Sun.Mar 24, 2019

article thumbnail

Federal Emergency Management Agency’s (FEMA) data leak exposes data of 2.3M survivors

Security Affairs

The Federal Emergency Management Agency’s (FEMA) has disclosed a data leak that exposed banking details and other personal information of 2.3 million survivors. In case of national disasters, the Federal Emergency Management Agency’s (FEMA) offers a program called Transitional Sheltering Assistance (TSA) that provides shelter to survivors. . News of the day is that FEMA has admitted a data leak that exposed banking details and other personal information of 2.3 million survivors.

article thumbnail

About Half of Surveyed Companies Haven’t Started Preparing for CCPA: Data Privacy Trends

eDiscovery Daily

Does this sound familiar? Last week at the University of Florida E-Discovery Conference , I talked about the California Consumer Protection Act (CCPA) as one of the things that organizations need to be prepared to address these days as part of their compliance obligations. Sounds like a lot of organizations haven’t gotten around to that just yet. In an article in Legaltech® News ( Almost Half of Companies Haven’t Started CCPA Compliance: Survey , written by Frank Ready), a recent survey

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

WordPress Social Warfare plugin zero-day exploited in attacks

Security Affairs

A Cross-Site Scripting (XSS) vulnerability in Social Warfare installations (v3.5.1 and v3.5.2) is actively exploited to add malicious redirects. The vulnerability in the WordPress plugin has been fixed with the release of the 3.5.3 version of the plugin. PSA: The #WordPress plugin Social Warfare contains an unpatched zero-day flaw which is under active attack in the wild.

article thumbnail

Regions AI tool helps steer cross-selling

Information Management Resources

The Alabama bank’s artificial intelligence system ROSIE pulls information from hundreds of data sources to help employees suggest the best new product or service to offer a customer. It’s a good example of a regional trying to balance competitive pressures and cost control.

article thumbnail

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage

Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.

article thumbnail

Malware Static Analysis

Security Affairs

Malware researcher and founder of Yoroi Marco Ramilli shared a simple tool for malware static analysis he used to perform massive Malware analysis research. The following interface stands in front of a live engine which takes binary files and runs them against a plethora of hundreds of YARA rules. Some of them are publicly available online many others are my own.

More Trending

article thumbnail

Microsoft Defender APT now protects also macOS

Security Affairs

Microsoft has announced the availability of Defender ATP Endpoint Security for Apple macOS. Microsoft has announced the availability of Microsoft 365 advanced endpoint security solution across platforms, with the support of Apple Mac it added to Microsoft Defender Advanced Threat Protection (ATP). Microsoft Windows Defender ATP was first introduced in 2016 as a defensive solution for Windows 10, now the tech giant introduced a version for Apple Mac and changed its name to Microsoft Defender Adva

Cloud 78
article thumbnail

Face the music

InfoGovNuggets

“Publishers Sue Peloton for Use of Songs From Drake, Lady Gaga,” The Wall Street Journal , March 20, 2019. Allegedly, only some songs properly licensed. Oops. You try to comply with the law in getting licenses from the right people, but fail. So you use their information improperly and face a suit for $150 million, right before your IPO.

article thumbnail

Security Affairs newsletter Round 206 – News of the week

Security Affairs

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition. Paper Copy. Once again thank you! Experts uncovered a malspam campaign using Boeing 737 Max crashes. gnosticplayers offers 26 Million new accounts for sale on the Dark Web. Massive attacks bypass MFA on Office 365 and G Suite accounts via IMAP Protocol.

article thumbnail

Platform rules

InfoGovNuggets

If you have a content platform, do you need to play nice(r) with the competition? “Google Fined $1.7 Billion in EU for Restricting Rivals’ Ads,” The Wall Street Journal , March 21, 2019. More money for prior practices affecting “the niche market of selling text ads on search results that appear on third-party websites.” Paid $1.6 billion, while defending legality of practices.

article thumbnail

How and Why Should You Be Tracking Geopolitical Risk?

Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

article thumbnail

Mueller Says No Collusion, Barr Raises a Million Questions

WIRED Threat Level

In a convoluted letter to Congress, Attorney General William Barr summarized Robert Mueller's report on the Russia investigation and said he won't charge President Trump with obstruction.

article thumbnail

Oops. Again.

