Security Affairs

DECEMBER 6, 2021

A cyber attack hit the international supermarket franchise SPAR forcing 330 shops in North East England to shut down. A cyberattack hit the international supermarket franchise SPAR impacting the operations at 330 shops in North East England. Many stores were forced to close or switch to cash-only payments after the attack. SPAR operates 13,320 stores in 48 countries as of 2019, but the cyberattack hit only stores in Lancashire county.

Ransomware 113

Ransomware Cybersecurity IT Security 113

The Last Watchdog

DECEMBER 6, 2021

For IT leaders, passwords no longer cut it. They’re expensive, difficult for employees to keep track of, and easy for hackers to utilize in cyberattacks. So why are they still around? Related: IT pros support passwordless access. This traditional authentication method is challenging to get rid of, mostly because it’s so common. Every new account you sign up for, application you download, or device you purchase requires a password.

Authentication 219

Authentication Passwords Cloud Phishing 219

Schneier on Security

DECEMBER 6, 2021

From Ontario and not surprising : Since September 2021, officers have investigated five incidents where suspects have placed small tracking devices on high-end vehicles so they can later locate and steal them. Brand name “air tags” are placed in out-of-sight areas of the target vehicles when they are parked in public places like malls or parking lots.

IT 123

IT 123

Hunton Privacy

DECEMBER 6, 2021

On November 30, 2021, the European Commission issued a press release indicating that the European Parliament and the Council of the EU ( i.e. , representatives of EU Member States) reached political agreement on the proposed EU Data Governance Act. The political agreement now will be subject to final approval by the European Parliament and the Council of the EU.

Government 116

Government Agriculture Manufacturing Personal data 116

Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage

Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.

IT

Threatpost

DECEMBER 6, 2021

Tony Lauro, director of Security Technology & Strategy at Akamai, discusses VPNs, RDP, flat networks, BYOD and other network-security bugbears.

Security 121

Security 121

Security Affairs

DECEMBER 6, 2021

The French cyber-security agency ANSSI said that the Russia-linked Nobelium APT group has been targeting French organizations since February 2021. The French national cybersecurity agency ANSSI (Agence Nationale de la Sécurité des Systèmes d’Information) revealed that the Russia-linked Nobelium APT group has been targeting French organizations since February 2021.

Phishing 91

Phishing Military Government Cybersecurity 91

Dark Reading

DECEMBER 6, 2021

Organizations want to focus on customer satisfaction and increased revenues during the holiday shopping season. Here are some smart security and fraud protections to keep in mind.

Security 90

Security 90

Security Affairs

DECEMBER 6, 2021

A ransomware attack hit an electric utility in Colorado causing a significant disruption and damage. The Delta-Montrose Electric Association (DMEA) is a local electric cooperative located in Colorado, it is part of Touchstone Energy Cooperatives. The company has discovered a security breach on November 7, the attack disrupted phone, email, billing, and customer account systems.

Energy and Utilities 90

Energy and Utilities Ransomware Data breaches Security 90

IG Guru

DECEMBER 6, 2021

The ICRM Board of Regents has approved an academic partnership with the University of Texas at Austin! The strategic alliance with the School of Information at The University of Texas at Austin fast tracks graduates of its Master of Science in Information Studies (MSIS) degree program to apply completed course work toward examination credit for […].

Records Management 84

Records Management IT Education 84

Advertisement

Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

Risk

Security Affairs

DECEMBER 6, 2021

Threat actors stole more than $150 million in various cryptocurrencies from the cryptocurrency trading platform BitMart. Cryptocurrency trading platform BitMart has disclosed a security breach, threat actors stole than $150 million in various cryptocurrencies. “We have identified a large-scale security breach related to one of our ETH hot wallets and one of our BSC hot wallets today.

Blockchain 87

Blockchain Security IT Information Security 87

Threatpost

DECEMBER 6, 2021

BitMart confirmed it had been drained of ~$150 million in cryptocurrency assets, but a blockchain security firm said it's closer to $200 million.

Blockchain 82

Blockchain Security IT Cloud 82

Dark Reading

DECEMBER 6, 2021

Gen. Paul Nakasoke, head of US Cyber Command and director of the NSA, said the military has taken offensive action against ransomware groups.

Military 88

Military Ransomware 88

Data Protection Report

DECEMBER 6, 2021

Introduction. Significant changes to the law with respect to security of critical infrastructure in Australia, including enhanced cybersecurity incident reporting requirements and the inclusion of further asset classes have been passed. On 22 November 2021, the Security Legislation Amendment (Critical Infrastructure) Bill 2021 ( Bill ) passed both houses of the federal parliament of Australia and will come into force after receiving assent, likely before the end of 2021.

IT 70

IT Security Cybersecurity Government 70

Advertisement

Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.

Security

Threatpost

DECEMBER 6, 2021

The gang is using a variety of tools and malware to carry out attacks in volume on critical sectors, the FBI warned.

