Data collection, Manufacturing and Security - Information Management Today

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Security Affairs

DECEMBER 12, 2023

The experts observed the use of NineRAT at around September 2023 against a European manufacturing entity. Lazarus APT is an umbrella for sub-groups, each of them has specific objectives in defense, politics, national security, and research and development. In March, the threat actors hit a South American agricultural organization.

Agriculture

Agriculture Data collection Access Manufacturing

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

The Last Watchdog

DECEMBER 6, 2018

And, in doing so, the IC has developed an effective set of data handling and cybersecurity best practices. Businesses at large would do well to model their data collection and security processes after what the IC refers to as the “intelligence cycle.” Related video: Using the NIST framework as a starting point.

Security

Security Financial Services Manufacturing Data collection

Critical Success Factors to Widespread Deployment of IoT

Thales Cloud Protection & Licensing

FEBRUARY 16, 2021

The root cause of these attacks is that the devices are lacking the security mechanisms to defend themselves against malicious actions that lead to the control of hijacked devices. The common denominator in IoT attacks is the assumption that these simple devices do not require strong security measures. Security mindset is changing.

IoT

IoT Manufacturing Energy and Utilities Encryption

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Australian Defense Department will replace surveillance cameras from Chinese firms Hikvision and Dahua

Security Affairs

FEBRUARY 12, 2023

An internal audit of surveillance equipment in Australian government and agency offices revealed the presence of more than 900 built systems manufactured by Chinese companies Hikvision and Dahua. The presence of cameras poses an unacceptable risk to national security. There is an issue here and we’re going to deal with it.”

Manufacturing

Manufacturing Government Risk Communications

Supply Chain Security 101: An Expert’s View

Krebs on Security

OCTOBER 12, 2018

alongside Tony Sager , senior vice president and chief evangelist at the Center for Internet Security and a former bug hunter at the U.S. National Security Agency. Tony Sager, senior vice president and chief evangelist at the Center for Internet Security. TS: Like a lot of things in security, the economics always win.

Security

Security Computer and Electronics IoT Cloud

IoT Unravelled Part 3: Security

Troy Hunt

NOVEMBER 25, 2020

Now for the big challenge - security. The "s" in IoT is for Security Ok, so the joke is a stupid oldie, but a hard truth lies within it: there have been some shocking instances of security lapses in IoT devices. But there are also some quick wins, especially in the realm of "using your common sense". Let's dive into it.

IoT

IoT Security Risk Cloud

LLM Summary of My Book Beyond Fear

Schneier on Security

SEPTEMBER 15, 2023

Claude’s reply: Here’s a brief summary of the key themes and arguments made in security expert Bruce Schneier’s book Beyond Fear: Thinking Sensibly About Security in an Uncertain World : Central Themes: Effective security requires realistic risk assessment, not fear-driven responses. Secrecy enables abuses.

Data collection

Data collection Risk Privacy Manufacturing

Businesses to Assist NHS Test and Trace Efforts

Hunton Privacy

JUNE 25, 2020

Establishments and companies in the UK will therefore be responsible for the additional collection and potential sharing of customers’ personal data. Any entity engaging in this kind of data collection will need to comply with the requirements of data protection law.

Data collection

Data collection Personal data Compliance Retail

Autonomous Vehicles – Canada’s Current Legal Framework: Cybersecurity Considerations (Part 2)

Data Protection Report

NOVEMBER 22, 2022

AV manufacturers will need to consider these risks and address them early in the design and development process of their products. cellular or Wi-Fi) that collect various types of information. The data collected by an AV may be transmitted to third-party systems for storage or processing (e.g., a cloud service provider).

Cybersecurity

Cybersecurity Manufacturing Risk Access

FTC Recaps Connected Cars Privacy and Security Workshop

Hunton Privacy

JANUARY 10, 2018

On January 9, 2018, the FTC issued a paper recapping the key takeaways from the FTC’s and National Highway Traffic Safety Administration’s June 2017 workshop on privacy and security issues involving connected cars. The types of data collected could include aggregate data, non-sensitive personal data and sensitive personal data.

