IT Governance

FEBRUARY 22, 2022

Information security management is a way of protecting an organisation’s sensitive data from threats and vulnerabilities. The process is typically embedded via an ISMS (information security management system) , which provides the framework for managing information security. At the centre of the framework is information risk management in, which organisations assess risks and the ways that they can compromise the confidentiality, integrity and availability of information.

Information Security 138

Information Security Security Data breaches Risk 138

Krebs on Security

FEBRUARY 22, 2022

Missouri Governor Mike Parson made headlines last year when he vowed to criminally prosecute a journalist for reporting a security flaw in a state website that exposed personal information of more than 100,000 teachers. But Missouri prosecutors now say they will not pursue charges following revelations that the data had been exposed since 2011 — two years after responsibility for securing the state’s IT systems was centralized within Parson’s own Office of Administration.

Education 330

Education Access Security Communications 330

Hunton Privacy

FEBRUARY 22, 2022

On February 14, 2022, Noom Inc., a popular weight loss and fitness app, agreed to pay $56 million, and provide an additional $6 million in subscription credits to settle a putative class action in New York federal court. The class is seeking conditional certification and has urged the court to preliminarily approve the settlement. The suit was filed in May 2020 when a group of Noom users alleged that Noom “actively misrepresents and/or fails to accurately disclose the true characteristics of its

IT 121

IT Marketing Privacy 121

OpenText Information Management

FEBRUARY 22, 2022

The last two years have forced companies and organizations of all sizes to reassess their processes and operational methods and to change their mindset about how best to operate as a business. For OpenText, that has meant doubling down on the product innovations that allow people to reimage how and where they work, how goods … The post Announcing OpenText Cloud Editions 22.1 appeared first on OpenText Blogs.

Cloud 118

Cloud Content services Customer Experience ECM 118

Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage

Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.

IT

Schneier on Security

FEBRUARY 22, 2022

The US National Cyber Director Chris Inglis wrote an essay outlining a new social contract for the cyber age: The United States needs a new social contract for the digital age — one that meaningfully alters the relationship between public and private sectors and proposes a new set of obligations for each. Such a shift is momentous but not without precedent.

Cybersecurity 114

Cybersecurity Marketing Encryption Government 114

eSecurity Planet

FEBRUARY 22, 2022

Most attacks make would-be victims click to install malware or redirect them to a phishing page to steal their credentials. Zero-click attacks remove this hurdle. They can compromise the targeted device despite a victim’s good security hygiene and practices. There is no need for social engineering , as the program can implant backdoors directly without forced consent.

Government 108

Government Marketing Analytics Access 108

DLA Piper Privacy Matters

FEBRUARY 22, 2022

Authors: Denise Lebeau-Marianna & Divya Shanmugathas. The French Supervisory Authority (the “ CNIL ”) regularly conducts investigations based on various triggering events such as a complaint, an article or its annual program that the CNIL regularly publishes on its website. On 15 February 2022, published a post regarding its upcoming dawn raids for 2022.

IT 105

IT Cloud Personal data Data breaches 105

Hunton Privacy

FEBRUARY 22, 2022

On January 4, 2022, the Federal Trade Commission published a blog post reminding companies that “the duty to take reasonable steps to mitigate known software vulnerabilities implicates laws including, among others, the Federal Trade Commission Act and the Gramm Leach Bliley Act,” in response to Log4Shell’s public disclosure of the Log4j vulnerability.

Privacy 102

Privacy Libraries Cybersecurity Security 102

Security Affairs

FEBRUARY 22, 2022

US cookware distributor giant Meyer Corporation discloses a data breach that affected thousands of its employees. Meyer Corporation, the second-largest cookware distributor globally, has disclosed a data breach that affects thousands of its employees. The attack took place on October 25, 2021, as reported by the data breach notification letter shared with the U.S.

