Data Breach Today
JANUARY 4, 2023
63GB Database of Names, Email Addresses Posted to Hacker Forum for All to Download A member of a criminal data breach forum that tried to sell the email addresses of 400 million Twitter users to CEO Elon Musk last month has now posted the stolen data for free for anyone to download. The 63 GB of data includes names, handles, creation dates, follower counts and email addresses.
Dark Reading
JANUARY 4, 2023
Job applicants could face a raft of follow-on attacks after cyber intruders accessed their data in an opportunistic attack.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Data Breach Today
JANUARY 4, 2023
Social Media Company Fined for GDPR Violation Related to Ad Personalization The Irish Data Protection Commission has imposed a fine of 390 million euros against Meta Ireland for violating the General Data Protection Regulation related to user data processing. Meta confirmed it will contest the penalty, which targets ad personalization by Facebook and Instagram.
Security Affairs
JANUARY 4, 2023
BMW, Mercedes, Toyota, and other popular carmakers use vulnerable APIs that could have allowed attackers to perform malicious activities. Cybersecurity researcher Sam Curry and his colleagues discovered many vulnerabilities in the vehicles manufactured by tens of carmakers and services implemented by vehicle solutions providers. The vulnerabilities could have been exploited by threat actors to perform a broad range of malicious activities, from unlocking cars to tracking them.
Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage
Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.
Data Breach Today
JANUARY 4, 2023
Government Offices Revert to Pen and Paper; Up to 400 Counties Affected by Attack Hundreds of U.S. counties continue to work with pen and paper after a cyberattack on their digital records management vendor last week disrupted methods to view, add and edit government records. The attack slowed the processing of birth certificates, marriage licenses and real estate transactions.
Information Management Today brings together the best content for information management professionals from the widest variety of industry thought leaders.
Data Breach Today
JANUARY 4, 2023
Personal Information Compromised After Rail Giant Refused to Pay $30M Ransom Rail and locomotive company Wabtec Corp. notified customers about a data breach that exposed some individuals' personal and sensitive information. Ransomware-as-a-service group LockBit posted the data on its leak site after the company refused to pay a $30 million ransom.
Security Affairs
JANUARY 4, 2023
Fortinet addressed multiple vulnerabilities impacting its products and warned of a high-severity command injection flaw in FortiADC. Cybersecurity vendor Fortinet addressed several vulnerabilities impacting its products. The compaby also warned customers of a high-severity command injection flaw, tracked as CVE-2022-39947 (CVSS score of 8.6), affecting the Application Delivery Controller FortiADC.
Data Breach Today
JANUARY 4, 2023
Owning a Piece of Evidian Would Help Airbus Guard Communication Systems in Vehicles Airbus has once again expressed interest in Atos' $4.8 billion cybersecurity, big data and digital business - this time as a minority stakeholder, Les Echos reports. The Dutch aircraft manufacturer has started exploratory talks to take a noncontrolling interest in Atos' Evidian business.
Security Affairs
JANUARY 4, 2023
Researchers discovered a new Linux malware developed with the shell script compiler ( shc ) that was used to deliver a cryptocurrency miner. The ASEC analysis team recently discovered that a Linux malware developed with shell script compiler ( shc ) that threat actors used to install a CoinMiner. The experts believe attackers initially compromised targeted devices through a dictionary attack on poorly protected Linux SSH servers, then they installed multiple malware on the target system, includi
Advertisement
Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.
Data Breach Today
JANUARY 4, 2023
Cloudflare CEO Shares Why Anti-Phishing Belongs on a Network Protection Platform Acquiring Area 1 Security has allowed Cloudflare to extend its network protection capabilities from DDoS attacks to phishing emails, says co-founder and CEO Matthew Prince. Area 1's technology means customers will enjoy a better rate of detection with fewer false positives than legacy offerings.
Security Affairs
JANUARY 4, 2023
US. rail and locomotive company Wabtec Corporation disclosed a data breach after it was hit with Lockbit ransomware attack. Wabtec Corporation is an American company formed by the merger of the Westinghouse Air Brake Company (WABCO) and MotivePower Industries Corporation in 1999. It manufactures products for locomotives, freight cars and passenger transit vehicles, and builds new locomotives up to 6,000 horsepower.
Data Breach Today
JANUARY 4, 2023
Hosting Giant Says Microsoft's Patch Notes Didn't Detail Remote Code Execution Risk Rackspace says the ransomware-wielding attackers who disrupted its hosted Microsoft Exchange Server environment last month wielded a zero-day exploit, described by CrowdStrike as being "a previously undisclosed exploit method for Exchange," to gain remote, direct access to servers it hosted.
The Guardian Data Protection
JANUARY 4, 2023
Irish regulator fines Facebook owner €390m after EU rejects argument for use of data to drive personalised ads The business model of Mark Zuckerberg’s Meta empire has been dealt a blow following a ruling that its legal justification for targeting users with personalised ads broke EU data laws. Campaigners said the move could force the Facebook and Instagram owner to ask users to “opt-in” to having their data used for targeted ads.
Advertisement
Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.