Ransomware 88

Ransomware Security 88

Dark Reading

DECEMBER 6, 2021

The so-called Nikel cyber espionage attack group - aka APT15, Vixen Panda, KE3CHANG, Royal APT, and Playful Dragon - has been in Microsoft's sights since 2016.

79

79

Threatpost

DECEMBER 6, 2021

It's unknown who's behind the cyberattacks against at least nine employees' iPhones, who are all involved in Ugandan diplomacy.

IT 83

IT Government Security 83

Dark Reading

DECEMBER 6, 2021

Part mainframe, part mobile device, cars will increasingly become targets for cyberattackers.

Cybersecurity 100

Cybersecurity 100

Advertisement

“Reimagined: Building Products with Generative AI” is an extensive guide for integrating generative AI into product strategy and careers featuring over 150 real-world examples, 30 case studies, and 20+ frameworks, and endorsed by over 20 leading AI and product executives, inventors, entrepreneurs, and researchers.

Threatpost

DECEMBER 6, 2021

The culprit is misconfigured Kafdrop interfaces, used for centralized management of the open-source platform.

Cloud 86

Cloud Security 86

OpenText Information Management

DECEMBER 6, 2021

The latest announcement by OpenText of Cloud Editions includes some great updates to OpenText™ Core Case Management. Check out the latest updates below. December 2021: What’s new in OpenText Core Case Management 21.4 Increase caseworker productivity Access attachments across repositories, including case and business workspaces, to provide workers case-related content and extend the value of existing information, … The post What’s new in OpenText Core Case Management appeared first

Cloud 63

Cloud Access Content services 63

Threatpost

DECEMBER 6, 2021

U.S. military acknowledges targeting cybercriminals who launch attacks on U.S. companies.

Military 94

Military Ransomware Government 94

Dark Reading

DECEMBER 6, 2021

The program helps close the skill gap to enable defenders to gain the advantage over cyber adversaries.

85

85

Advertisement

If you’re considering migrating from DataStax Enterprise (DSE) to open source Apache Cassandra®, our comprehensive guide is tailored for architects, engineers, and IT directors. Whether you’re motivated by cost savings, avoiding vendor lock-in, or embracing the vibrant open-source community, Apache Cassandra offers robust value. Transition seamlessly to Instaclustr Managed Cassandra with our expert insights, ensuring zero downtime during migration.

IT

Jamf

DECEMBER 6, 2021

Jamf and Google introduce a new, simple way to create user accounts just-in-time on a Mac with the Google user name and password, and then keep that password in sync over time.

Passwords 52

Passwords Cloud 52

Dark Reading

DECEMBER 6, 2021

Clusters of activity associated with the attack group behind last year's supply chain breach reveal novel techniques, researchers say.

Government 80

Government 80

eDiscovery Law

DECEMBER 6, 2021

Key Insight: The court affirmed the Magistrate’s order granting (in part) plaintiff’s motion to compel discovery to produce documents, to correct metadata issues and to pay expenses plaintiff incurred in pursuing the motion to compel. Defendant only objected to the Magistrate’s order on the fee request. The court adopted the magistrate judge’s order granting a […].

Metadata 40

Metadata Risk 40

Dark Reading

DECEMBER 6, 2021

SEARCH is a carefully-tuned methodology that balances people, process and technology for threat hunters actively searching for, and disrupting, distinctly human threats.

56

56

Advertisement

Are you trying to decide which entity resolution capabilities you need? It can be confusing to determine which features are most important for your project. And sometimes key features are overlooked. Get the Entity Resolution Evaluation Checklist to make sure you’ve thought of everything to make your project a success! The list was created by Senzing’s team of leading entity resolution experts, based on their real-world experience.

IT

Security Affairs

DECEMBER 6, 2021

Russia-linked Nobelium APT group is using a new custom malware dubbed Ceeloader in attacks against organizations worldwide. Mandiant researchers have identified two distinct clusters of activity, tracked UNC3004 and UNC2652, that were associated with the Russia-linked Nobelium APT group (aka UNC2452). The NOBELIUM APT ( APT29 , Cozy Bear , and The Dukes) is the threat actor that conducted supply chain attack against SolarWinds, which involved multiple families of implants, including the SUNBURST

Authentication 100

Authentication Military Access Passwords 100

Dark Reading

DECEMBER 6, 2021

If zero trust is to work properly, then it must apply to everyone.

Access 68

Access IT 68

Security Affairs

DECEMBER 6, 2021

Hackers are targeting printers of businesses around the world to print ‘anti-work’ slogans pushing workers to demand better pay. Multiple employees are sharing on Twitter and Reddit the images of anti-work messages sent to the printers of their organizations. The messages encourage workers to protect their rights and discuss their pay with coworkers and demand better pay. “The posts were made on the r/ Antiwork subreddit which describes itself as a community ‘for those who want to end work

Retail 75

Retail Cybersecurity IT Security 75