Data breaches 102

Data breaches Insurance Ransomware Cybersecurity 102

Advertisement

Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

Risk

Threatpost

FEBRUARY 22, 2022

Researchers discovered a new, modular banking trojan with ties to Cerberus and Alien that has the capability to become a much larger threat than it is now.

IT 90

IT Security 90

Security Affairs

FEBRUARY 22, 2022

China-linked APT group APT10 (aka Stone Panda, Bronze Riverside) targets Taiwan’s financial trading sector with a supply chain attack. The campaign was launched by the APT10 group started in November 2021, but it hit a peak between 10 and 13 2022, Taiwanese cybersecurity firm CyCraft reported. The group (also known as Cicada, Stone Panda , MenuPass group, Bronze Riverside, and Cloud Hopper ) has been active at least since 2009, in April 2017 experts from PwC UK and BAE Systems uncovered

Passwords 95

Passwords Cloud Security Cybersecurity 95

OpenText Information Management

FEBRUARY 22, 2022

The explosion of a remote and hybrid workforce has increased the need for easy and secure collaboration to execute business processes and transactions. Without effective digital collaboration and integrated business processes, companies face operational inefficiency and compliance risks.? OpenText™ Content Cloud, Cloud Edition (CE) 22.1, offers new product innovations and enhancements that: Improve collaboration Integrate e-signatures Accelerate … The post Announcing OpenText Content Cl

Cloud 81

Cloud Compliance Risk Content services 81

Security Affairs

FEBRUARY 22, 2022

American worldwide logistics and freight forwarding company Expeditors International shuts down global operations after cyber attack. American logistics and freight forwarding company Expeditors International was hit by a cyberattack over the weekend that paralyzed most of its operations worldwide. Expeditors company has over 18,000 employees worldwide and has annual gross revenue of around $10 billion.

Ransomware 93

Ransomware Cybersecurity Security IT 93

Advertisement

Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.

Security

WIRED Threat Level

FEBRUARY 22, 2022

Anything from a metallic Rubik’s cube to an aluminum trash can inside a room could give away your private conversations.

Security 98

Security 98

Security Affairs

FEBRUARY 22, 2022

Threat actors install Cobalt Strike beacons on vulnerable Microsoft SQL Servers to achieve a foothold in the target network. Researchers from Ahn Lab’s ASEC spotted a new wave of attacks deploying Cobalt Strike beacons on vulnerable Microsoft SQL Servers to achieve initial access to target networks and deploy malicious payloads. The threat actors behind the campaign are targeting poorly secured Microsoft SQL Servers exposed online.

Passwords 92

Passwords Access Security IT 92

Thales Cloud Protection & Licensing

FEBRUARY 22, 2022

Award Winning Solutions to Achieve a Holistic Approach to Cybersecurity. madhav. Tue, 02/22/2022 - 08:12. A holistic, cloud-based cybersecurity solution helps organizations quickly and easily increase their security posture, and comprehensively address the key areas of vulnerability by providing effective data classification, protection and access strategies to secure even the most sensitive data in a multi cloud or hybrid environment.

Cybersecurity 71

Cybersecurity Cloud Encryption Authentication 71

Security Affairs

FEBRUARY 22, 2022

The Ukrainian police arrested a gang specialized in the sale of stolen payment card data through phishing attacks. The cybercrime unit of the Ukrainian police has arrested a group of cybercriminals who managed to steal payment card data from at least 70,000 people by setting up mobile fake top-up services. The police arrested five that created and administered more than 40 phishing sites used to harvest bank card data of unaware citizens.

Phishing 86

Phishing Analytics Sales Marketing 86

Advertisement

“Reimagined: Building Products with Generative AI” is an extensive guide for integrating generative AI into product strategy and careers featuring over 150 real-world examples, 30 case studies, and 20+ frameworks, and endorsed by over 20 leading AI and product executives, inventors, entrepreneurs, and researchers.

Threatpost

FEBRUARY 22, 2022

The overall number of attacks on mobile users is down, but they're getting slicker, both in terms of malware functionality and vectors, researchers say.

