Fri.Sep 13, 2024

article thumbnail

The Dark Nexus Between Harm Groups and ‘The Com’

Krebs on Security

A cyberattack that shut down two of the top casinos in Las Vegas last year quickly became one of the most riveting security stories of 2023: It was the first known case of native English-speaking hackers in the United States and Britain teaming up with ransomware gangs based in Russia. But that made-for-Hollywood narrative has eclipsed a far more hideous trend: Many of these young, Western cybercriminals are also members of fast-growing online groups that exist solely to bully, stalk, harass and

Passwords 259
article thumbnail

Strider Secures $55M to Fuel AI Growth and Global Expansion

Data Breach Today

Series C Funds to Fuel AI Research, Government Sector Investment and Global Growth Strider Technologies has raised $55 million in a Series C funding round to strengthen its AI capabilities and fuel global expansion efforts. The money will enhance the company’s AI-driven insights, support business with government agencies, and fuel international expansion in Europe and Asia.

Security 156
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

‘Terrorgram’ Charges Show US Has Had Tools to Crack Down on Far-Right Terrorism All Along

WIRED Threat Level

The federal indictment of two alleged members of the Terrorgram Collective, a far-right cell accused of inspiring “lone wolf” attacks, reveals the US is now using a “forgotten” legal strategy.

Security 125
article thumbnail

Eliminating the Need for Stored Credentials in Healthcare

Data Breach Today

Authentication requiring stored credentials is not only vulnerable to phishing and other compromises, but using these credentials can also be cumbersome for busy clinicians, said Tina Srivastava, co-founder of Badge, a provider of deviceless, tokenless authentication technology.

article thumbnail

The Tumultuous IT Landscape is Making Hiring More Difficult

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

article thumbnail

Vo1d malware infected 1.3 Million Android-based TV Boxes in 197 countries

Security Affairs

Researchers uncovered an Android malware, dubbed Vo1d, that has already infected nearly 1.3 million Android devices in 197 countries. Doctor Web researchers uncovered a malware, tracked as Vo1d , that infected nearly 1.3 million Android-based TV boxes belonging to users in 197 countries. The malicious code acts as a backdoor and allows attackers to download and install third-party software secretly.

More Trending

article thumbnail

GitLab fixed a critical flaw in GitLab CE and GitLab EE

Security Affairs

GitLab addressed multiple vulnerabilities impacting GitLab CE/EE, including a critical pipeline execution issue. GitLab released security patches for 17 vulnerabilities in GitLab CE (Community Edition) and EE (Enterprise Edition). One of these vulnerabilities is a critical pipeline execution flaw, tracked as CVE-2024-6678 (CVSS score of 9.9), that could allow an attacker to trigger a pipeline as an arbitrary user under certain circumstances. “An issue was discovered in GitLab CE/EE affecti

Access 104
article thumbnail

Irish Data Protection Commission Probes Google's AI Model

Data Breach Today

Inquiry Launched to Determine the Company's Compliance With GDPR The Irish data regulator launched an investigation to determine Google's compliance with a European privacy law when it was developing its PaLM 2 artificial intelligence model. Google launched the multilingual generative AI model last year.

article thumbnail

New Linux malware called Hadooken targets Oracle WebLogic servers

Security Affairs

A new Linux malware called Hadooken targets Oracle WebLogic servers, it has been linked to several ransomware families. Aqua Security Nautilus researchers discovered a new Linux malware, called Hadooken, targeting Weblogic servers. The name comes from the attack “surge fist” in the Street Fighter series. Upon execution, the malware drops a Tsunami malware and deploys a cryptominer.

Honeypots 102
article thumbnail

Remote Access Tool Sprawl Increases OT Risks

Data Breach Today

Over-Deployment of Tools Raises Security and Operational Concerns Excessive deployment of remote access tools in operational technology environments expands attack surfaces and creates operational challenges, warn security researchers from Claroty. Remote access tools are essential, but they introduce numerous potential vulnerabilities that threat actors exploit.

