Definition, Information Security, Military and Security

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Security Affairs

SEPTEMBER 3, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Data breaches IoT

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

Only 3 definitely haven’t had data breached. Source (New) Transport USA Yes 3,815 Okta Source 1 ; source 2 (Update) Cyber security USA Yes 3,800 Shah Dixit & Associates, P.C. million for security failings relating to a 2018 cyber attack on its mobile banking platform. Organisation(s) Sector Location Data breached?

Data Privacy

Data Privacy Privacy Security Data breaches

Colorado Amends Data Breach Notification Law and Enacts Data Security Requirements

Hunton Privacy

JUNE 14, 2018

Notice to the Attorney General is required even if the covered entity maintains its own procedures for security breaches as part of an information security policy or pursuant to state or federal law.

Data breaches

Data breaches Security Passwords Military

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

The U.S. FCC considers Huawei and ZTE as national security threats

Security Affairs

JULY 1, 2020

Federal Communications Commission (FCC) announced that Chinese telecommunications giants Huawei and ZTE are considered as national security threats. regulators declared Huawei and ZTE to be national security threats. The FCC’s move definitively bans U.S. The FCC’s move definitively bans U.S. The post The U.S.

Communications

Communications Security Government Military

New Connecticut Breach Notification Requirements and Cybersecurity Safe Harbor Effective October 2021

Hunton Privacy

AUGUST 2, 2021

The newly passed laws modify Connecticut’s existing breach notification requirements and establish a safe harbor for businesses that create and maintain a written cybersecurity program that complies with applicable state or federal law or industry-recognized security frameworks. New Breach Notification Requirements (HB 5310).

Cybersecurity

Cybersecurity Insurance Military Data Privacy

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Data Matters

DECEMBER 9, 2021

The Proposed Rule would bring “connected software applications” into the scope of Commerce’s authority to review certain transactions involving information and communications technology and services (ICTS) in the U.S. national security. First, the Proposed Rule would add “connected software applications” to the definition of ICTS.

Communications

Communications Manufacturing Risk Data collection

Cyber is Cyber is Cyber

Lenny Zeltser

JUNE 2, 2018

Information security? Computer security, perhaps? If we examine the factors that influence our desire to use one security title over the other, we’ll better understand the nature of the industry and its driving forces. Paul Melson and Loren Dealy Mahler viewed cybersecurity as a subset of information security.

Computer and Electronics

Computer and Electronics Information Security Cybersecurity Communications

China Publishes Draft Measures for Security Assessments of Data Transfers

Hunton Privacy

APRIL 11, 2017

If an entity has a genuine need resulting from a business necessity to transmit critical data or personal information to a destination outside of China, it can do so provided it undergoes a “security assessment.”. The Draft provides further guidance on how the security assessments might be carried out.

Security

Security Cybersecurity Military Risk

Nine States Pass New And Expanded Data Breach Notification Laws

Data Protection Report

JUNE 27, 2019

Illinois, Maine, Maryland, Massachusetts, New Jersey, New York, Oregon, Texas, and Washington have all amended their breach notification laws to either expand their definitions of personal information, or to include new reporting requirements. Amendments to Maryland’s Personal Information Protection Act go into effect October 1, 2019.

Data breaches

Data breaches Passwords Privacy Military

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure

JULY 21, 2020

In the inaugural episode, The Hacker Mind looks at why the West Point Military Academy, and other organizations within the DoD, is training its young cadets to hack. Or maybe, just maybe back in 2014, West Point and other military service academies, are on to something really important. The military has these massive computer networks.

Military

Military Passwords Cybersecurity IT

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure

JULY 21, 2020

In the inaugural episode, The Hacker Mind looks at why the West Point Military Academy, and other organizations within the DoD, is training its young cadets to hack. Or maybe, just maybe back in 2014, West Point and other military service academies, are on to something really important. The military has these massive computer networks.