Security 80

Security 80

Dark Reading

FEBRUARY 22, 2022

Threat actors maintained their relentless attacks on enterprise end users for yet another year, new study shows.

Phishing 93

Phishing 93

OpenText Information Management

FEBRUARY 22, 2022

The ability to sign documents as part of a secure digital workflow is an essential capability for most businesses. As organizations continue to adopt a digital-first approach and commit to more paperless processes, some tasks (like signing documents) are continuing to evolve based on the latest technologies available. This includes finding ways to deeply integrate … The post Introducing innovations that keep approval processes flowing appeared first on OpenText Blogs.

Security 71

Security Content services 71

IG Guru

FEBRUARY 22, 2022

Check out the article here. The post Meta agrees to pay $90 million settlement in decade-old Facebook privacy suit via ZDNet appeared first on IG GURU.

Privacy 78

Privacy Information governance Government 78

Advertisement

If you’re considering migrating from DataStax Enterprise (DSE) to open source Apache Cassandra®, our comprehensive guide is tailored for architects, engineers, and IT directors. Whether you’re motivated by cost savings, avoiding vendor lock-in, or embracing the vibrant open-source community, Apache Cassandra offers robust value. Transition seamlessly to Instaclustr Managed Cassandra with our expert insights, ensuring zero downtime during migration.

IT

OpenText Information Management

FEBRUARY 22, 2022

Reach your customers wherever they are with OpenText Notifications Mobile devices are deeply embedded in modern life. In 2021, consumers downloaded 230 billion mobile apps to their connected devices – up by more than 63% from 2016 according to Statista. Push notifications have the power to drive repeat purchases, re-engage lapsed users and guide conversions. … The post Introducing push notifications to power personalized customer experiences at scale appeared first on OpenText Blogs.

Customer Experience 63

Customer Experience Digital transformation Communications 63

Dark Reading

FEBRUARY 22, 2022

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

81

81

OpenText Information Management

FEBRUARY 22, 2022

Integrating external people into collaborative business is high-cost and high-risk. Trading partners, corporate clients, vendors, and other external ecosystems all require access to critical enterprise information and services, but associated cost and risk diminish returns: manual onboarding processes, hands-on user administration, retro user experiences, security incidents and lack of visibility.

Risk 58

Risk Access Security Cloud 58

Dark Reading

FEBRUARY 22, 2022

ISC(2) survey also found that half of cybersecurity teams worldwide worked on fixing Log4j issues on weekends and during time off.

Cybersecurity 81

Cybersecurity 81

Advertisement

Are you trying to decide which entity resolution capabilities you need? It can be confusing to determine which features are most important for your project. And sometimes key features are overlooked. Get the Entity Resolution Evaluation Checklist to make sure you’ve thought of everything to make your project a success! The list was created by Senzing’s team of leading entity resolution experts, based on their real-world experience.

IT

OpenText Information Management

FEBRUARY 22, 2022

As timelines and budgets continue to shrink and the volume of ESI in eDiscovery and investigation matters continues to grow exponentially, the substantial time and cost savings delivered by technology-assisted review (TAR) is more critical than ever. Put simply, there is too much data to rely solely on eyes-to document review an entire collection. TAR … The post Introducing OpenText Insight TAR Predict best passage highlighting appeared first on OpenText Blogs.

58

58

Threatpost

FEBRUARY 22, 2022

The Conti gang breached the cookware giant's network, prepping thousands of employees’ personal data for consumption by cybercrooks.

Personal data 65

Personal data Cloud Security 65

OpenText Information Management

FEBRUARY 22, 2022

Helping businesses and organizations keep operations in a trusted state In today’s digital world, enterprises and organizations of all sizes have one thing in common – their Intellectual Property and valuable assets are constantly exposed to risks from sophisticated attackers who persistently attempt to penetrate their networks. Networks are the unseen boundaries of the modern … The post Introducing Bricata Network Detection & Response appeared first on OpenText Blogs.

Risk 58

Risk Security 58