Privacy

Privacy Personal data Manufacturing Security

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Data Matters

DECEMBER 9, 2021

2 Specifically, the interim final rule would be amended to include transactions that involve “software, software program[s], or a group of software programs, that [are] designed to be used on an end-point computing device and include[] as an integral functionality, the ability to collect, process, or transmit data via the internet.”

Communications

Communications Manufacturing Risk Data collection

Antlion APT group used a custom backdoor that allowed them to fly under the radar for months

Security Affairs

FEBRUARY 3, 2022

A China-linked APT group tracked as Antlion is using a custom backdoor called xPack in attacks aimed at financial organizations and manufacturing companies, Symantec researchers reported. ” xPack allowed threat actors to run WMI commands remotely and mount shares over SMB to transfer data from C2 servers to them.

Manufacturing

Manufacturing Data collection Encryption Passwords

Raspberry Robin operators are selling initial access to compromised enterprise networks to ransomware gangs

Security Affairs

OCTOBER 27, 2022

Data collected by Microsoft Defender for Endpoint shows that nearly 3,000 devices in almost 1,000 organizations have seen at least one RaspberryRobin payload-related alert in the last 30 days. DEV-0950 group used Clop ransomware to encrypt the network of organizations previously infected with the Raspberry Robin worm.

Ransomware

Ransomware Access Encryption Manufacturing

How to Prepare for the Metaverse

AIIM

MARCH 29, 2022

Retailers and brands will open virtual stores, launch virtual collections, or host exclusive digital events for their targeted NFT holders. Data architecture is probably the first to rank. Scalability will be tested to the maximum due to the extreme data collection and data processing requirements coming from metaverse scenarios.

Blockchain

Blockchain Manufacturing Retail Privacy

Smart manufacturing technology is transforming mass production

IBM Big Data Hub

JUNE 14, 2023

Smart manufacturing (SM)—the use of advanced, highly integrated technologies in manufacturing processes—is revolutionizing how companies operate. Smart manufacturing, as part of the digital transformation of Industry 4.0 , deploys a combination of emerging technologies and diagnostic tools (e.g.,

Manufacturing

Manufacturing Blockchain Analytics Artificial Intelligence

Building a foundation of trust for the Internet of Things

Thales Cloud Protection & Licensing

DECEMBER 13, 2018

But with great power comes great responsibility – if you can’t trust the data and the devices producing it, then why undertake the massive effort required to collect and analyse the data, or even worse, make business decisions based on it?

IoT

IoT Manufacturing Encryption Authentication

EUROPE: New privacy rules for connected vehicles in Europe?

DLA Piper Privacy Matters

MAY 5, 2020

Main takeaways from the EDBP guidelines are: Connected vehicles raise various privacy and data protection concerns, such as the lack of control and information asymmetry, the risk of excessive data collection; the risk of unlawful further processing of personal data; Most data associated with connected vehicles are considered as personal data (e.g.

Privacy

Privacy Personal data GDPR Insurance

USB drives are primary vector for destructive threats to industrial facilities

Security Affairs

NOVEMBER 5, 2018

Experts from Honeywell analyzed data collected with the Secure Media Exchange (SMX) , a product it has launched in 2017 and that was designed to protect industrial facilities from USB-borne threats. Security Affairs – industrial facilities, USB). Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

IoT

IoT Manufacturing Data collection Paper

MY TAKE: Apple users show strong support for Tim Cook’s privacy war against Mark Zuckerberger

The Last Watchdog

MARCH 8, 2021

I asked Elizabeth Rogers, a privacy and data security partner at the law firm of Michael Best & Friedrich , about this. It’s quite natural to listen and respect the view of the manufacturer that you are invested in. Who knows what consumer privacy in the U.S. will look two or five years from today? will see profits squeezed.

Privacy

Privacy Personal data Manufacturing Data Privacy

Android Apps containing Clicker Trojan installed on over 100M devices

Security Affairs

AUGUST 10, 2019

Data collected by the malware include manufacturer and model, OS version, country of residence of the user, the default language of the system, user agent identifier, name of mobile operator, type of internet connection, screen options, time zone, and information about the tainted application containing the Trojan. .

