2017, Document, Government, Presentation and Security

China-linked APT Sharp Panda targets government entities in Southeast Asia

Security Affairs

MARCH 8, 2023

China-linked APT group Sharp Panda targets high-profile government entities in Southeast Asia with the Soul modular framework. CheckPoint researchers observed in late 2022, a campaign attributed to the China-linked APT group Sharp Panda that is targeting a high-profile government entity in the Southeast Asia.

Government

Government Communications Phishing IT

MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry

Security Affairs

OCTOBER 17, 2018

Yoroi security firm uncovered a targeted attack against one of the most important companies in the Italian Naval Industry leveraging MartyMcFly Malware. The victim was one of the most important leaders in the field of security and defensive military grade Naval ecosystem in Italy. Opening up The Excel File it gets infected.

Computer and Electronics

Computer and Electronics Encryption Military Security

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

2 Because First American’s violations included the exposure of millions of documents containing nonpublic information (NPI), the total penalty potentially could be substantial. Public access to these documents was caused by an application software vulnerability that was initially introduced in May 2014. e) and 500.01(g),

Financial Services

Financial Services Cybersecurity Insurance Risk

Weekly podcast: Exactis, BetVictor, Ticketmaster, and GDPR complaints

IT Governance

JUNE 29, 2018

Hello and welcome to the IT Governance podcast for Friday, 29 June 2018. According to Wired.com , the security researcher Vinny Troia discovered the database earlier this month via Shodan – the search engine that indexes Internet-connected devices such as servers and routers. Here are this week’s stories.

GDPR

GDPR Passwords Data breaches Access

Ransomware Protection in 2021

eSecurity Planet

FEBRUARY 16, 2021

The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. Raising awareness about ransomware is a baseline security measure. As training sessions have little influence over staff for every potential attack, it makes added security more imperative.

Ransomware

Ransomware Encryption Insurance Cloud

2019 end-of-year review part 1: January to June

IT Governance

DECEMBER 27, 2019

A royal baby, a fire at Notre-Dame, the highest grossing film of all time and more than 12 billion breached data records: 2019 has been quite a year. IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Part one covers January to June, and will be followed by part in the coming days.

Data breaches

Data breaches GDPR Passwords Personal data

FTC Hosts Workshop on Informational Injury

Hunton Privacy

DECEMBER 15, 2017

On December 12, 2017, the Federal Trade Commission hosted a workshop on informational injury in Washington, D.C. Consideration was given to whether the same factors apply in both the privacy and security contexts, the risk of potential injury versus realized injury and when government intervention is warranted.

Privacy

Privacy Retail Risk Insurance

GDPR – The Year in Review

HL Chronicle of Data Protection

MAY 29, 2019

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared summaries of key GDPR-related developments of the past 12 months. The summaries cover regulatory guidance, enforcement actions, court proceedings, and various reports and materials.

GDPR

GDPR Personal data Privacy Information architecture

Records Inventory 101:

ARMA International

APRIL 11, 2022

It is a list of each series or system rather than a list of each document or folder. An inventory of an agency’s documents is required as part of a successful records management program, as is the identification of present retention schedules or the design of new retention schedules for those records.

Records Management

Records Management Archiving Government IT

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

4 The Federal Rules of Civil Procedure have begun — since their inception — with a guiding command for courts to seek “to secure the just, speedy, and inexpensive determination of every action and proceeding.”5 12 In other words, the 1983 amendment was seen as limiting the depth rather than the breadth of discovery.13.

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

Wednesday LTNY 2018 Sessions: eDiscovery Trends

eDiscovery Daily

JANUARY 30, 2018

be interviewing several industry thought leaders to see what they think are the significant trends for 2017 and, which of those are evident at LTNY. 11:00 AM – 12:00 PM: The Role of Artificial Intelligence in Legal and Business Processes and How to Defend Its Use. Charting a Path to Secure, Seamless Enterprise Discovery.

e-Discovery

e-Discovery Artificial Intelligence GDPR Education

CyberheistNews Vol 13 #19 [Watch Your Back] New Fake Chrome Update Error Attack Targets Your Users

KnowBe4

MAY 9, 2023

New school security awareness training can help any organization sustain that line of defense and create a strong security culture. Blog post with links: [link] A Master Class on IT Security: Roger A. And this enormous security gap leaves you open to business email compromise, session hijacking, ransomware and more.

Phishing

Phishing Passwords Insurance Systems administration

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

The CyberWire Daily podcast delivers the day's cyber security news into a concise format. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. It's time to build your security the same way.

Cloud

Cloud Energy and Utilities Security Access

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

Banks must still be allowed to process data to prevent fraud; regulators must still be allowed to process data to investigate malpractice and corruption; sports governing bodies must be allowed to process data to keep the cheats out; and journalists must still be able to investigate scandal and malpractice. change it substantially.

GDPR

GDPR Personal data Government IT

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

The CyberWire Daily podcast delivers the day's cyber security news into a concise format. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. It's time to build your security the same way.

Cloud

Cloud Energy and Utilities Security Access

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

ForAllSecure

AUGUST 14, 2019

The CyberWire Daily podcast delivers the day's cyber security news into a concise format. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. It's time to build your security the same way.

Cloud

Cloud Energy and Utilities Security Access

Regulatory Update: NAIC Spring 2019 National Meeting

Data Matters

MAY 9, 2019

state regulators risk federal preemption of state law unless they adopt such reinsurance collateral reforms within 60 months from September 2017 – the date the Covered Agreement with the European Union (EU) was signed. Securities and Exchange Commission’s expected adoption of “Regulation Best Interest” in September 2019.

Insurance

Insurance Blockchain Big data Risk

Extended Validation Certificates are Dead

Troy Hunt

SEPTEMBER 17, 2018

pic.twitter.com/IYf2Km4LkD — Troy Hunt (@troyhunt) July 14, 2017. Despite this, Comodo suggests there's value in EV because of the "bigger security display": The larger security indicator makes it very clear to the user that the website is secure. Here are the world's 10 largest sites: no EV!

Marketing

Marketing Phishing Encryption IT

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

Luckily for cybersecurity startups, there’s no shortage of interest in tomorrow’s next big security vendors. Investments in cybersecurity more than doubled from $12 billion to $29.5 How to Land a Round of Funding Securing Data and Infrastructure is Hot. How Do VC Firms Work? Top Cybersecurity Venture Capital Firms.

Cybersecurity

Cybersecurity Cloud Marketing Security

Information Management Today

China-linked APT Sharp Panda targets government entities in Southeast Asia

MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry

Trending Sources

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Weekly podcast: Exactis, BetVictor, Ticketmaster, and GDPR complaints

Ransomware Protection in 2021

2019 end-of-year review part 1: January to June

FTC Hosts Workshop on Informational Injury

GDPR – The Year in Review

Records Inventory 101:

The Burden of Privacy In Discovery

Wednesday LTNY 2018 Sessions: eDiscovery Trends

CyberheistNews Vol 13 #19 [Watch Your Back] New Fake Chrome Update Error Attack Targets Your Users

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

The debate on the Data Protection Bill in the House of Lords

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

Regulatory Update: NAIC Spring 2019 National Meeting

Extended Validation Certificates are Dead

Top VC Firms in Cybersecurity of 2022

Stay Connected