Dark Reading

NOVEMBER 11, 2021

The Great Resignation is upon us, and insider IP theft is surging as a result. But it is a solvable problem.

IT 80

IT 80

Security Affairs

NOVEMBER 11, 2021

Researchers at AT&T discovered a new BotenaGo botnet that is using thirty three exploits to target millions of routers and IoT devices. BotenaGo is a new botnet discovered by researchers at AT&T that leverages thirty three exploits to target millions of routers and IoT devices. Below is the list of exploits used by the bot: Vulnerability Affected devices CVE-2020-8515 DrayTek Vigor2960 1.3.1_Beta, Vigor3900 1.4.4_Beta, and Vigor300B 1.3.3_Beta, 1.4.2.1_Beta, and 1.4.4_Beta devices CVE-20

IoT 122

IoT Communications IT Security 122

WIRED Threat Level

NOVEMBER 11, 2021

Visitors to pro-democracy and media sites in the region were infected with malware that could download files, steal data, and more.

Security 135

Security 135

Threatpost

NOVEMBER 11, 2021

The One Font BEC campaign targets Microsoft 365 users and uses sophisticated obfuscation tactics to slip past security protections to harvest credentials.

Phishing 114

Phishing Security 114

Advertisement

Generative AI is upending the way product developers & end-users alike are interacting with data. Despite the potential of AI, many are left with questions about the future of product development: How will AI impact my business and contribute to its success? What can product managers and developers expect in the future with the widespread adoption of AI?

Analytics

Schneier on Security

NOVEMBER 11, 2021

ArsTechnica’s Sean Gallagher has a two – part article on “securing your digital life.” It’s pretty good.

Security 122

Security IT Risk Cybersecurity 122

Threatpost

NOVEMBER 11, 2021

Cyberattackers stole PS5 root keys and exploited the kernel, revealing rampant insecurity in gaming devices.

IoT 133

IoT 133

eSecurity Planet

NOVEMBER 11, 2021

Distributed denial of service (DDoS) attacks soared in the third quarter, giving organizations yet another cyber threat to worry about. Kaspersky researchers reported that total attacks were up by about a third from the second quarter. Even the slowest days saw 500 DDoS attacks; the busiest day, Aug. 18, saw a whopping 8,825 attacks. Kaspersky observed that “Q3 was unusually explosive for the number of DDoS attacks,” with “several thousand attacks per day on some days.”.

Manufacturing 101

Manufacturing Communications IoT Passwords 101

Hunton Privacy

NOVEMBER 11, 2021

On November 5, 2021, IAB Europe (“IAB EU”) announced that, in the coming weeks, the Belgian Data Protection Authority plans to share with other data protection authorities a draft ruling on the IAB EU Transparency & Consent Framework (“TCF”). The TCF is a GDPR consent solution built by IAB EU that has become a widely used approach to collecting consent to cookies under the GDPR.

GDPR 101

GDPR Personal data IT 101

Threatpost

NOVEMBER 11, 2021

Ransomware volumes are up 1000%. Aamir Lakhani, cybersecurity researcher and practitioner at FortiGuard Labs?, discusses secure email, network segmentation and sandboxing for defense.

Ransomware 101

Ransomware Security Cybersecurity 101

Advertisement

Many organizations today are unlocking the power of their data by using graph databases to feed downstream analytics, enahance visualizations, and more. Yet, when different graph nodes represent the same entity, graphs get messy. Watch this essential video with Senzing CEO Jeff Jonas on how adding entity resolution to a graph database condenses network graphs to improve analytics and save your analysts time.

Analytics

The Security Ledger

NOVEMBER 11, 2021

In this episode of the podcast (#230) Siddarth Adukia, a regional Director at NCC Group, joins host Paul Roberts to talk about the (cyber) risks and (public health) rewards of vaccine passport systems: how they work, how they can be compromised and what to do about it. The post Episode 230: Are Vaccine Passports Cyber Secure? appeared first on. Read the whole entry. » Click the icon below to listen.

Security 98

Security Risk Government Access 98

Dark Reading

NOVEMBER 11, 2021

Renowned hardware security expert raises alarm on the risk and dangers of cyberattackers targeting the current time-synchronization infrastructure.

Risk 109

Risk Security 109

Security Affairs

NOVEMBER 11, 2021

The FBI warned private industry partners of attempts by an Iranian threat actor to buy stolen information belonging to US organizations. The Federal Bureau of Investigation (FBI) issued a private industry notification (PIN) to warn private industry partners that Iran-linked threat actors are attempting to buy stolen information belonging to US businesses and organizations abroad.

Passwords 90

Passwords Sales Access Risk 90

Dark Reading

NOVEMBER 11, 2021

The rapid shift to a hybrid workplace and accelerated adoption of new technologies means it's time to rethink networking security approaches.

IT 106

IT Security 106

Advertisement

Start-ups & SMBs launching products quickly must bundle dashboards, reports, & self-service analytics into apps. Customers expect rapid value from your product (time-to-value), data security, and access to advanced capabilities. Traditional Business Intelligence (BI) tools can provide valuable data analysis capabilities, but they have a barrier to entry that can stop small and midsize businesses from capitalizing on them.

