Schneier on Security

FEBRUARY 12, 2021

ArsTechnica is reporting on the poor cybersecurity at the plant: The Florida water treatment facility whose computer system experienced a potentially hazardous computer breach last week used an unsupported version of Windows with no firewall and shared the same TeamViewer password among its employees, government officials have reported.

Manufacturing 114

Manufacturing Passwords Cybersecurity Access 114

Krebs on Security

OCTOBER 12, 2018

Earlier this month I spoke at a cybersecurity conference in Albany, N.Y. alongside Tony Sager , senior vice president and chief evangelist at the Center for Internet Security and a former bug hunter at the U.S. National Security Agency. TS: Like a lot of things in security, the economics always win.

Security 205

Security Computer and Electronics IoT Cloud 205

Adam Shostack

JULY 17, 2018

The letter calls on government officials to become proponents of digital security and work collaboratively to help law enforcement adapt to the digital era. Read the full announcement here ). I’m pleased to have joined in this effort by Accessnow, and you can sign, too, at [link].

Security 40

Security Encryption Manufacturing Government 40

Security Affairs

JANUARY 13, 2019

The best news of the week with Security Affairs. Hackers have stolen customer data from Titan Manufacturing and Distributing company for nearly one year. NSA will reveal its GHIDRA Reverse Engineering tool at RSA Conference. Nine 2019 Cybersecurity Predictions. Three security bugs found in the popular Linux suite systemd.

Security 54

Security Manufacturing Paper Ransomware 54

Security Affairs

NOVEMBER 1, 2021

Positive Technologies researchers Vladimir Kononovich and Alexey Stennikov have discovered security flaws Wincor Cineo ATMs that could be exploited to bypass Black-Box attack protections and withdraw cash. The vulnerabilities discovered by the security duo impacts the Wincor Cineo ATMs with the RM3 and CMD-V5 dispensers.

Encryption 114

Encryption Manufacturing Authentication Security 114

eSecurity Planet

AUGUST 26, 2021

Microsoft this week issued an advisory about three vulnerabilities referred to collectively as ProxyShell days after security researchers at a federal government cybersecurity agency warned that cybercriminals were actively trying to exploit them. Further reading: Top Patch Management Tools. Microsoft Faces Criticism for Response.

Cybersecurity 114

Cybersecurity Ransomware Manufacturing Security 114

Privacy and Cybersecurity Law

MAY 17, 2017

The National Institute of Standards and Technology (NIST) is holding a Cybersecurity Framework Workshop this week at its headquarters in Gaithersburg, Maryland. The purpose of the workshop is to discuss issues related to its widely used Cybersecurity Framework.

IoT 40

IoT Cybersecurity IT Manufacturing 40

Security Affairs

SEPTEMBER 12, 2019

Cybersecurity researchers at AdaptiveMobile Security disclosed a critical vulnerability in SIM cards dubbed SimJacker that could be exploited by remote attackers to compromise targeted mobile phones and spy on victims just by sending an SMS. The SIMalliance recommends implementing security for S@T push messages.

Manufacturing 106

Manufacturing Security Cybersecurity Risk 106

Security Affairs

MAY 2, 2021

A security duo has demonstrated how to hack a Tesla Model X’s and open the doors using a DJI Mavic 2 drone equipped with a WIFI dongle. Automotive manufacturers can scale up their software testing and remediation pipelines by orders of magnitude by using KunnaEmu. The researchers Kunnamon, Inc.’s concluded Dr. Weinmann.

Manufacturing 115

Manufacturing Security Cloud IT 115

Security Affairs

NOVEMBER 20, 2020

Egregor’s favorite sectors are Manufacturing (28.9% Would you like to learn more about ransomware operations and TTPs in 2020, register now for Group-IB’s signature Threat Hunting and Intelligence conference, CyberCrimeCon. Other victims happened to be from the APAC, the Middle East, and Latin America. of victims) and Retail (14.5%).

