Security Affairs

JUNE 12, 2024

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Mali GPU Kernel Driver, PHP bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. CVE-2024-4610 ARM Mali GPU Kernel Driver Use-After-Free Vulnerability CVE-2024-4577 PHP-CGI OS Command Injection Vulnerability The vulnerability CVE-2024-4610 is a use-after-free issue issue that

IT 341

IT Cybersecurity Access Risk 341

Data Breach Today

JUNE 12, 2024

An Interview with Gigamon's Chief Security Officer, Chaim Mazal Chief Information Security Officers (CISOs) face unprecedented challenges in their efforts to protect their organizations against a rising tide of increasingly sophisticated cyberthreats.

Cloud 319

Cloud Cybersecurity Information Security Security 319

WIRED Threat Level

JUNE 12, 2024

Cybersecurity firm Recorded Future counted 44 health-care-related incidents in the month after Change Healthcare’s payment came to light—the most it’s ever seen in a single month.

Ransomware 257

Ransomware Cybersecurity Security 257

Data Breach Today

JUNE 12, 2024

A study investigating the impact of ransomware attacks on hospitals and the ripple effect on nearby facilities is a call to action for policymakers to seriously address how those assaults can be better handled in the health sector, said researchers Rahi Abouk and David Powell.

Ransomware 195

Ransomware 195

Speaker: Lee Andrews, Founder at LJA New Media & Tony Karrer, Founder and CTO at Aggregage

This session will walk you through how one CEO used generative AI, workflow automation, and sales personalization to transform an entire security company—then built the Zero to Strategy framework that other mid-market leaders are now using to unlock 3.5x ROI. As a business executive, you’ll learn how to assess AI opportunities in your business, drive adoption across teams, and overcome internal resource constraints—without hiring a single data scientist.

Marketing

The Last Watchdog

JUNE 12, 2024

Taking stock of exposures arising from the data-handling practices of third-party suppliers was never simple. Related: Europe requires corporate sustainability In a hyper-connected, widely-distributed operating environment the challenge has become daunting. At RSAC 2024 , I visited with Paul Valente , co-founder and CEO of VISO TRUST. We had a wide-ranging discussion about the limitations of traditional third-party risk management ( TPRM ), which uses extensive questionnaires—and the honor syste

Risk 130

Risk Security IT 130

KnowBe4

JUNE 12, 2024

Cybercriminals never sleep, and their aim keeps getting better. According to new research from Abnormal Security, phishing attacks targeting organizations in Europe shot up by a staggering 112.4% between April 2023 and April 2024. Meanwhile, US organizations weren't spared either, with phishing attempts increasing by 91.5% over the same period.

Phishing 124

Phishing Security 124

Data Breach Today

JUNE 12, 2024

Agency Seeks Feedback on OT Security Reference Guide for Water, Wastewater Sectors The U.S. National Institute of Standards and Technology wants public feedback on the first draft publication of a new project that aims to better secure the water and wastewater sectors from emerging cyberthreats by focusing on common concerns affecting operational technology assets.

Cybersecurity 189

Cybersecurity Security 189

Thales Cloud Protection & Licensing

JUNE 12, 2024

Bouncing Back: How to Investigate and Recover After a Ransomware Attack madhav Thu, 06/13/2024 - 05:49 You've likely seen the headlines about ransomware attacks and the monumental challenges they pose for organizations. But what should you do when an attack occurs, even if you have a ransomware protection solution in place? In this post, we will delve into the forensics of a ransomware attack, showing you how to classify the attack and recover from it if a ransomware protection solution is in pl

Ransomware 118

Ransomware Encryption Access IT 118

Data Breach Today

JUNE 12, 2024

How and Why to Select Candidates Based on Their Real-World Skills Traditional hiring methods often emphasize educational background and work experience, but the White House is encouraging efforts to transition federal and contractor roles to a skills-based framework. Here's how and why to consider taking this approach.

Education 182

Education 182

Speaker: Alex Salazar, CEO & Co-Founder @ Arcade | Nate Barbettini, Founding Engineer @ Arcade | Tony Karrer, Founder & CTO @ Aggregage

There’s a lot of noise surrounding the ability of AI agents to connect to your tools, systems and data. But building an AI application into a reliable, secure workflow agent isn’t as simple as plugging in an API. As an engineering leader, it can be challenging to make sense of this evolving landscape, but agent tooling provides such high value that it’s critical we figure out how to move forward.

Security

Data Matters

JUNE 12, 2024

Pivotal shifts have occurred in global data privacy, artificial intelligence (AI), and cybersecurity from executives facing more pressure to monitor their organizations’ cybersecurity operations, to an unprecedented wave of consumer data privacy laws and rapid advancements in AI technology use and deployment. Indian organizations should establish best practices to address these new (and emerging) laws, regulations, and frameworks.

Artificial Intelligence 88

Artificial Intelligence Privacy Cybersecurity Data Privacy 88

Data Breach Today

JUNE 12, 2024

High-Assurance Security Tech Boosts Everfox's Government and Infrastructure Tools Everfox's purchase of Garrison Technology is set to fortify its cybersecurity offerings, especially for government and critical infrastructure. The deal leverages Garrison's advanced hardware security technology to complement Everfox's existing capabilities in threat protection and insider risk.

Security 173

Security Government Cybersecurity Risk 173

CILIP

JUNE 12, 2024

CILIP response to the Conservative Party Manifesto t Although we welcome the Conservative Party's Manifesto focus on leveraging in philanthropic funding for museums and libraries, this has to be on top of sustainable, long-term public funding, only by investing in professionally-run library services, can society achieve its potential to support economic growth, lifelong learning and other public policy aims.

Libraries 85

Libraries Communications Access IT 85

Data Breach Today

JUNE 12, 2024

CISA Won't Ask You to Wire Money or Keep Discussions Secret If you've received an urgent phone call from the U.S. Cybersecurity and Infrastructure Security Agency about a security vulnerability, you should know: The call wasn't really from CISA. Americans reported more than $1.1 billion in financial losses due to impersonation scams in 2023.

Cybersecurity 173

Cybersecurity Security 173

Speaker: Frank Taliano

Documents are the backbone of enterprise operations, but they are also a common source of inefficiency. From buried insights to manual handoffs, document-based workflows can quietly stall decision-making and drain resources. For large, complex organizations, legacy systems and siloed processes create friction that AI is uniquely positioned to resolve.

IT

CILIP

JUNE 12, 2024

Libraries Change Lives: Participatory storytelling raises children’s book borrowing at Staffordshire Library Newcastle Under Lyme Library, Staffordshire, brought new energy to reading and literacy through participatory storytelling in a unique series of events in partnership with the New Vic Theatre. Newcastle Under Lyme Library in Staffordshire is raising literacy levels and book borrowing in its local area with a new initiative called ‘Explore a Story’ in conjunction with the New Vic Theatre –

Libraries 72

Libraries IT 72

Schneier on Security

JUNE 12, 2024

Public polling is a critical function of modern political campaigns and movements, but it isn’t what it once was. Recent US election cycles have produced copious postmortems explaining both the successes and the flaws of public polling. There are two main reasons polling fails. First, nonresponse has skyrocketed. It’s radically harder to reach people than it used to be.

IT 127

IT Analytics Artificial Intelligence Authentication 127