Data Breach Today
SEPTEMBER 15, 2020
'Human Error' Results in 18,000 Individuals' Test Results Being Exposed in Wales What's one of the worst things that can happen during a pandemic? The answer is anything that gives people less reason to trust in their public health system to handle the crisis. Enter a data breach that has exposed personal information for everyone who's ever tested positive for the disease in Wales.
AIIM
SEPTEMBER 15, 2020
This week brings another great episode of AIIM On Air , where we continue to explore the challenges, opportunities, and technologies that are driving digital transformation today. I was pleased to speak with Regina Martin , Records Manager at Howard County Government from Columbia, Maryland, in this episode. I caught up with Regina at the AIIM20 conference in Dallas earlier this year.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Data Breach Today
SEPTEMBER 15, 2020
Researchers: Hackers May Have Used Magento Zero-Day Exploit From Friday through Monday, malicious JavaScript skimming code was injected into nearly 2,000 e-commerce sites that were running an older version of Adobe's Magento software, possibly resulting in the theft of payment card data, according to Sanguine Security.
WIRED Threat Level
SEPTEMBER 15, 2020
Sara-Jayne Terp uses the tools of cybersecurity to track false claims like they’re malware. Her goal: Stop dangerous lies from hacking our beliefs.
Advertisement
Many organizations today are unlocking the power of their data by using graph databases to feed downstream analytics, enahance visualizations, and more. Yet, when different graph nodes represent the same entity, graphs get messy. Watch this essential video with Senzing CEO Jeff Jonas on how adding entity resolution to a graph database condenses network graphs to improve analytics and save your analysts time.
Data Breach Today
SEPTEMBER 15, 2020
Fraud Scheme Exposes Data of 46,000 Veterans A security incident in which hackers used social engineering techniques to divert Department of Veterans Affairs payments intended for healthcare providers compromised the personal information of 46,000 U.S. veterans.
Information Management Today brings together the best content for information management professionals from the widest variety of industry thought leaders.
Data Breach Today
SEPTEMBER 15, 2020
Mastercard's Sujay Vasudevan on the New Payment Fraud Trends Fighting payment fraud requires protecting far more than just payment data, says Sujay Vasudevan, vice president of cyber and intelligence solutions at Mastercard, who describe key steps.
Security Affairs
SEPTEMBER 15, 2020
Microsoft released the Project OneFuzz, an open-source fuzzing framework for its cloud computing service Azure. Microsoft this week announced the release of the Project OneFuzz which is an open-source fuzzing framework for its cloud computing service Azure. The project was previously used by the IT giant to find vulnerabilities in the popular service. “Today, we’re excited to release this new tool called Project OneFuzz, an extensible fuzz testing framework for Azure.
IT Governance
SEPTEMBER 15, 2020
Public Health Wales has confirmed that it accidentally published the personal data of 18,105 people who tested positive for coronavirus. The information was accessible on a publicly accessible server for 20 hours on 30 August. In most cases, patients’ initials, dates of birth, geographical area and gender were exposed, which fortunately presents little risk.
Threatpost
SEPTEMBER 15, 2020
Security researchers and U.S. government authorities alike are urging admins to address Microsoft's critical privilege escalation flaw.
Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage
Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.
Security Affairs
SEPTEMBER 15, 2020
Experts warn of a surge in the DDoS attacks against education institutions and the academic industry across the world. While the popularity of online learning is increasing due to the ongoing Coronavirus pandemic, threat actors are launching distributed denial-of-service (DDoS) on education institutions and the academic industry across the world. The DDoS attacks are causing severe issues to the targeted education institutions such as temporarily takedown of the network and online classes.
Threatpost
SEPTEMBER 15, 2020
Vulnerabilities ‘that have existed for years’ in WS-Trust could be exploited to attack other services such as Azure and Visual Studio.
WIRED Threat Level
SEPTEMBER 15, 2020
The US government has detained thousands of wireless earbuds on suspicion of being fake Apple goods—despite crystal clear branding from an established company.
Security Affairs
SEPTEMBER 15, 2020
Adobe has released an out-of-band security update to address three ‘Important’ security vulnerabilities in the Adobe Media Encoder. Adobe has released an out-of-band security update for Adobe Media Encoder that addresses three ‘Important’ Information Disclosure flaws. The three vulnerabilities could be exploited by an attacker to access sensitive information that is leaked in the security of the active user.
