Mon.Nov 25, 2024

article thumbnail

New York Fines Geico, Travelers $11.3M for Data Breaches

Data Breach Today

Fines Tied to Wave of 2021 Driver's License Number Theft New York state authorities fined auto insurance giant Geico $9.75 million for failing to protect customers' driver's license numbers during a wave of cyber incidents in early 2021. Travelers will pay $1.55 million after hackers used stolen credentials to flitch license numbers in mid-2021.

article thumbnail

Looking to lead technology teams in 2025? Follow this CDO's advice

Collaboration 2.0

There's a temptation to automate as much work as possible, but AI has some shortcomings - and not for the reasons many think.

94
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Russian Hackers Exploit WiFi in Sophisticated New Attack

Data Breach Today

'Nearest Neighbor Attack' Bypasses Cyber Defenses by Breaching WiFi Networks A Russian cyberespionage group hacked a Washington, D.C.-based organization focused on Ukraine by deploying a new attack technique that exploits Wi-Fi connectivity, according to new research. The "nearest neighbor attack: methodology could lead to a significant broadening of targeting and attacks.

239
239
article thumbnail

Malware campaign abused flawed Avast Anti-Rootkit driver

Security Affairs

Threat actors exploit an outdated Avast Anti-Rootkit driver to evade detection, disable security tools, and compromise the target systems. Trellix researchers uncovered a malware campaign that abused a vulnerable Avast Anti-Rootkit driver (aswArPot.sys) to gain deeper access to the target system, disable security solutions, and gain system control. This alarming tactic corrupts trusted kernel-mode drivers, transforming them into tools for terminating protective processes and compromising infecte

Access 84
article thumbnail

Prevent Data Breaches With Zero-Trust Enterprise Password Management

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

article thumbnail

US National Security Officials Brief Telecom Executives

Data Breach Today

National Security Officials Share Intelligence on a Cyberespionage Campaign The White House on Friday hosted U.S. telecommunications executives to review the country's cyber resilience posture and share intelligence pertaining to China's "significant cyberespionage campaign targeting the sector," which the FBI continues to probe.

Security 222

More Trending

article thumbnail

Black Basta Ransomware Group Retools for Strategic Attacks

Data Breach Today

Social Engineering Moves Mirror Nation-State Groups' Tactics, Researchers Say The Black Basta ransomware group has been refining its social engineering tactics to amass more victims despite escalating law enforcement disruptions, together with a shift to more "strategic, long-term planning" that security experts said suggests Russian state ties.

article thumbnail

Thai police arrested Chinese hackers involved in SMS blaster attacks

Security Affairs

Thai authorities arrested fraud gangs in Bangkok for SMS blaster attacks, they used fake cell towers to send thousands of malicious SMS messages to nearby phones. Thai authorities arrested members of two Chinese cybercrime organizations, one of these groups carried out SMS blaster attacks. The crooks were driving through Bangkok’s streets while sending hundreds of thousands of malicious SMS text messages to nearby cell phones. “One of these gangs had disguised themselves as a legitim

Phishing 122
article thumbnail

Experts Urge Sober Assessment of Russian Hacking

Data Breach Today

Speech by UK Minister Pat McFadden Sparks Backlash A warning from a British government official over Russian cyberwar sparked backlash from cybersecurity specialists who urged a measured approach.

article thumbnail

This Google AI tool could be your new favorite study aid - and it's free

Collaboration 2.0

Part AI chatbot, part search engine, Google's experimental 'Learn About' tool is personalized to your learning needs. How to try it.

IT 89
article thumbnail

Optimizing The Modern Developer Experience with Coder

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

article thumbnail

Crosspoint to Invest $5M in Each Innovation Sandbox Finalist

Data Breach Today

Money Aims to Simplify Fundraising for RSA Conference Innovation Sandbox Finalists Finalists selected for RSA Conference’s Innovation Sandbox competition will now each receive a $5 million investment from Crosspoint Capital. Managing Partner Hugh Thompson said this initiative ensures top cybersecurity startups are equipped to handle increased demand and scale effectively.

article thumbnail

Russia-linked APT TAG-110 uses targets Europe and Asia

Security Affairs

Russia-linked threat actors TAG-110 employed custom malware HATVIBE and CHERRYSPY to target organizations in Asia and Europe. Insikt Group researchers uncovered an ongoing cyber-espionage campaign by Russia-linked threat actor TAG-110 that employed custom malware tools HATVIBE and CHERRYSPY. The campaign primarily targeted government entities, human rights groups, and educational institutions in Central Asia, East Asia, and Europe.

Military 107
article thumbnail

Mysterious Elephant Using Hajj-Themed Bait in Attacks

Data Breach Today

Group Deploys Upgraded Malware Disguised as Microsoft File on Pilgrimage Goers A South Asian threat actor identified as Mysterious Elephant or APT-K-47 by Knownsec 404 researchers is using a Hajj-themed lure to trick victims into malicious payload disguised as a Windows file. The hacker is using upgraded Asyncshell malware disguised as a Microsoft Compiled HTML Help file.

167
167
article thumbnail

I tested the world's fastest SSD, and the results will make power users shed a tear

Collaboration 2.0

The Crucial T705 Gen 5 is one of, if not the fastest NVMe M.2 SSDs money can buy. But can you benefit from its blazing performance?