Data Breach Today
JANUARY 4, 2023
New York District Hopes to Recover Missing Assets, Probe Crypto Firm's Collapse The U.S. attorney in New York has established a task force to trace and recover funds missing from FTX and manage probes related to the firm's collapse. The team comprises prosecutors with expertise in securities and commodities fraud, money laundering and asset forfeiture and cybersecurity.
WIRED Threat Level
JANUARY 4, 2023
When police infiltrated the EncroChat phone system in 2020, they hit an intelligence gold mine. But subsequent legal challenges have spread across Europe.
Dark Reading
JANUARY 4, 2023
Improve overall IT administration and establish a framework to identify misconfigurations and automate the process of checking IaC before it makes it into the production environment.
Security Affairs
JANUARY 4, 2023
CyberNews reported that Cricketsocial.com, a social platform for the cricket community, exposed private customer data and admin credentials. Cricketsocial.com, is a social platform developed for the cricket community online. CyberNews discovered that a database used by the platform was left open online, it contains a huge trove of data. The Social platform for the cricket community exposed over 100k entries of private customer data and credentials.
Advertisement
“Reimagined: Building Products with Generative AI” is an extensive guide for integrating generative AI into product strategy and careers featuring over 150 real-world examples, 30 case studies, and 20+ frameworks, and endorsed by over 20 leading AI and product executives, inventors, entrepreneurs, and researchers.
Dark Reading
JANUARY 4, 2023
The hosting provider had not applied Microsoft's new patch due to publicly reported issues with the update.
Ascent Innovations
JANUARY 4, 2023
New Year Resolutions aren’t working. Try a better method to start the New Year off right. The beginning of the year is a natural time for reflection. Many of us look back at the past year and think of the year ahead. While we can make changes at any time, the New Year is the best time to commit. A study indicated that only 9% of people feel that their New Year’s resolutions were successful at the end of the year, and people are left feeling like they didn’t hit the mark.
Dark Reading
JANUARY 4, 2023
Attackers have compromised a Colombian financial institution and are using a bevy of leaked customer details in further malicious activity to spread an info-gathering remote access Trojan (RAT).
John Battelle's Searchblog
JANUARY 4, 2023
The Mac represented a new interface paradigm for computing, one that Microsoft ignored – until it couldn’t. Will Google do the same? Just last week I predicted that Google would leverage ChatGPT to create a conversational interface to its search business, and that Microsoft would do the same in the enterprise data market. I briefly considered that I might have gotten it exactly backwards – Google has a robust enterprise data business in its cloud business (known as GCP), and of
Advertisement
If you’re considering migrating from DataStax Enterprise (DSE) to open source Apache Cassandra®, our comprehensive guide is tailored for architects, engineers, and IT directors. Whether you’re motivated by cost savings, avoiding vendor lock-in, or embracing the vibrant open-source community, Apache Cassandra offers robust value. Transition seamlessly to Instaclustr Managed Cassandra with our expert insights, ensuring zero downtime during migration.
Dark Reading
JANUARY 4, 2023
Even very short tasks may be worth automating if you do them frequently. Here's how to decide what to tackle first.
Outpost24
JANUARY 4, 2023
A Pen Tester’s Guide to Content Security Policy. 10.Jan.2023. Florian Barre. Wed, 01/04/2023 - 08:53. Jimmy Bergqvist, Application Security Expert, Outpost24. Penetration Testing. Teaser. In this article, we’ll look at Content Security Policy through the eyes of a penetration tester. We will outline the advantages of CSP, explain why you should have it on your site, and share some common misconfigurations that can be exploited, along with the relevant bypass scenarios.
DLA Piper Privacy Matters
JANUARY 4, 2023
Author: James Clark. On 19 December 2022 the UK government’s first data adequacy decision of the post-Brexit era came into effect. Under the Data Protection (Adequacy) (Republic of Korea) Regulations 2022, the UK formally determined that the Republic of Korea provides an adequate level of data protection for the purposes of the UK GDPR. Consequently, UK businesses can now freely transfer personal data to recipients in South Korea without needing to take any additional steps (such as entering int
Information Matters
JANUARY 4, 2023
Finding “reliable” data about the market size and forecasts for the Artificial Intelligence (AI) and Machine Learning (ML) sectors is not easy and can be expensive if you have to Read more. The post Artificial Intelligence (AI) and Machine Learning (ML) Market Size and Forecasts appeared first on Information Matters - Technology Market Data and Forecasts.
Advertisement
Are you trying to decide which entity resolution capabilities you need? It can be confusing to determine which features are most important for your project. And sometimes key features are overlooked. Get the Entity Resolution Evaluation Checklist to make sure you’ve thought of everything to make your project a success! The list was created by Senzing’s team of leading entity resolution experts, based on their real-world experience.
ForAllSecure
JANUARY 4, 2023
In a previous blog post , we looked at the federal government’s recent release of the Securing The Software Supply Chain series, in particular, p art one: guidance for developers. In this blog post, we’ll take a deeper look at the National Institute of Standards and Technology (NIST) guidance for software development. In particular, we’ll look at PW 8.2 in NIST 800-218 which is cited.
Dark Reading
JANUARY 4, 2023
Developers should go beyond the basics to make it harder to exploit the API.
IG Guru
JANUARY 4, 2023
Check out the article here.
Expert insights. Personalized for you.
287 
Let's personalize your content