Ransomware 115

Ransomware Retail Encryption Manufacturing 115

Adam Levin

AUGUST 13, 2018

Security researchers at the recent Black Hat and Def Con security conferences in Las Vegas have placed malware on pacemakers as a proof-of-concept hack to highlight the potential for security vulnerabilities in IoT-enabled medical devices. Medtronic manufactures the targeted pacemakers. Read more here.

IoT 49

IoT Encryption Manufacturing Authentication 49

The Last Watchdog

APRIL 24, 2019

Related: Free ‘VRMM’ tool measures third-party exposure Just take a look at Europe’s GDPR , NYDFS’s cybersecurity requirement s or even California’s newly minted Consumer Privacy Act. We do white papers and thought leadership at conferences. Accounting for third-party risks is now mandated by regulations — with teeth.

Risk 164

Risk IoT Digital transformation Retail 164

eSecurity Planet

APRIL 23, 2021

To fill this gap and aid in the analysis, detection, and testing of malware, sandboxing is widely used to give organizations the setting, isolation, and security tools needed to preserve the integrity of the host network. In 2021, sandboxes are now a fundamental part of an organization’s cybersecurity architecture. Sandbox Features.

Cybersecurity 56

Cybersecurity Cloud Risk Marketing 56

HL Chronicle of Data Protection

OCTOBER 21, 2019

Regulators, industry experts, and researchers provided insight into health privacy and security enforcement trends, emerging threats, and new tools at a recent conference focused on the Health Insurance Portability and Accountability (HIPAA) regulatory framework. HHS Security Risk Assessment Tool. Emerging Trends in Breaches.

Risk 40

Risk Compliance Privacy Phishing 40

Security Affairs

NOVEMBER 16, 2018

Hong Kong, 16.11.2018 – Group-IB, an international company that specializes in preventing cyber attacks, presented the findings of its latest Hi-Tech Crime Trends 2018 report at the FinTech Security Conference in Hong Kong organized by Binary Solutions Limited in partnership with Group-IB. Pierluigi Paganini.

Phishing 83

Phishing Manufacturing Marketing Blockchain 83

ForAllSecure

MARCH 14, 2022

In fact, I remember starting a new job by flying to Auburn Hills, Michigan for the very first meeting of the Featherstone Group, a collection of automotive OEM executive and security professionals. That work resulted in new SAE standards and lead to ISO 21434, a new standard focused on cybersecurity in automotive.

Computer and Electronics 52

Computer and Electronics Government Communications Cybersecurity 52

Info Source

JUNE 28, 2022

As all of us here at Infosource gear up for the Capture Conference (September 7 and 8 in Chicago, be there or be square!), The difference is that OpenText is a commercially available driver that the scanner manufacturers have developed for them and that allows a software application to talk to the device.

IT 98

IT Manufacturing Cloud Digital transformation 98

HL Chronicle of Data Protection

JANUARY 26, 2018

The half-day conference, co-hosted by Hogan Lovells and the Future of Privacy Forum, convened on January 23, with the theme of “Privacy and the Connected Vehicle: Navigating the Road Ahead.”. The conference agenda and information about the speakers is available here. Many Challenges and Questions Remain.

Privacy 40

Privacy Government Communications Manufacturing 40

IT Governance

APRIL 22, 2024

Compromised data includes names, passport numbers, Social Security numbers, online crypto account identifiers and bank account numbers. million accounts compromised in Le Slip Français data breach The French underwear manufacturer Le Slip Français has suffered a data breach. Data breached: 5,300,000 records.

Data Privacy 52

Data Privacy Privacy Manufacturing Security 52

Krebs on Security

AUGUST 12, 2022

The Department of Homeland Security (DHS) is urging states and localities to beef up security around proprietary devices that connect to the Emergency Alert System — a national public warning system used to deliver important emergency information, such as severe weather and AMBER alerts. “But nothing ever happened. .

Passwords 198

Passwords Manufacturing Security Risk 198

Info Source

JUNE 28, 2022

As all of us here at Infosource gear up for the Capture Conference (September 7 and 8 in Chicago, be there or be square!), The difference is that OpenText is a commercially available driver that the scanner manufacturers have developed for them and that allows a software application to talk to the device.

