Krebs on Security

AUGUST 21, 2019

Passwords 216

Passwords 216

Data Breach Today

AUGUST 21, 2019

Reseachers Discover Attackers Cloned NordVPN Site Researchers at the security firm Doctor Web have uncovered a fake website for a VPN provider that's designed to spread a Trojan that can steal credentials to bank accounts.

Security 205

Security 205

AIIM

AUGUST 21, 2019

At the heart of any digital transformation journey is information. Information is the currency that fuels and funds innovation, process improvements, and organizational performance. As a result, an organization’s information is its most valuable asset; the common denominator in customer experience, business agility, operational excellence, and automation.

Digital transformation 103

Digital transformation Records Management Customer Experience Big data 103

Data Breach Today

AUGUST 21, 2019

White House Report: No 'Major' Breaches Reported; Incidents Down 12 Percent Federal government agencies experienced 12 percent fewer cyber incidents in 2018, when there were no "major" data breaches, according to a new White House report. But the report notes there's still plenty of risk mitigation work to be done.

Data breaches 170

Data breaches Risk Government 170

Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage

Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.

IT

Security Affairs

AUGUST 21, 2019

A security expert discovered that the popular movie ticket subscription service MoviePass has exposed thousands of customer card numbers and personal credit cards. The security expert Mossab Hussein from cybersecurity firm SpiderSilk , discovered that MoviePass exposed a database containing the credit card data on one of its subdomains. The archive was containing 161 million records and the amount of data continues to grow in real-time.

Archiving 93

Archiving Encryption Authentication Passwords 93

Threatpost

AUGUST 21, 2019

Backdoor was intentionally planted in 2018 and found during the DEF CON 2019 security conference when researchers stumbled upon malicious code.

Security 102

Security 102

Data Breach Today

AUGUST 21, 2019

Why One Bug-Hunting Expert Says Big Bounties May Actually Undermine Security Programs Progressive companies seeking to improve their security are increasingly adopting bug bounty programs. The theory is that rewarding outside researchers improves security outcomes. But in practice, bug bounty programs can be messy and actually create perverse incentives, says bug-hunting expert Katie Moussouris.

Security 149

Security 149

Schneier on Security

AUGUST 21, 2019

There's no indication that this vulnerability was ever used in the wild, but the code it was discovered in -- Microsoft's Text Services Framework -- has been around since Windows XP.

IT 90

IT 90

IT Governance

AUGUST 21, 2019

The GDPR (General Data Protection Regulation) hasn’t exactly crept up unnoticed over the past year or so, but it’s still caught many organisations by surprise. Some mistakenly thought that it would only affect large organisations, others doubted that the much-discussed massive fines would ever be issued, and a few thought that Brexit would save them from the EU regulation.

GDPR 86

GDPR Compliance Personal data Access 86

Advertisement

Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

Risk

Security Affairs

AUGUST 21, 2019

Researchers explained that carrying out attacks against the most used default Tor bridges would cost threat actors $17,000 per month. According to security researchers Rob Jansen from the U.S. Naval Research Laboratory, and Tavish Vaidya and Micah Sherr from Georgetown University, launching denial-of-service ( DoS ) attacks against most commonly used default Tor bridges would cost attackers $17,000 per month.

Paper 84

Paper Access Security IT 84

Data Matters

AUGUST 21, 2019

*This article was first published by Bloomberg Law in August 2019. Companies doing business with California consumers are impacted by the California Consumer Privacy Act (effective Jan. 1, 2020). The CCPA’s private right of action provision gives California residents the right to sue companies when their personal information is subject to unauthorized access and exfiltration, theft, or disclosure due to a company’s failure “to implement and maintain reasonable security procedures and

Data breaches 68

Data breaches Privacy Information Security Security 68

Security Affairs

AUGUST 21, 2019

A cybersecurity issue can cause unexpected costs in several different areas, which is the cost of Dealing with an attack in 4 Industries? A cybersecurity issue can cause unexpected costs in several different areas. In addition to the monetary costs associated with things like lost productivity and improving network security to reduce the likelihood of future incidents, affected companies have to deal with the costs tied to reduced customer trust and damaged reputations.

Cybersecurity 82

Cybersecurity Retail Manufacturing Data breaches 82

Threatpost

AUGUST 21, 2019

The personal email addresses - some indicating user names or government official status - of more than a million pornography website users were exposed.