Access 148
article thumbnail

Improving the Accuracy of Generative AI Systems: A Structured Approach

Speaker: Anindo Banerjea, CTO at Civio & Tony Karrer, CTO at Aggregage

When developing a Gen AI application, one of the most significant challenges is improving accuracy. This can be especially difficult when working with a large data corpus, and as the complexity of the task increases. The number of use cases/corner cases that the system is expected to handle essentially explodes. 💥 Anindo Banerjea is here to showcase his significant experience building AI/ML SaaS applications as he walks us through the current problems his company, Civio, is solving.

article thumbnail

Proton VPN vs NordVPN: Which is best in 2024?

Collaboration 2.0

NordVPN and Proton VPN are two of the most popular VPN services available with strong protection features. Here are the key reasons you might pick one over the other.

98
article thumbnail

Black Hat/DEF CON 2024: Latest Insights on Security and AI

Data Breach Today

ISMG Compendium Showcases More Than 50 Interviews on Threats, Emerging Solutions Welcome to Information Security Media Group's Black Hat and DEF CON 2024 Compendium featuring latest insights from the industry's top cybersecurity researchers and ethical hackers, as well as perspectives from CEOs, CISOs and government officials on the latest trends in cybersecurity and AI.

Security 148
article thumbnail

Cyber Security in Banking: Threats, Solutions & Best Practices

eSecurity Planet

Cyber security in banking has become the frontline defense against an ever-growing wave of digital threats. With billions of dollars and sensitive data at risk, banks are under constant pressure to stay one step ahead of cybercriminals. So, what are the biggest threats facing the banking sector, and how are institutions safeguarding your financial future?

article thumbnail

My Apple Intelligence wishlist: 10 features it needs to compete with OpenAI and Google

Collaboration 2.0

I've tried many of Apple's AI features in the iOS 18 beta and found them incomplete or underwhelming. Here's what the company needs to offer if it wants to become a leader in the AI race.

IT 98
article thumbnail

Enhance Innovation and Governance Through the Cloud Development Maturity Model

Leverage the Cloud Development Environment Maturity Model to elevate your software development practices with scalable, secure cloud-based workspaces. This model offers a structured approach to modernizing development, aligning technology, developer experience, security, and workflows. By implementing Cloud Development Environments (CDEs), teams can boost efficiency, improve security, and streamline operations through centralized governance.

article thumbnail

Lehigh Valley Health Network hospital network has agreed to a $65 million settlement after data breach

Security Affairs

Lehigh Valley Health Network ’s (LVHN) hospital network has agreed to a $65 million settlement in a class action lawsuit related to a data breach. Lehigh Valley Health Network (LVHN) is a large hospital and healthcare system based in Pennsylvania, USA. It operates numerous hospitals, health centers, and outpatient facilities across the region, including the Lehigh Valley area.

article thumbnail

I love everything about this Android tablet (especially the price)

Collaboration 2.0

Blackview's Mega 1 is an 11.5-inch Android 13 tablet with a 120Hz display, 256GB of storage, and 24GB of RAM. What's more, it comes at a great discount.

IT 98
article thumbnail

Meta to push on with plan to use UK Facebook and Instagram posts to train AI

The Guardian Data Protection

Move to use shared posts follows information commissioner concerns and sets collision course with EU over privacy Mark Zuckberg’s Meta is to go ahead with controversial plans to use millions of UK Facebook and Instagram posts to train its artificial intelligence (AI) technology, in a practice that is effectively outlawed under EU privacy laws. Meta said it had “engaged positively” with the Information Commissioner’s Office (ICO) over the plan, after it paused similar proposals in June in the UK

article thumbnail

Attackers Using HTTP Response Headers to Redirect Victims to Phishing Pages

KnowBe4

Researchers at Palo Alto Networks’ Unit 42 warn that attackers are using refresh entries in HTTP response headers to automatically redirect users to phishing pages without user interaction.

article thumbnail

Bringing the Cybersecurity Imperative Into Focus

Tech leaders today are facing shrinking budgets and investment concerns. This whitepaper provides insights from over 1,000 tech leaders on how to stay secure and attract top cybersecurity talent, all while doing more with less. Download today to learn more!

article thumbnail

10 features Apple Intelligence needs to actually compete with OpenAI and Google

Collaboration 2.0

I've tried many of Apple's AI features in the iOS 18 beta and found them incomplete or underwhelming. Here's what the company needs to offer if it wants to become a leader in the AI race.