Advertisement
Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.
DXC Technology
SEPTEMBER 15, 2020
??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????? ???????????????????????????????????????????????????????????????????????IT???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
WIRED Threat Level
SEPTEMBER 15, 2020
How Dana DeBeauvoir set off the biggest, weirdest, and most promising revolution in election technology since the 1800s.
Schneier on Security
SEPTEMBER 15, 2020
Interesting privacy analysis of the Ambient Light Sensor API. And a blog post. Especially note the “Lessons Learned” section.
Threatpost
SEPTEMBER 15, 2020
Two bugs (CVE-2020-4703 and CVE-2020-4711) in IBM's Spectrum Protect Plus data-storage protection solution could enable remote code execution.
Advertisement
Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.
Security Affairs
SEPTEMBER 15, 2020
CISA published an advisory on China-linked groups targeting government agencies by exploiting flaws in Microsoft Exchange, Citrix, Pulse, and F5 systems. CISA published a security advisory warning of a wave of attacks carried out by China-linked APT groups affiliated with China’s Ministry of State Security. Chinese state-sponsored hackers have probed US government networks looking for vulnerable networking devices that could be compromised with exploits for recently disclosed vulnerabiliti
WIRED Threat Level
SEPTEMBER 15, 2020
The Kremlin has meddled in so many elections that democracy’s immune system has gotten wise to its threats. Here are lessons other countries can teach us.
Threatpost
SEPTEMBER 15, 2020
QR code usage is soaring in the pandemic -- but malicious versions aren't something that most people think about.
WIRED Threat Level
SEPTEMBER 15, 2020
Whether you’re casting a ballot in person or by mail, there’s plenty to worry about. Mass voter fraud shouldn’t be on the list.
Advertisement
“Reimagined: Building Products with Generative AI” is an extensive guide for integrating generative AI into product strategy and careers featuring over 150 real-world examples, 30 case studies, and 20+ frameworks, and endorsed by over 20 leading AI and product executives, inventors, entrepreneurs, and researchers.
Dark Reading
SEPTEMBER 15, 2020
The pandemic-related shift to remote work and the growing availability of ransomware-as-a-service were two major drivers, CrowdStrike says.
Threatpost
SEPTEMBER 15, 2020
Social engineering and employee mistakes lead to breach Veteran's Administration and the National Health Service.
Dark Reading
SEPTEMBER 15, 2020
Without the right reinforcements, you could be barking at the moon.
Schneier on Security
SEPTEMBER 15, 2020
This is a current list of where and when I am scheduled to speak: I’m speaking at the Cybersecurity Law & Policy Scholars Virtual Conference on September 17, 2020. I’m keynoting the Canadian Internet Registration Authority’s online symposium, Canadians Connected , on Wednesday, September 23, 2020. I’m giving a webinar as part of the Online One Conference 2020 on September 29, 2020.
Advertisement
If you’re considering migrating from DataStax Enterprise (DSE) to open source Apache Cassandra®, our comprehensive guide is tailored for architects, engineers, and IT directors. Whether you’re motivated by cost savings, avoiding vendor lock-in, or embracing the vibrant open-source community, Apache Cassandra offers robust value. Transition seamlessly to Instaclustr Managed Cassandra with our expert insights, ensuring zero downtime during migration.
Dark Reading
SEPTEMBER 15, 2020
CISA has issued an alert following the discovery of publicly available exploit code for Windows elevation of privilege flaw CVE-2020-1472.
The Guardian Data Protection
SEPTEMBER 15, 2020
Canberra company recovered vast trove of information from corrupted China files When a group of international media organisations this week revealed details of a Chinese tech company’s vast database profiling millions of people around the globe, it was in no small part due to a small Australian cybersecurity firm established only last year. The Canberra-based firm, Internet 2.0, was co-founded by the cybersecurity expert Robert Potter, who was an adviser to the then Labor MP Gai Brodtmann when s
Dark Reading
SEPTEMBER 15, 2020
As many organizations pivot to working from home, here are some considerations for prioritizing the new security protocols.
Expert insights. Personalized for you.
305 
Let's personalize your content