Personal data 82

Personal data Government Privacy Security 82

Advertisement

Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.

Security

Dark Reading

AUGUST 21, 2019

Ransomware masquerading as game "cheats" is hitting Fortnite players. Fortunately, there are ways to recover without paying a ransom.

Ransomware 87

Ransomware 87

Threatpost

AUGUST 21, 2019

After Valve banned him from its bug bounty program, a researcher has found a second zero-day vulnerability affecting the Steam gaming client.

IT 85

IT 85

Dark Reading

AUGUST 21, 2019

While many infosec pros believe they're getting managed detection response (MDR) from their managed security service providers, that's not necessarily the case, according to Eldon Sprickerhoff, Founder and Chief Innovation Officer of eSentire. Adding machine learning to the mix helps automate MDR, strengthening an organization's security posture.

Security 69

Security 69

Threatpost

AUGUST 21, 2019

Security researchers worry that this weekend's coordinated attacks on more than 20 Texas governments mark a change in how ransomware attacks will be launched in the future.

Ransomware 68

Ransomware Government Security 68

Advertisement

“Reimagined: Building Products with Generative AI” is an extensive guide for integrating generative AI into product strategy and careers featuring over 150 real-world examples, 30 case studies, and 20+ frameworks, and endorsed by over 20 leading AI and product executives, inventors, entrepreneurs, and researchers.

Dark Reading

AUGUST 21, 2019

Thousands of customers' credit card numbers, MoviePass card numbers, and sensitive data were left in an unprotected database.

Personal data 83

Personal data 83

IT Governance

AUGUST 21, 2019

Last month, Life at Parliament View was fined £80,000 by the ICO (Information Commissioner’s Office) after security errors exposed 18,610 customers’ personal data for almost two years. The incident occurred when the London-based estate agency transferred personal data from its server to a partner organisation but failed to implement access controls.

Security 67

Security Access Personal data Authentication 67

Dark Reading

AUGUST 21, 2019

No major incidents mixed with continuing gaps in implementation paint an improving, but still muddy, picture of cybersecurity in the federal government.

Cybersecurity 74

Cybersecurity Government 74

Information Management Resources

AUGUST 21, 2019

As executives look to evolve, the common thread amongst these objectives is the critical importance of analyzing data – both structured and unstructured – to attaining lasting success.

Unstructured data 71

Unstructured data Digital transformation 71

Advertisement

If you’re considering migrating from DataStax Enterprise (DSE) to open source Apache Cassandra®, our comprehensive guide is tailored for architects, engineers, and IT directors. Whether you’re motivated by cost savings, avoiding vendor lock-in, or embracing the vibrant open-source community, Apache Cassandra offers robust value. Transition seamlessly to Instaclustr Managed Cassandra with our expert insights, ensuring zero downtime during migration.

IT

Dark Reading

AUGUST 21, 2019

Over the past year, the financial damage linked to the Russian-speaking threat group has spiked fivefold, Group-IP says.

83

83

Threatpost

AUGUST 21, 2019

Six bugs found in Cisco’s Unified Computing System gear and its 220 Series Smart switches can allow unauthenticated remote hackers to take over equipment.

IT 65

IT Security 65

Dark Reading

AUGUST 21, 2019

Small organizations still face a long list of security threats. These threats and vulnerabilities should be top of mind.

Risk 82

Risk Security 82

WIRED Threat Level

AUGUST 21, 2019

The Central Asian country’s government has repeatedly threatened to monitor its citizens’ internet activities. Google and Mozilla aren’t having it.

Government 58

Government IT Privacy Security 58

Advertisement

Are you trying to decide which entity resolution capabilities you need? It can be confusing to determine which features are most important for your project. And sometimes key features are overlooked. Get the Entity Resolution Evaluation Checklist to make sure you’ve thought of everything to make your project a success! The list was created by Senzing’s team of leading entity resolution experts, based on their real-world experience.

IT

Dark Reading

AUGUST 21, 2019

Engineering teams have only a certain amount of capacity. Cutting down the volume of rework inherent in the open source business model begins with three best practices.

67

67

Information Management Resources

AUGUST 21, 2019

In order to be a great data scientist and to land the job you want, you have to think about what your employer is looking for.

63

63

Dark Reading

AUGUST 21, 2019

Cancer research is a particular target among Chinese espionage groups, says security firm FireEye.

Security 89

Security 89