Analytics

Security Affairs

NOVEMBER 11, 2021

Threat actors compromised a server managing customer data for a Queensland water supplier and remained undetected for nine months. A served used by the SunWater statutory Queensland (Australia) Government-owned water supplier was compromised and threat actors remained undetected for nine longs, the annual financial audit report published by the Queensland Audit Office revealed.

Passwords 87

Passwords Security awareness Authentication Government 87

Threatpost

NOVEMBER 11, 2021

A bill introduced this week would regulate ransomware response by the country's critical financial sector.

Ransomware 109

Ransomware Government Security 109

Security Affairs

NOVEMBER 11, 2021

The US DoJ sentenced a Russian man for operating a large-scale digital advertising fraud scheme called Methbot (‘3ve’). The US DoJ sentenced the Russian nation Aleksandr Zhukov, aka the ‘King of Fraud,’ for operating a large-scale digital advertising fraud scheme called Methbot (‘ 3ve ‘) that stole at least $7 million from US organizations.

IT 84

IT Security Information Security 84

Thales Cloud Protection & Licensing

NOVEMBER 11, 2021

Don't Encrypt Everything; Protect Intelligently. divya. Thu, 11/11/2021 - 09:30. The volume of confidential documents created daily is, frankly, incalculable, and the volume of “everything” distributed across multiple data centers around the world is much, much more. And though you likely cannot calculate exactly how much data your organization holds; you know it is going to be a big and costly problem to “Encrypt Everything.”.

Encryption 71

Encryption Unstructured data Risk Cloud 71

Advertisement

Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

Risk

Dark Reading

NOVEMBER 11, 2021

Enterprises are more dependent than ever on open source software and need to manage the risk posed by vulnerabilities in components and third-party vendors.

Risk 107

Risk 107

Threatpost

NOVEMBER 11, 2021

A Russian-language threat group is available for hire, to steal data on journalists, political leaders, activists and from organizations in every sector.

Government 71

Government 71

Jamf

NOVEMBER 11, 2021

Mobile device management (MDM) has become a basic requirement for small businesses to keep things running smoothly. But many small- and medium-sized business need powerful, scalable solutions with expanded capabilities to survive, let alone compete in today’s market.

MDM 59

MDM Marketing 59

Dark Reading

NOVEMBER 11, 2021

ClusterFuzzLite is a stripped-down version of continuous fuzzing tool ClusterFuzz that integrates CI tools.

81

81

Advertisement

While data platforms, artificial intelligence (AI), machine learning (ML), and programming platforms have evolved to leverage big data and streaming data, the front-end user experience has not kept up. Holding onto old BI technology while everything else moves forward is holding back organizations. Traditional Business Intelligence (BI) aren’t built for modern data platforms and don’t work on modern architectures.

Artificial Intelligence

IG Guru

NOVEMBER 11, 2021

Come join us for a very informative learning opportunity on Microsoft Teams Records Management and Information Governance. REGISTER HERE November 2021 ARMA AZ Chapter MeetingThursday, November 18, 2021, 8:00 a.m. – 9:30 a.m. MSTLocation: Zoom (link provided after registration)#learning #microsoftteams#ARMA. The post Webinar: Records Management and Information Governance in Microsoft Teams via ARMA Arizona on November 18th, 2021 at 8am MST appeared first on IG GURU.

Records Management 60

Records Management Information governance Government Education 60

Dark Reading

NOVEMBER 11, 2021

New report suggests attacker is targeting trusted supply chain companies in order to compromise large numbers of downstream customers.

69

69

Data Protection Report

NOVEMBER 11, 2021

The Cyberspace Administration of China ( CAC ) released the draft Security Review Measures for Cross-Border Data Transfer (the Draft Security Review Measures ) for public comments on 29 October 2021 – shortly before the effective date of the Personal Information Protection Law ( PIPL ), 1 November 2021. The three pillars of China’s cyber security and data legislation – the Cyber Security Law ( CSL , effective on 1 June 2017), the Data Security Law ( DSL , effective on 1 September 2021), and the

Security 52

Security Risk Personal data Access 52

Docuware

NOVEMBER 11, 2021

Document management solutions have hundreds of features with the potential to improve the way your organization does its work. However, you wouldn’t purchase software solely because of any one of these capabilities. Based on our experience with DocuWare’s more than 15,000 customers in 100+ countries, we’ve determined which document management capabilities matter most.

IT 59

IT 59

Advertisement

Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.

Security

Dark Reading

NOVEMBER 11, 2021

Researchers detail their investigation of a cryptomining campaign stealing AWS credentials and how attackers have evolved their techniques.

Cloud 60

Cloud Security 60

Zapproved

NOVEMBER 11, 2021

Optical character recognition (OCR) identifies letters and numbers in image- or paper-based discovery, converting it to searchable electronic text.

Paper 52

Paper IT Artificial Intelligence 52

Rocket Software

NOVEMBER 11, 2021

When two companies come together, there are seemingly endless details that must be considered to integrate the activities of the organizations. Merger and acquisition (M&A) negotiations take careful planning and input from every level and department within each organization. At Rocket, we’ve been busy welcoming the ASG team into our Rocket family , and we’ve been intentional with each step to have a successful merger of the two communities.

Communications 52

Communications IT Security 52