Manufacturing

Manufacturing Data collection IT Security

Driving Conversations Around Careers In Telematics

Information Governance Perspectives

APRIL 5, 2023

PRIVACY AND TELEMATICS Yet who owns the data collected by vehicular telematics technology, and who can access it? A car company could easily put a clause in their sales contract that says you agree to give up data ownership by signing this deal and financing through us. What kind of education might you need?

Insurance

Insurance Military Artificial Intelligence Manufacturing

FTC, privacy, and vendor due diligence—and opt-in consent

Data Protection Report

MAY 10, 2018

Federal Trade Commission (FTC) released for public comment an administrative complaint and proposed consent agreement with mobile phone manufacturer BLU Products Inc. In November of 2016, reports about the ADUPS collection and sharing of consumer information became public. and its owner and president. The Complaint.

Privacy

Privacy Manufacturing Compliance Retail

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

But another part involves fears about national security. There is definitely a national security risk in buying computer infrastructure from a country you don't trust. China dominates the subway car manufacturing industry because of its low prices -- the same reason it dominates the 5G hardware industry. Our enemies do it.

Government

Government Risk Manufacturing Data collection

China’s First Data Protection Measures Lifting Its Veils

HL Chronicle of Data Protection

JUNE 13, 2019

On May 28, 2019, the Cyberspace Administration of China (“ CAC “) released the draft Measures on the Administration of Data Security (“ Data Security Measures ” see our in-house English translation here ) for public consultation. The scope of application of the Data Security Measures.

Personal data

Personal data IT Data collection Compliance

The most valuable AI use cases for business

IBM Big Data Hub

FEBRUARY 14, 2024

Smart home devices such as the iRobot Roomba can navigate a home’s interior using computer vision and use data stored in memory to understand its progress. Clean up with predictive maintenance AI can be used for predictive maintenance by analyzing data directly from machinery to identify problems and flag required maintenance.

Artificial Intelligence

Artificial Intelligence Retail Unstructured data Insurance

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Security Affairs

NOVEMBER 16, 2018

Hong Kong, 16.11.2018 – Group-IB, an international company that specializes in preventing cyber attacks, presented the findings of its latest Hi-Tech Crime Trends 2018 report at the FinTech Security Conference in Hong Kong organized by Binary Solutions Limited in partnership with Group-IB. Pierluigi Paganini.

Phishing

Phishing Manufacturing Marketing Blockchain

Article 29 Working Party Opines on Mobile Apps

Hunton Privacy

MARCH 18, 2013

The Opinion identifies the key data protection risks associated with mobile apps and clarifies the legal framework and obligations applicable to the various parties involved in the development and distribution of mobile apps, including app stores, app developers, operating system and device manufacturers and advertisers.

Manufacturing

Manufacturing Personal data Privacy Data breaches

Article 29 Working Party Issues Opinion on Drones

Hunton Privacy

JULY 10, 2015

After identifying the privacy and data protection risks related to the use of drones and examining the applicability of EU Data Protection Directive 95/46/EC to drones, the Working Party provided recommendations for European and national legislators, manufacturers of drones and related equipment, and drone operators.

Personal data

Personal data Manufacturing Privacy Risk

FTC Releases Report on the Increased Use of Mobile Payments

Hunton Privacy

MARCH 12, 2013

Although the FTC recognizes the benefits of mobile payments, such as ease and convenience for consumers and potentially lower transaction costs for merchants, the Report notes three areas of concern with the mobile payments system: (1) dispute resolution, (2) data security and (3) privacy. Data Security.

Privacy

Privacy Data collection Manufacturing Paper

Spanish DPA Publishes Guide for Satisfying PbD Obligation

HL Chronicle of Data Protection

NOVEMBER 6, 2019

The AEPD Guide, summarized below, highlights PbD Foundational Principles (first defined by Ann Cavoukian ) and outlines practical steps for embedding them into GDPR compliance plans: Privacy and security goals. This relates to the GDPR principles of data minimisation, storage limitation, and integrity and confidentiality.