IT 94
article thumbnail

My TedXBillings Talk

Schneier on Security

Over the summer, I gave a talk about AI and democracy at TedXBillings. The recording is [link]. Please share.

article thumbnail

How ChatGPT scanned 170k lines of code in seconds and saved me hours of work

Collaboration 2.0

If you have a question that requires a lot of text or numerical analysis, consider running it by ChatGPT or one of the other AIs. You might just get a useful answer as fast as I did.

IT 98
article thumbnail

DevSecOps: It’s Time to Level Up (with a Little Help from AI) 

OpenText Information Management

Ever feel like the software world is spinning faster than a fidget spinner in overdrive? Security threats are evolving at warp speed, and keeping up feels like trying to catch a greased piglet. But hey, don't stress. DevSecOps is already your secret weapon, baking security into every line of code. Now, imagine adding AI to the mix. It's like upgrading your skateboard to a hoverboard.

article thumbnail

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

Speaker: Aindra Misra, Senior Manager, Product Management (Data, ML, and Cloud Infrastructure) at BILL

Join us for an insightful webinar that explores the critical intersection of data privacy and AI governance. In today’s rapidly evolving tech landscape, building robust governance frameworks is essential to fostering innovation while staying compliant with regulations. Our expert speaker, Aindra Misra, will guide you through best practices for ensuring data protection while leveraging AI capabilities.

article thumbnail

The best wireless chargers of 2024: Expert tested

Collaboration 2.0

Did you just preorder the new iPhone 16? Now, break up with your charging cables. We went hands-on with chargers from Anker, ESR, Courant, and more to find the best wireless chargers to make powering your devices easier than ever.

76
article thumbnail

The Ultimate Guide to Contract Management

Docuware

From service agreements to vendor contracts and everything in between, keeping track of contracts can quickly become overwhelming. This is where contract management comes in. It’s essential for any business that wants to protect its assets, prevent lost revenue, mitigate risk and comply with regulatory requirements.

Risk 29
article thumbnail

6 KDE widgets to level up your Plasma desktop - and how to add them

Collaboration 2.0

If you're looking for a user-friendly desktop environment, the Plasma desktop is hard to beat. With the help of a few widgets, you can make the desktop even more efficient and effective.

98
article thumbnail

Chinese-Speaking Hackers Manipulate SEO Rankings Globally

Data Breach Today

Threat Actor Advertises SEO Services in Chinese and English A Chinese search engine optimization operation hacked more than 35 web servers and stole credentials in a campaign to boost the online rankings of malicious porn sites. Researchers from Cisco Talos dubbed the threat cluster DragonRank.

148
148
article thumbnail

Launching LLM-Based Products: From Concept to Cash in 90 Days

Speaker: Christophe Louvion, Chief Product & Technology Officer of NRC Health and Tony Karrer, CTO at Aggregage

Christophe Louvion, Chief Product & Technology Officer of NRC Health, is here to take us through how he guided his company's recent experience of getting from concept to launch and sales of products within 90 days. In this exclusive webinar, Christophe will cover key aspects of his journey, including: LLM Development & Quick Wins 🤖 Understand how LLMs differ from traditional software, identifying opportunities for rapid development and deployment.

article thumbnail

Ditch the Wi-Fi: How to add a wired network to your home without Ethernet cable

Collaboration 2.0

Running Ethernet wiring is a messy, expensive job. If you have cable outlets, you can use an inexpensive adapter to set up a high-speed wired connection with minimal effort.

98
article thumbnail

US Sanctions Russian Media for Secretly Funding Ukraine War

Data Breach Today

Biden Administration Hits Russian Media With More Sanctions for Covert Operations The U.S. Department of State announced additional sanctions Friday against the Kremlin news outlet RT after officials received new information from employees of the organization that revealed how it has become a key component in the Russian military machine.

Military 156
article thumbnail

How to upgrade Windows Home edition to Pro (and why you would)

Collaboration 2.0

You've got a new PC running Windows 11 Home. You want to upgrade to Windows 11 Pro. Here's how to make that upgrade happen, and how to restore that upgrade if necessary.

98