IT 86
article thumbnail

15 Modern Use Cases for Enterprise Business Intelligence

Large enterprises face unique challenges in optimizing their Business Intelligence (BI) output due to the sheer scale and complexity of their operations. Unlike smaller organizations, where basic BI features and simple dashboards might suffice, enterprises must manage vast amounts of data from diverse sources. What are the top modern BI use cases for enterprise businesses to help you get a leg up on the competition?

article thumbnail

Medical Specialty Groups: Why Cybercriminals are After Them

Data Breach Today

Hacks on 2 Specialty Practices Are Latest on Increasingly Targeted Types of Groups An Illinois gastroenterology practice and a California pulmonary practice are among the latest medical specialty groups targeted by cybercriminals who claim to have their patients' sensitive health information. Attacks on such specialty healthcare practices appear to be rising, some experts said.

147
147
article thumbnail

Tech winners and losers of 2024: For every triumph, a turkey

Collaboration 2.0

AI flourished, Arm chips dominated, and open source thrived. Meanwhile, Elon Musk gets credit for two of the biggest losers, and Apple makes it onto both the nice and naughty lists.

IT 85
article thumbnail

Russia-linked threat actors threaten the UK and its allies, minister to say

Security Affairs

A senior UK minister will warn that Russia is preparing cyberattacks against the UK and its allies to undermine support for Ukraine. Russia may launch cyberattacks against the UK and its allies in retaliation for their support of Ukraine, Chancellor of the Duchy of Lancaster Pat McFadden is expected to state during a NATO meeting. Chancellor of the Duchy of Lancaster Pat McFadden is also responsible for National security, resilience, and civil contingencies.

IT 91
article thumbnail

I upgraded to Android 15 on my Pixel 9 Pro. Here are my 6 favorite features so far

Collaboration 2.0

Android 15 may not seem like a big change but these six features alone make it worth the upgrade.

IT 83
article thumbnail

The Cloud Development Environment Adoption Report

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

article thumbnail

New browser-based query editor for OpenText Core Analytics Database accelerates and simplifies querying your data 

OpenText Information Management

OpenTextâ„¢ Core Analytics Database (Vertica Database as a Service) is a brand new cloud-based managed database offering that helps organizations minimize compute resources for total control over each analytical workload. With Core Analytics Database, organizations get a unified cloud database platform with high-performance SQL and Python analytics and built-in machine learning perfect for many workloads.

article thumbnail

Why Jaguar's Copy Nothing campaign broke the internet - plus 5 ways to nail your next product launch

Collaboration 2.0

The internet has plenty to say about Jaguar's recent colorful rebrand. This article breaks down what happened and shares five hacks to crush your next product launch.

80
article thumbnail

Video: What Is Quishing & How to Protect Your Personal Information

eSecurity Planet

Quishing (QR code phishing) is a cybercrime tactic where cybercriminals exploit deceptive QR codes to trick unsuspecting individuals. Learn how to recognize the warning signs of quishing attacks and protect yourself from this growing threat to safeguard your personal information. The post Video: What Is Quishing & How to Protect Your Personal Information appeared first on eSecurity Planet.

article thumbnail

This new AI image generator lets you create reusable characters

Collaboration 2.0

Luma AI claims its Photon image creator is faster than any comparable model currently available.

IT 73
article thumbnail

The Tumultuous IT Landscape Is Making Hiring More Difficult

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

article thumbnail

Breaking In to Keep Hackers Out: The Essential Work of Penetration Testers

IT Governance

The penetration test process and types of penetration test It may sound counterintuitive, but organisations actually pay people to break into their networks. The reason is simple: to catch a thief, you must think like a thief. Organisations hire ethical hackers – aka ‘ penetration testers ’ or ‘pen testers’ – to identify weaknesses in their defences before a criminal hacker exploits them.

Risk 60
article thumbnail

This surprisingly impressive Android tablet is $60 off for Black Friday

Collaboration 2.0

The Oukitel OT5 is a solid but cost-effective Android tablet that won't break the bank, especially since it's 20% off.

IT 73
article thumbnail

Integration with Backend Services in Angular Grid

Enterprise Software Blog

In modern web applications, efficiently managing large datasets is crucial for delivering optimal performance and great user experience. One of the best practices to achieve this is by implementing remote paging in your Web API, which allows clients to fetch only the required data on demand. In this article, then, we will explore how to extend your Web API to support remote paging capabilities and integrate it seamlessly with Ignite UI's igxGrid component or any other component that can cons

article thumbnail

The camera I recommend to most new photographers is $180 off for Black Friday

Collaboration 2.0

If you're getting serious about photography and ready to upgrade from your phone, the Canon EOS R100 is one of the best places to start. It's on sale now for 38% off.

Sales 71
article thumbnail

Introducing CDEs to Your Enterprise

Explore how enterprises can enhance developer productivity and onboarding by adopting self-hosted Cloud Development Environments (CDEs). This whitepaper highlights the simplicity and flexibility of cloud-based development over traditional setups, demonstrating how large teams can leverage economies of scale to boost efficiency and developer satisfaction.

article thumbnail

Zyxel firewalls targeted in recent ransomware attacks

Security Affairs

Zyxel warns that a ransomware group has been observed exploiting a recently patched command injection issue in its firewalls. Zyxel warns that a ransomware gang has been observed exploiting a recently patched command injection vulnerability, tracked as CVE-2024-42057, in its firewalls for initial compromise. Remote, unauthenticated attackers could exploit the flaw to execute OS commands on vulnerable devices.

article thumbnail

M3 MacBook Air vs. M2 MacBook Air: Which Apple laptop should you buy?

Collaboration 2.0

Apple's newest MacBook Air is here, and ZDNET has reviewed both the 13- and 15-inch sizes. Here's how they fare against the M2 models.

70
article thumbnail

M&C Saatchi Group transforms IT operations with Jamf

Jamf

See how M&C Saatchi Group saved time, decreased costs and improved security with Jamf Pro, Jamf Connect and Jamf Protect.

IT 40