GDPR

GDPR Personal data Privacy Risk

Final California Consumer Privacy Act Amendments Bring Practical Changes (But Your Business May Now Be a California “Data Broker”)

Data Matters

SEPTEMBER 17, 2019

After months of wrangling, the California legislature has finally passed a set of significant amendments to the California Consumer Privacy Act (CCPA), a sweeping data privacy and security law commonly referred to as “California’s GDPR” (Europe’s General Data Protection Regulation). Miscellaneous Additions.

Privacy

Privacy B2B Sales Compliance

12 considerations when choosing MES software

IBM Big Data Hub

AUGUST 11, 2023

Manufacturing execution systems (MES) have grown in popularity across the manufacturing industry. If your manufacturing processes have become more intricate and challenging to manage manually, an MES can help streamline manufacturing operations management, increase efficiency and reduce errors.

Manufacturing

Manufacturing Compliance Healthcare Analytics

Navigating the Road Ahead: Auto Industry Stakeholders and Regulators Convene to Discuss Connected Vehicle Privacy

HL Chronicle of Data Protection

JANUARY 26, 2018

In terms of security, the panelists acknowledged areas of potential regulatory or enforcement overlap, but explained that the FTC generally focuses on data security, whereas DoT and NHTSA focus on cybersecurity, particularly as it relates to vehicle safety. Many Challenges and Questions Remain.

Privacy

Privacy Government Communications Manufacturing

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Hunton Privacy

OCTOBER 14, 2021

During the week of October 4, 2021, California Governor Gavin Newsom signed into law bills amending the California Privacy Rights Act of 2020 (“CPRA”), California’s data breach notification law and California’s data security law. Genetic Data: California Data Breach Notification and Data Security Law Amendment Bill.

Privacy

Privacy Insurance Security Data breaches

IoT Devices a Huge Risk to Enterprises

eSecurity Planet

JULY 22, 2021

According to a pair of recent reports from cloud security vendor Zscaler, cybercriminals picked up on this, with the result being a significant surge in malware attacks against these devices. IoT device security has also been the target of a broad federal effort in recent months. ” Most Devices Communicate in Plaintext.

IoT

IoT Risk Manufacturing Authentication

What will 2023 bring in the realms of cybersecurity and privacy?

Thales Cloud Protection & Licensing

JANUARY 4, 2023

Large-scale layoffs may impact security. Business security risk is significant and adds to reputational risk. In the Thales 2022 Data Threat Report 78% of respondents ranked accidental or human error in their top four threats posing the greatest security risks. Data sovereignty hits the road.

Privacy

Privacy Cybersecurity Cloud Ransomware

MY TAKE: SMBs can do much more to repel ransomware, dilute disinformation campaigns

The Last Watchdog

SEPTEMBER 20, 2019

Current attack trends add urgency, and catching up on doing basic security best practices isn’t enough. Eventually, governments will address the risk by beefing up security and purchasing cyber insurance, which go hand in glove. There are some big, unanswered questions about supply chain security surrounding voting machines.

Ransomware

Ransomware Government Retail Security

The Hacker Mind Podcast: The Internet As A Pen Test

ForAllSecure

MAY 17, 2023

A lot of SMBs do not have security operations centers or SOCs. They have IT contractors who can provision laptops and maintain a certain level of compliance and security. They can provide that additional security, remotely. They have those security capabilities. In a way and then you consume the outcomes.

Insurance

Insurance Privacy Ransomware GDPR

How Jabil is building better, faster enterprise reporting

IBM Big Data Hub

NOVEMBER 30, 2022

Jabil isn’t just a manufacturer, they are experts on global supply chain, logistics, automation, product design and engineering solutions. They are also interested in and invest heavily into the holistic application of emerging technologies like additive manufacturing, autonomous technologies, and artificial intelligence.

Analytics

Analytics Artificial Intelligence Manufacturing Data collection

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

IT Governance

APRIL 29, 2024

Data breached: 4,186,879,104 messages. Keyboard app vulnerabilities reveal keystrokes to network eavesdroppers Security researchers have identified critical security vulnerabilities in Cloud-based pinyin keyboard apps from Baidu, Inc., Honor, Huawei, iFlytek, OPPO, Samsung Electronics, Tencent, Vivo and Xiaomi Technology.

