Data Breach Today

DECEMBER 13, 2020

SolarWinds: Flawed Updates in Orion Platform May be Source of Attacks The U.S. Commerce Department confirmed on Sunday it had been targeted by hackers, and the U.S. Treasury has also reportedly been struck. The intrusions may be linked to a vulnerability in updates SolarWinds made to its Orion network monitoring product earlier this year, which could mean a broad impact.

IT 352

IT 352

The Last Watchdog

DECEMBER 13, 2020

One legacy of the ongoing global pandemic is that companies now realize that a secured and well-supported remote workforce is possible. Recently, the University of Illinois and the Harvard Business School conducted a study, and 16% of companies reported switching their employees to work at home from offices at least twice a week. Related: SASE translates into secure connectivity.

Access 204

Access Security IoT B2C 204

Security Affairs

DECEMBER 13, 2020

Researchers have discovered a botnet dubbed PgMiner that targets PostgreSQL databases running on Linux servers to install a cryptocurrency miner. Security researchers from Palo Alto Networks have discovered a new botnet, tracked as PgMiner, that targets PostgreSQL databases running on Linux servers to install a cryptocurrency miner. PostgreSQL, also known as Postgres, is one of the most-used open-source relational database management systems (RDBMS) for production environments.

Mining 133

Mining Authentication Passwords Access 133

WIRED Threat Level

DECEMBER 13, 2020

From messaging to maps, many popular apps slurp up your data to sell you ads. There’s a better way.

Privacy 108

Privacy Security 108

Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage

Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.

IT

Security Affairs

DECEMBER 13, 2020

Subway UK confirmed the hack of a marketing system that was used to send out phishing messages to deliver malware to the customers. Hackers have compromised a marketing system in Subway UK and used it to send out phishing messages to deliver malware to the customers. Subway UK customers received emails from ‘Subcard’ about the processing of an alleged Subway order.

Phishing 133

Phishing Marketing Data breaches Personal data 133

Security Affairs

DECEMBER 13, 2020

Security Affairs newsletter is back, it is the right time to subscribe to it. Every day I receive several emails asking me to resume the Security Affairs newsletter, for this reason, I decided to open it again for the first 2000 users. Subscribe. * indicates required. Email Address *. First Name. Last Name. GDPR disclaimer. Under the General Data Protection Regulation (GDPR) (EU) 2016/679, we have a legal duty to protect any information we collect from you.

Security 127

Security GDPR Privacy Marketing 127

Adam Shostack

DECEMBER 13, 2020

Charley Pride has passed away of complications of Covid-19. I knew of his work because one of his albums, A Tribute to Jim Reeves, was initially sold with digital rights management. I bought a copy to explore the DRM before news came out that you could just take a sharpie and draw over the bits that made it into a CD-ROM. The CD would then play, or rip, just fine.

IT 40

IT Marketing 40

Security Affairs

DECEMBER 13, 2020

Pay2Key ransomware operators claim to have compromised the network of the Intel-owned chipmaker Habana Labs and have stolen data. ?Intel-owned AI chipmaker Habana Labs was hacked by Pay2key ransomware operators who claim to have stolen from the company. The group announced the hack on Twitter, they claim to have stolen sensitive data, including information about a new artificial intelligence chip code named Gaudi.

Artificial Intelligence 110

Artificial Intelligence Ransomware Access IT 110

Adam Levin

DECEMBER 13, 2020

The email systems of several government agencies including the U.S. Departments of Treasury and Commerce were breached and monitored by foreign actors most likely connected to the Russian government, the Trump administration acknowledged December 13, 2020. “Highly sophisticated” threat actors were apparently able to compromise authentication protocols used by Microsoft’s Office suite of applications, including Word, Outlook, and Excel, according to the Washington Post. .

Military 71

Military Government Authentication Cybersecurity 71

Advertisement

Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

Risk

Security Affairs

DECEMBER 13, 2020

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. COVID-19 themed attacks October 1 – December 5, 2020 Drug dealers are selling Pfizer COVID vaccines on the darkweb LockBit Ransomware operators hit Swiss helicopter maker Kopter Police arrest two people over stealing sensitive data from defense giant A ransomware attack hit the Greater Baltimore Medical Center Cisco fixes exploitable RCEs in Ci

Security 92

Security Computer and Electronics Ransomware Education 92

WIRED Threat Level

DECEMBER 13, 2020

After four years of Trump kowtowing to Putin, the US has its work cut out for it.

IT 106

IT Security 106