Military

Military Passwords Cybersecurity IT

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

I didn’t know either of them, but I have been writing about cryptography, security, and privacy for decades. It definitely had an effect on me. I tried to talk to Greenwald about his own operational security. I started doubting my own security procedures. Definitely. It made sense. It wasn’t there.

Computer and Electronics

Computer and Electronics Encryption Government Privacy

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure

JULY 21, 2020

In the inaugural episode, The Hacker Mind looks at why the West Point Military Academy, and other organizations within the DoD, is training its young cadets to hack. Or maybe, just maybe back in 2014, West Point and other military service academies, are on to something really important. The military has these massive computer networks.

Military

Military Passwords Cybersecurity IT

Amended Colorado Bill Aims to Enhance Data Privacy Laws

Data Protection Report

FEBRUARY 21, 2018

On Wednesday, February 14, 2018, an amended bill passed unanimously in Colorado’s House Committee on State, Veterans and Military Affairs. The amended bill further expands the definition of “personal information” to include student, military, or passport identification numbers.

Data Privacy

Data Privacy Privacy Military Insurance

Representative Mary Bono Mack Releases Discussion Draft of the SAFE Data Act

Hunton Privacy

JUNE 17, 2011

We should take steps to embrace and protect it – and that starts with robust cyber security.” She added that “consumers have a right to know when their personal information has been compromised, and companies and other organizations have an overriding responsibility to promptly alert them.”.

e-Discovery

e-Discovery Military Information Security Manufacturing

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

Security experts who reviewed the leaked data say they believe the information is legitimate, and that i-SOON works closely with China’s Ministry of State Security and the military. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Cybersecurity Sales Blockchain

The Hacker Mind: Hackers Wanted: Filling the Cybersecurity Skills Gap

ForAllSecure

APRIL 12, 2022

I guess the answer is what I usually say to a security question: It depends. Clearing you don’t want someone off the street coming in as a Level 2 security analyst. Then again, you might want someone --anyone -- to come in as a Level 1 security analyst so your current Level 1s can advance. Sometimes it was only 20.

Cybersecurity

Cybersecurity Military IT Security

The Hacker Mind Podcast: How To Become A 1337 Hacker

ForAllSecure

SEPTEMBER 14, 2022

Yeah, I think there's definitely a well-established Jeopardy style like flavor and style of capture the flag. Vamosi: So, not everyone is in a military academy. It bills itself as the most comprehensive student-run cyber security event in the world, featuring nine individual hacking competitions, including CTFs. So, I apologize.

Military

Military IT Education Cybersecurity

The evolutions of APT28 attacks

Security Affairs

DECEMBER 4, 2019

APT28 is a well known Russian cyber espionage group attributed, with a medium level of confidence, to Russian military intelligence agency GRU (by CrowdStrike). I am a computer security scientist with an intensive hacking background. I do have a MD in computer engineering and a PhD on computer security from University of Bologna.

Computer and Electronics

Computer and Electronics Libraries Security Military

The Hacker Mind Podcast: Hacking Communities

ForAllSecure

JULY 14, 2021

It was also designed under President Eisenhower to move military troops and vehicles from point A to point B, but that's another story. Jack is probably best known as one of the three co-founders of the popular BSides security conferences. Okay, besides that bringing Security Education approachable. Besides, I was born.

Mining

Mining IT Security Education

The Hacker Mind Podcast: Shall We Play A Game?

ForAllSecure

JANUARY 27, 2021

Vamosi: Today, John has taken his juvenile curiosity in breaking things down to become a security researcher with Huntress Labs. Hammond: As a security researcher, I am hierarchically in their Threat OPs department. Okay a few more definitions up front. So, that’s the military. Hey, how does my remote work.

Computer and Electronics

Computer and Electronics Military IT Education

The Hacker Mind Podcast: Shall We Play A Game?