IT 52

IT Manufacturing Cloud Digital transformation 52

IT Governance

JANUARY 16, 2024

Source (New) Manufacturing USA Yes 42 GB Auto-Motion Shade Inc. Drug Mart Source 1 ; source 2 (Update) Healthcare USA Yes 36,749 Elliott Group Source (New) Manufacturing USA Yes 31.5 Drug Mart Source 1 ; source 2 (Update) Healthcare USA Yes 36,749 Elliott Group Source (New) Manufacturing USA Yes 31.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

Krebs on Security

FEBRUARY 10, 2021

Stories about computer security tend to go viral when they bridge the vast divide between geeks and luddites, and this week’s news about a hacker who tried to poison a Florida town’s water supply was understandably front-page material. Also, the changes he tried to make wouldn’t happen instantaneously.

IT 342

IT Cybersecurity Access Ransomware 342

ForAllSecure

APRIL 26, 2022

So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. In a moment I’ll introduce you to someone who is trying to do that--bring ICS equipment to security conferences.

Energy and Utilities 52

Energy and Utilities Manufacturing Risk IT 52

ForAllSecure

AUGUST 2, 2022

Anyone who has anyone in the information security community is usually melting under the hot Nevada sun. And by de I'm an analyst at Javelin strategy and research where I do security risk and fraud for the financial services industry. I write a monthly security column for Windows Secrets and I do a couple other things on the side.

Computer and Electronics 40

Computer and Electronics IT Security Mining 40

Schneier on Security

JUNE 8, 2021

” That was Bruce’s response at a conference hosted by U.S. Increasing our offensive capabilities without being able to secure them is like having all the best guns in the world, and then storing them in an unlocked, unguarded armory. Military software is unlikely to be any more secure than commercial software.

Military 144

Military Cybersecurity Communications Manufacturing 144

IT Governance

FEBRUARY 6, 2024

Source 1 ; source 2 (New) Professional services USA Yes 11,556 Poder Judicial de Santa Cruz Source (New) Legal Argentina Yes 8,732 J.D.

Data Privacy 88

Data Privacy Privacy Insurance Security 88

ForAllSecure

NOVEMBER 13, 2020

In this episode, Stok talks about his beginnings in enterprise security and his transition into the top tier of bug bounty hunters. Vamosi: Like a lot of us, information security wasn’t necessarily our first line of work. But did you know there’s an elite group of bug bounty hunters that travel the world? and such.

Communications 40

Communications IT Security Mining 40

ForAllSecure

NOVEMBER 12, 2020

In this episode, Stok talks about his beginnings in enterprise security and his transition into the top tier of bug bounty hunters. Vamosi: Like a lot of us, information security wasn’t necessarily our first line of work. But did you know there’s an elite group of bug bounty hunters that travel the world? and such.

Communications 40

Communications IT Security Mining 40

ForAllSecure

NOVEMBER 12, 2020

In this episode, Stok talks about his beginnings in enterprise security and his transition into the top tier of bug bounty hunters. Vamosi: Like a lot of us, information security wasn’t necessarily our first line of work. But did you know there’s an elite group of bug bounty hunters that travel the world? and such.

Communications 40

Communications IT Security Mining 40

ForAllSecure

MAY 30, 2023

Mark Lance, the VP of DFIR and Threat intelligence for GuidePoint Security, provides The Hacker Mind with stories of ransomware cases he’s handled. One other thing: the Conti source code was also leaked, allowing security companies to create their own decryption services for anyone infected with the Conti ransomware.

Ransomware 40

Ransomware Encryption Authentication Communications 40

Security Affairs

NOVEMBER 25, 2020

Group-IB’s report Hi-Tech Crime Trends 2020/2021 examines various aspects of cybercrime industry operations and predicts changes to the threat landscape for various sectors, namely the financial industry, telecommunications, retail, manufacturing, and the energy sector. Group-IB: The ransomware plague cost the world over $1 billion.

Ransomware 130

Ransomware Phishing Sales Manufacturing 130