Data, Information Security and Security - Information Management Today

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

Security Affairs

DECEMBER 28, 2023

Leaksmas: On Christmas Eve, multiple threat actors released substantial data leaks, Resecurity experts reported. On Christmas Eve, Resecurity protecting Fortune 100 and government agencies globally, observed multiple actors on the Dark Web releasing substantial data leaks. Instead, they marked the holiday season in their unique way.

Data breaches

Data breaches Personal data Government IT

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. A new round of the weekly SecurityAffairs newsletter arrived!

Military

Military Security Ransomware Insurance

Experts warn of a new wave of Bumblebee malware attacks

Security Affairs

OCTOBER 22, 2024

Bumblebee has been active since March 2022 when it was spotted by Google’s Threat Analysis Group (TAG), experts noticed that cybercriminal groups that were previously using the BazaLoader and IcedID as part of their malware campaigns switched to the Bumblebee loader.

File names

File names Phishing Ransomware Archiving

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

The researchers from Google TAG are warning of Russia-linked threat actors targeting Ukraine with phishing campaigns. Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG).

Phishing

Phishing Military Ransomware Education

Shadowserver reported that +15K Citrix servers are likely vulnerable to attacks exploiting the flaw CVE-2023-3519

Security Affairs

JULY 23, 2023

Cybersecurity and Infrastructure Security Agency (CISA) this week warned of cyber attacks against Citrix NetScaler Application Delivery Controller (ADC) and Gateway devices exploiting recently discovered zero-day CVE-2023-3519. Most of the servers are located in the United States and Germany.

Cybersecurity

Cybersecurity Cloud Encryption Passwords

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Data breaches Cybersecurity

SBOMs: Securing the Software Supply Chain

eSecurity Planet

OCTOBER 26, 2021

This article looks at software bills of materials, file data, existing standards, benefits, use cases, and what SBOMs mean for cybersecurity. The SBOM framework is about the units of software identified by developers and suppliers known as components and associated data known as attributes. What’s in a SBOM File?

Security

Security Risk Compliance Cybersecurity

Zeppelin ransomware gang is back after a temporary pause

Security Affairs

MAY 24, 2021

Unlike other ransomware, Zeppelin operators do not steal data from the victims and don’t run a leak site. The new variant was involved in attacks aimed at technology and healthcare companies across Europe, the United States, and Canada. ” reported BleepingComputer. Follow me on Twitter: @securityaffairs and Facebook.

Ransomware

Ransomware Encryption Sales Security

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Security Affairs

JUNE 6, 2022

The actors are positioning themselves as an elite cyber offensive group targeting NATO infrastructure and performing cyberespionage to steal sensitive data. The responsibility of the new division includes “cyber sabotage”, disruption of Internet resources, data theft and financial intelligence focused on NATO, their members and allies.

Government

Government Cybersecurity IoT Security

Guest Post -- GDPR Compliance starts with Data Discovery

AIIM

NOVEMBER 16, 2017

You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. Compliance starts with data discovery. What Do the GDPR and new Privacy Laws Mean for U.S.

GDPR

GDPR Compliance Privacy Paper

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

Welcome to the hacker mind and original podcast from for all secure, it's about challenging our expectations about the people who hack for a living. I've got a lot of industry certifications, but having all those paper degrees proved to be a poor equivalent to having actual hands on experience in information security.

Cybersecurity

Cybersecurity Information Security IT Security

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

Welcome to the hacker mind and original podcast from for all secure, it's about challenging our expectations about the people who hack for a living. I've got a lot of industry certifications, but having all those paper degrees proved to be a poor equivalent to having actual hands on experience in information security.

Cybersecurity

Cybersecurity Information Security IT Security

The Hacker Mind Podcast: Reverse Engineering Smart Meters

ForAllSecure

MAY 13, 2022

For example, in 2009, the Obama administration provided financial incentives to utilities in the United States. It's estimated that within the first year, over half the homes in the United States had spark meters installed. And on the other hand, we're saying security, that's a secondary concern. I'm Robert Vamosi.

Energy and Utilities

Energy and Utilities Computer and Electronics IT Security

Predator spyware operation is back with a new infrastructure

Security Affairs

SEPTEMBER 9, 2024

The Department of the Treasury warns that the proliferation of commercial spyware poses growing risks to the United States. Predator spyware is known for its extensive data-stealing and surveillance capabilities. The surveillance software was also used to spy on U.S. government officials, journalists, and policy experts.

Government

Government Risk Marketing Ransomware

Google disrupted hacking campaigns carried out by Iran-linked APT42

Security Affairs

AUGUST 15, 2024

In May and June, nation-state actors targeted former US government officials and individuals associated with the election campaigns of President Biden and former President Trump. Presidential election cycle, TAG detected and disrupted a small but steady cadence of APT42’s Cluster C credential phishing activity.

Phishing

Phishing Passwords Authentication Government

Information Management Today

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Webinars

Trending Sources

Experts warn of a new wave of Bumblebee malware attacks

Webinars

Google TAG warns of Russia-linked APT groups targeting Ukraine

Shadowserver reported that +15K Citrix servers are likely vulnerable to attacks exploiting the flaw CVE-2023-3519

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

SBOMs: Securing the Software Supply Chain

Zeppelin ransomware gang is back after a temporary pause

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Guest Post -- GDPR Compliance starts with Data Discovery

The Hacker Mind Podcast: Hacking Diversity

The Hacker Mind Podcast: Hacking Diversity

The Hacker Mind Podcast: Reverse Engineering Smart Meters

Predator spyware operation is back with a new infrastructure

Google disrupted hacking campaigns carried out by Iran-linked APT42

Stay Connected