Data Privacy

Data Privacy Privacy Manufacturing Security

Scale access to trusted, quality data in the Snowflake Data Cloud with Collibra

Collibra

AUGUST 26, 2021

Clients use Snowflake when they are looking for an agile, scalable platform to aggregate, store and analyze data collected from across their data silos. Sharing data using traditional ETL pipelines and integrations, even within the bounds of an organization, is not straightforward. Secure data sharing.

Cloud

Cloud Access Metadata Compliance

FTC Announces Settlement Regarding Collecting Consumer TV Viewing Data

Hunton Privacy

FEBRUARY 7, 2017

implement a comprehensive data privacy program and biennial assessments of that program. implement a comprehensive data privacy program and biennial assessments of that program. The stipulated federal court order requires VIZIO to pay $2.2 million to the FTC and New Jersey Division of Consumer Affairs. .

Data collection

Data collection Manufacturing Data Privacy Education

Best Fraud Management Systems & Detection Tools in 2022

eSecurity Planet

SEPTEMBER 16, 2022

In its 2021 Threat Force Intelligence Index , IBM reported that manufacturing and financial services were the two industries most at risk for attack, making up 23.2% As the volume of data collected increases, users may experience slower processing times than they expect. Looking for more ways to protect your company’s data?

Analytics

Analytics Risk Authentication Financial Services

The Internet of Things (IoT): Managing the Data Tsunami

Collibra

APRIL 3, 2019

The way that organisations utilise IoT data will therefore vary significantly. Some might see the data as an opportunity to optimise their operations. Other organisations could see data gathered by IoT devices become an integral part of their product/service offering. Privacy concerns: more data, more problems?

IoT

IoT Agriculture Digital transformation Energy and Utilities

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

Webinars

Trending Sources

Critical Success Factors to Widespread Deployment of IoT

Webinars

Australian Defense Department will replace surveillance cameras from Chinese firms Hikvision and Dahua

Supply Chain Security 101: An Expert’s View

IoT Unravelled Part 3: Security

LLM Summary of My Book Beyond Fear

Businesses to Assist NHS Test and Trace Efforts

Autonomous Vehicles – Canada’s Current Legal Framework: Cybersecurity Considerations (Part 2)

FTC Recaps Connected Cars Privacy and Security Workshop

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Antlion APT group used a custom backdoor that allowed them to fly under the radar for months

Raspberry Robin operators are selling initial access to compromised enterprise networks to ransomware gangs

How to Prepare for the Metaverse

Smart manufacturing technology is transforming mass production

Building a foundation of trust for the Internet of Things

EUROPE: New privacy rules for connected vehicles in Europe?

USB drives are primary vector for destructive threats to industrial facilities

MY TAKE: Apple users show strong support for Tim Cook’s privacy war against Mark Zuckerberger

Android Apps containing Clicker Trojan installed on over 100M devices

Driving Conversations Around Careers In Telematics

FTC, privacy, and vendor due diligence—and opt-in consent

On Chinese "Spy Trains"

China’s First Data Protection Measures Lifting Its Veils

The most valuable AI use cases for business

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Article 29 Working Party Opines on Mobile Apps

Article 29 Working Party Issues Opinion on Drones

FTC Releases Report on the Increased Use of Mobile Payments

Spanish DPA Publishes Guide for Satisfying PbD Obligation

Final California Consumer Privacy Act Amendments Bring Practical Changes (But Your Business May Now Be a California “Data Broker”)

12 considerations when choosing MES software

Navigating the Road Ahead: Auto Industry Stakeholders and Regulators Convene to Discuss Connected Vehicle Privacy

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

IoT Devices a Huge Risk to Enterprises

What will 2023 bring in the realms of cybersecurity and privacy?

MY TAKE: SMBs can do much more to repel ransomware, dilute disinformation campaigns

The Hacker Mind Podcast: The Internet As A Pen Test

How Jabil is building better, faster enterprise reporting

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

Scale access to trusted, quality data in the Snowflake Data Cloud with Collibra

FTC Announces Settlement Regarding Collecting Consumer TV Viewing Data

Best Fraud Management Systems & Detection Tools in 2022

The Internet of Things (IoT): Managing the Data Tsunami

Stay Connected