ForAllSecure

JANUARY 27, 2021

Vamosi: Today, John has taken his juvenile curiosity in breaking things down to become a security researcher with Huntress Labs. Hammond: As a security researcher, I am hierarchically in their Threat OPs department. Okay a few more definitions up front. So, that’s the military. Hey, how does my remote work.

Computer and Electronics

Computer and Electronics Military IT Education

The Hacker Mind Podcast: Hacking Ransomware

ForAllSecure

MAY 18, 2021

He also talks about his infosec journey hacking cryptocurrencies, joining the Digital Defense Service and CISA, and helping secure the 2020 presidential election… all before the age of 22. Vamosi: That's Chris Krebs, former director of the Cybersecurity and Infrastructure Security Agency under the US Department of Homeland Security.

Ransomware

Ransomware Passwords Government Encryption

The Hacker Mind Podcast: Hacking Ransomware

ForAllSecure

MAY 18, 2021

He also talks about his infosec journey hacking cryptocurrencies, joining the Digital Defense Service and CISA, and helping secure the 2020 presidential election… all before the age of 22. Vamosi: That's Chris Krebs, former director of the Cybersecurity and Infrastructure Security Agency under the US Department of Homeland Security.

Ransomware

Ransomware Passwords Government Encryption

The Hacker Mind Podcast: Hacking Real World Criminals Online

ForAllSecure

MAY 2, 2023

While I produced this episode, a 21 year old Massachusetts National Guard airman is alleged to have photographed and distributed copies of classified US Military material on Discord, a social media site. But it definitely was a different time. of pleasure, or rage, where operational security levels are much lower.

IT

IT Sales Security Honeypots

EP 49: LoL

ForAllSecure

JUNE 21, 2022

Kyle Hanslovan CEO of Huntress Labs joins The Hacker Mind to discuss recent LoL attacks, specifically the Microsoft Follina attack and the Kaseya ransomware attack, and how important it is for small and medium sized businesses to start using enterprise grade security, given the evolving nature of these attacks. They'd be allowed, right?

Ransomware

Ransomware Marketing IT Libraries

The Hacker Mind Podcast: The Fog of Cyber War

ForAllSecure

JULY 6, 2022

I’m talking about cybercrime unicorns, talking the fog of cyberwar among nation states, and about a new book that I think will be on the shelves of every information security professional later this summer. Vamosi: The slogan of the RSA Conference is “Where the World Talks Security,” and, in general.

Ransomware

Ransomware Military Government Security

Information Management Today

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

Webinars

Trending Sources

Colorado Amends Data Breach Notification Law and Enacts Data Security Requirements

Webinars

The U.S. FCC considers Huawei and ZTE as national security threats

New Connecticut Breach Notification Requirements and Cybersecurity Safe Harbor Effective October 2021

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Cyber is Cyber is Cyber

China Publishes Draft Measures for Security Assessments of Data Transfers

Nine States Pass New And Expanded Data Breach Notification Laws

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure Launches The Hacker Mind Podcast

Snowden Ten Years Later

ForAllSecure Launches The Hacker Mind Podcast

Amended Colorado Bill Aims to Enhance Data Privacy Laws

Representative Mary Bono Mack Releases Discussion Draft of the SAFE Data Act

New Leak Shows Business Side of China’s APT Menace

The Hacker Mind: Hackers Wanted: Filling the Cybersecurity Skills Gap

The Hacker Mind Podcast: How To Become A 1337 Hacker

The evolutions of APT28 attacks

The Hacker Mind Podcast: Hacking Communities

The Hacker Mind Podcast: Shall We Play A Game?

The Hacker Mind Podcast: Shall We Play A Game?

The Hacker Mind Podcast: Hacking Ransomware

The Hacker Mind Podcast: Hacking Ransomware

The Hacker Mind Podcast: Hacking Real World Criminals Online

EP 49: LoL

The Hacker Mind Podcast: The Fog of Cyber War

Stay Connected