAM, and “reasonable or appropriate security”

Data Protection Report

SEPTEMBER 8, 2024

On August 30, 2024, the Federal Trade Commission (FTC) announced a proposed settlement with security camera manufacturer Verkada Inc., claiming Verkada committed a variety of unfair or deceptive acts or practices in violation of § 5 of the Federal Trade Commission Act and CAN-SPAM in connection with a security breach.

Security

Security Passwords Metadata e-Discovery

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

NSA, CISA Release Guidance for Choosing and Hardening VPNs

eSecurity Planet

OCTOBER 1, 2021

28 NSA-CISA document (PDF download) urges buyers to use standards-based VPNs from vendors with a track record of swiftly addressing known vulnerabilities and using strong authentication credentials. Examine whether a product offers strong authentication credentials and protocols by default, as opposed to weak credentials and protocols.

Authentication

Authentication Access Passwords Risk

SBOMs: Securing the Software Supply Chain

eSecurity Planet

OCTOBER 26, 2021

A software bill of materials (SBOM) is a machine-readable inventory of components, dependencies, metadata, and the hierarchical relationship for a given software product. In any instance, cryptographic authentication of SBOMs is imperative for verifying their authenticity. What is a Software Bill of Materials (SBOM)?

Security

Security Risk Compliance Cybersecurity

The most valuable AI use cases for business

IBM Big Data Hub

FEBRUARY 14, 2024

Deliver new insights Expert systems can be trained on a corpus—metadata used to train a machine learning model—to emulate the human decision-making process and apply this expertise to solve complex problems. Manufacturing Advanced AI with analytics can help manufacturers create predictive insights on market trends.

Artificial Intelligence

Artificial Intelligence Retail Unstructured data Insurance

Weekly Vulnerability Recap – Sept. 11, 2023 – Android Update Fixes 33 Vulnerabilities

eSecurity Planet

SEPTEMBER 11, 2023

Alarmingly, this API lacks any form of authentication, allowing virtually anyone, even a malicious website you might visit, to send commands to the CLI. They can be remotely exploited without authentication, potentially enabling remote code execution, service disruptions, and arbitrary operations on the routers. via port 8076.

Authentication

Authentication Phishing Metadata Access

Part 1: OMG! Not another digital transformation article! Is it about understanding the business drivers?

ARMA International

SEPTEMBER 13, 2021

DRM is used by publishers, manufacturers and IP owners for digital content and device monitoring” (Techopedia 2021). When tagging and auto-classifying content, the AI engine can extract metadata to provide context to unstructured content. Blockchain, Provenance, and Authentic Information. One use case is supply chains.

Digital transformation

Digital transformation Blockchain IT Computer and Electronics

The Orion blockchain database: Empowering multi-party data governance

IBM Big Data Hub

AUGUST 7, 2023

Orion combines these capabilities with other blockchain properties, offering tamper evidence, provenance, data lineage, authenticity and non-repudiation, all while utilizing a standard data model and transactional APIs. Ensuring the authenticity of data is crucial in preventing potential disputes over authorship in multi-party interactions.

Blockchain

Blockchain Government Authentication Manufacturing

From U2F to passkeys

Imperial Violet

JULY 22, 2023

The first standard of the pair is also called the Client to Authenticator Protocol (CTAP1), and when the term “U2F” is used in isolation, it usually refers to that. The goal of U2F was to eliminate “bearer tokens” in user authentication. So U2F allowed signatures to be used for authentication on the web.

Authentication

Authentication Passwords Security Metadata

Join Our Webinar on November 16th: IGI & Preservica Address the Governance of Long-Term Digital Information

IGI

NOVEMBER 10, 2017

As I noted, the emphasis in recent years has been on defensible disposition (getting rid of outdated, redundant and low value information) but there needs to be a complementary focus on ensuring the integrity, usability and authenticity of information that must survive successive generations of users, consumers and custodians.

Digital preservation

Digital preservation Government Digital transformation Access

Security Keys

Imperial Violet

MARCH 26, 2018

Security Keys are another attempt address this problem—initially in the form of a second authentication factor but, in the future, potentially as a complete replacement. One common form of second factor authentication is TOTP / HOTP. Google Authenticator ) which produces codes that change every minute or so.

Security

Security Passwords Authentication Phishing

Username (and password) free login with security keys

Imperial Violet

AUGUST 9, 2019

Of course, there are other manufacturers who make security keys and, if it advertises “CTAP2” support, there's a good chance that it'll work too. User verification is about whether the security key is providing one or two authentication factors. Which security keys count as “modern”? Exposed credentials.

Passwords

Passwords Security Encryption Authentication

Zero-knowledge attestation

Imperial Violet

DECEMBER 31, 2018

I've written a fairly lengthy introduction to them previously and, as mentioned there, one concerning aspect of their design is that they permit attestation: when registering a key it's possible for a site to learn a cryptographically authenticated make, model, and batch. But without any impetus towards those ends, that's not going to happen.

Metadata

Metadata Paper IT Manufacturing

Information Management Today

Volvo retailer leaks sensitive files

A million at risk from user data leak at Korean beauty platform PowderRoom

Webinars

Trending Sources

Security cameras, CAN-SPAM, and “reasonable or appropriate security”

Webinars

NSA, CISA Release Guidance for Choosing and Hardening VPNs

SBOMs: Securing the Software Supply Chain

The most valuable AI use cases for business

Weekly Vulnerability Recap – Sept. 11, 2023 – Android Update Fixes 33 Vulnerabilities

Part 1: OMG! Not another digital transformation article! Is it about understanding the business drivers?

The Orion blockchain database: Empowering multi-party data governance

From U2F to passkeys

Join Our Webinar on November 16th: IGI & Preservica Address the Governance of Long-Term Digital Information

Top IoT Security Solutions of 2021

Security Keys

Username (and password) free login with security keys

Zero-knowledge attestation

Stay Connected