InfoGovNuggets

Another privacy breach at Facebook. “Hundreds of Millions of User Passwords Exposed to Facebook Employees,” The Wall Street Journal , March 22, 2019. Apparently, the passwords were only exposed to Facebook employees. Do you use the same password on multiple sites? Not a good Governance procedure to protect your information on the various sites.

article thumbnail

For cause

InfoGovNuggets

“Samsung Probed U.S. Marketing Operation Over Dealings With Business Partners,” The Wall Street Journal , March 22, 2019. Looks like people were playing fast and loose with expense reporting policies and the like. Some employees “were let go for cause and without severance following the audit.” This is a bit of a departure for this blog of late; I haven’t focused so much on pure compliance issues.

article thumbnail

Labels, for $1

InfoGovNuggets

“The Secret to Winning Votes: Take the Name of a Popular Leader,” The Wall Street Journal , March 23, 2019. Candidates change their names to that of a former leader. Your name is, in a sense, Information, akin to the brand of a product. Are there rules about changing your name with the intent to deceive people? In Thailand, apparently not.

article thumbnail

7 Pitfalls for Apache Cassandra in Production

Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.

article thumbnail

Speaking untruth to power

InfoGovNuggets

The beat goes on. “Prosecutors in 737 MAX Probe Focus on Boeing Disclosures to Regulators, Customers,” The Wall Street Journal , March 23, 2019. Did Boeing mislead customers or regulators? If you are in a regulated business, be careful what you say and what you don’t say to regulators. Speaking untruth to power is ill-advised. What controls do you have in place to make sure that what you say to regulators is the truth, the whole truth, and nothing but the truth?

article thumbnail

Government by accident

InfoGovNuggets

“FEMA Officials Accidentally Released Private Data From 2.3 Million Disaster Victims,” The Wall Street Journal , March 23, 2019. Agency shared unnecessary personal information with a contractor. Once you have someone’s private data, what controls do you have on using it, storing it, or transferring it to someone else? Those are steps you take in protecting those peoples’ data.

article thumbnail

Dealing with the dark side

InfoGovNuggets

“Most Bitcoin Trading Faked by Unregulated Exchanges, Study Finds,” The Wall Street Journal , March 23, 2019. More than 90% of reported trading in cryptocurrencies was fraudulent, study finds. “Of the roughly $6 billion in reported daily volume during four days in March, the firm calculated that about $273 million was legitimate.” When do you suspect that the information your are being given isn’t true?

article thumbnail

How to limit the damage

InfoGovNuggets

“Why I Put My Dog’s Photo on Social Media, but Not My Son’s,” The Wall Street Journal , March 13, 2019. People use your pictures of your child. Who owns the picture of your little Johnnie or Suzy? Is it you? If you post a picture or other information on Facebook or Instagram, can someone else appropriate it? What about Johnnie or Suzy when the get older – who do they sue for misuse?

article thumbnail

Reimagined: Building Products with Generative AI

“Reimagined: Building Products with Generative AI” is an extensive guide for integrating generative AI into product strategy and careers featuring over 150 real-world examples, 30 case studies, and 20+ frameworks, and endorsed by over 20 leading AI and product executives, inventors, entrepreneurs, and researchers.

article thumbnail

Misleading investors

InfoGovNuggets

“Lumber Liquidators Settles Federal Probes Into Laminate-Flooring Claims,” The Wall Street Journal , March 13, 2019. Total fines paid, plus damages, nearly $100 million. There’s a word for saying something that isn’t true. Like how much testing your vendors do, after 60 Minutes airs an episode. Does Management consider the implications of these “untruths” (Information given to the market)?

article thumbnail

TMI

InfoGovNuggets

“When Corporate America Joins In the Podcast Craze, ‘It Gets Boring Fast’,” The Wall Street Journal , March 14, 2019. Can you communicate with your employees too much? A different side of Governance is whether you need to avoid employee-communication overload. Certainly they need some of this Information, and some of it multiple times.

article thumbnail

Records matter

InfoGovNuggets

“Former Mt. Gox Bitcoin Bigwig Unlikely to Do More Jail Time After Beating Embezzlement Charges,” The Wall Street Journal , March 15, 2019. The former head of the largest bitcoin exchange was found guilty of creating false records, but acquitted of embezzlement and breach of trust. Seldom do stories in the WSJ turn on a “records” violation, such as not keeping a document as long as the law requires.

article thumbnail

Sleeves out of my vest

InfoGovNuggets

“China Aims to Placate U.S. With Law Banning Theft of Foreign Trade Secrets,” The Wall Street Journal , March 15, 2019. Part of trade negotiations. What does it say when your trade partner agrees to stop stealing your property? Seems like offering the sleeves out of your vest in return for something tangible. Certainly Information. And Governance (the passing of the law will be one control).

article thumbnail

How to Migrate From DataStax Enterprise to Instaclustr Managed Apache Cassandra

If you’re considering migrating from DataStax Enterprise (DSE) to open source Apache Cassandra®, our comprehensive guide is tailored for architects, engineers, and IT directors. Whether you’re motivated by cost savings, avoiding vendor lock-in, or embracing the vibrant open-source community, Apache Cassandra offers robust value. Transition seamlessly to Instaclustr Managed Cassandra with our expert insights, ensuring zero downtime during migration.

article thumbnail

Trust but verify

InfoGovNuggets

“The Aerospace Newcomer Whose Data Helped Make the Difference on Grounding the 737 MAX,” The Wall Street Journal , March 15, 2019. Company collects real-time data about the operations of planes in flight for use by air traffic controllers. FAA uses that data to make (delayed) call to ground Boeing jets. One can rely on the regulated industry to provide data, such as that in the black boxes and cockpit voice recorders.

article thumbnail

Delete

InfoGovNuggets

Once you get information, how do you get rid of it? “Facebook, YouTube, Twitter Scramble to Remove Video of New Zealand Mosque Shooting,” The Wall Street Journal , March 16, 2019. Platforms work to remove video of massacre. As the owner of a platform, you have some control over what Information gets published there. So you exercise Governance by establishing controls, and make sure people comply.

article thumbnail

The horse ain’t dead yet

InfoGovNuggets

“SEC Charges Volkswagen With Defrauding U.S. Bond Investors,” The Wall Street Journal , March 16, 2019. Did the company’s senior executives delay reporting the discover of the fraud in the emissions-testing scandal? As the company was issuing bonds during this period, were the bond purchasers defrauded? Allegations: Information not disclosed, in violation of stock laws in the US.

IT 28
article thumbnail

What do you do now?

InfoGovNuggets

“On Campus, the Fallout From the College Admissions Scandal,” The Wall Street Journal , March 16, 2019. If the “donations” were bribes, what happens to your tax exemption? This scandal will occupy the collective consciousness for some time to come. It has all the elements – money, Hollywood, fat cats doing wrong, overbearing parents, class distinctions, and reputations besmirched.

article thumbnail

Entity Resolution Checklist: What to Consider When Evaluating Options

Are you trying to decide which entity resolution capabilities you need? It can be confusing to determine which features are most important for your project. And sometimes key features are overlooked. Get the Entity Resolution Evaluation Checklist to make sure you’ve thought of everything to make your project a success! The list was created by Senzing’s team of leading entity resolution experts, based on their real-world experience.

article thumbnail

The new Press

InfoGovNuggets

Is social media as important as the New York Times and network news? “Did Twitter Help Ground the Boeing 737 MAX?,” The Wall Street Journal , March 16, 2019. What impact did public reaction to the Boeing crashes have on Boeing and the FAA” The blog often points out how little control you have over your information once you post it on Facebook or similar platforms.

article thumbnail

Repeat, sort of

InfoGovNuggets

“House Democrats Probe White House Officials’ Email Use,” The Wall Street Journal , March 22, 2019. Did they use personal email accounts for government business? One of the tricky things about Compliance is if you have a well-publicized case of another executive doing something that looks to be against the rules and he or she is not punished, it’s hard to enforce those restrictions against the next alleged violator.