WIRED Threat Level

FEBRUARY 16, 2021

It's is a bigger threat than ever. Here are some ways you can defend yourself. Security Security / Security Advice

Phishing 103

Phishing IT Security 103

Data Breach Today

FEBRUARY 15, 2021

States Would Join 3 Others That Have Already Enacted Laws Five states are making progress this year toward passing privacy legislation along the lines of California's Consumer Privacy Act, according to the International Association of Privacy Professionals. Here's a status report

Privacy 220

Privacy 220

OpenText Information Management

FEBRUARY 17, 2021

Business and litigation go hand in hand in the 21st century. From litigation support personnel to the lawyers themselves, organizations face a common challenge: how to streamline processes and procedures to simplify and thoroughly respond to on-going litigation requests.

Data collection 63

Data collection Security 63

Krebs on Security

FEBRUARY 19, 2021

The leader of Mexico’s Green Party has been removed from office following allegations that he received money from a Romanian ATM skimmer gang that stole hundreds of millions of dollars from tourists visiting Mexico’s top tourist destinations over the past five years.

Communications 236

Communications Marketing IT Security 236

Speaker: Guy Martin, Executive Director of OASIS Open

The COVID-19 global pandemic has raised the already bright visibility of technology to an even higher level. Join Guy Martin, Executive Director at OASIS Open, as he presents this webinar that will discuss how we can make open source and open standards even more effective by helping them recapture their strong partnership.

IT

The Last Watchdog

FEBRUARY 15, 2021

Cybersecurity training has steadily gained traction in corporate settings over the past decade, and rightfully so. In response to continuing waves of data breaches and network disruptions, companies have made a concerted effort and poured substantial resources into promoting data security awareness among employees, suppliers and clients. Safeguarding data in workplace settings gets plenty of attention. Related: Mock attack help schools prepare for hackers.

Education 119

Education Cybersecurity Security awareness Data breaches 119

Schneier on Security

FEBRUARY 15, 2021

Vice is reporting on a new police hack: playing copyrighted music when being filmed by citizens, trying to provoke social media sites into taking the videos down and maybe even banning the filmers: In a separate part of the video, which Devermont says was filmed later that same afternoon, Devermont approaches [BHPD Sgt. Billy] Fair outside.

Archiving 113

Archiving IT 113

Krebs on Security

FEBRUARY 15, 2021

As a total sucker for anything skimming-related, I was interested to hear from a reader working security for a retail chain in the United States who recently found Bluetooth-enabled skimming devices placed over top of payment card terminals at several stores.

Retail 222

Retail Risk IT Security 222

Security Affairs

FEBRUARY 15, 2021

Microsoft says it found 1,000-plus developers’ fingerprints on the SolarWinds attack. Microsoft’s analysis of the SolarWinds supply chain attack revealed that the code used by the threat actors was the work of a thousand developers.

Authentication 113

Authentication Phishing Government Information Security 113

Data Breach Today

FEBRUARY 18, 2021

Deputy National Security Adviser Anne Neuberger Offers an Update on Investigation In an update on the investigation into the SolarWinds supply chain attack, Deputy National Security Adviser Anne Neuberger said the Biden administration is preparing "executive action" to address security shortcomings that have come to light.

Security 226

Security 226

Advertisement

Xandr, a division of AT&T, has built an identity graph that connects information on people, households, and more. The company is using this graph to provide advertisers an ability to deliver commercials more successfully than ever before. Learn more.

Analytics

Schneier on Security

FEBRUARY 13, 2021

Bloomberg News has a major story about the Chinese hacking computer motherboards made by Supermicro, Levono, and others. It’s been going on since at least 2008.

Manufacturing 113

Manufacturing Communications Cloud IT 113

Krebs on Security

FEBRUARY 17, 2021

The U.S.

Blockchain 207

Blockchain Financial Services Phishing Ransomware 207

WIRED Threat Level

FEBRUARY 17, 2021

Two distinct strains of malware have already adjusted to the new silicon just months after its debut. Security Security / Cyberattacks and Hacks

IT 108

IT Security 108

Data Breach Today

FEBRUARY 16, 2021

Unpatched, Open-Source Versions of Centreon IT Monitoring Tool Hacked, CERT-FR Says French cybersecurity authorities are warning that widely used, open-source IT monitoring software called Centreon appears to have been hit by Russian hackers.

Cybersecurity 224

Cybersecurity IT 224

Advertisement

In this whitepaper from Onna, we will walk you through data retention best practices and provide you with a downloadable template to help you get organized and gain better visibility into your data’s lifecycle.

Schneier on Security

FEBRUARY 19, 2021

This report is six months old, and I don’t know anything about the organization that produced it, but it has some alarming data about router security. Conclusion: Our analysis showed that Linux is the most used OS running on more than 90% of the devices.

Security 105

Security Paper IT 105

Security Affairs

FEBRUARY 14, 2021

The FBI is warning companies about the use of out-of-date Windows 7 systems, desktop sharing software TeamViewer, and weak account passwords.

Passwords 110

Passwords Systems administration Access Risk 110

Dark Reading

FEBRUARY 19, 2021

Kia Motors America states there is no evidence its recent systems outage was caused by a ransomware attack

Ransomware 104

Ransomware IT 104

Data Breach Today

FEBRUARY 16, 2021

Reported Attempt at Stealing COVID-19 Data Comes in Wake of Global Warnings South Korean intelligence officials allege that North Korean hackers attempted to steal COVID-19 vaccine and treatment data by hacking the U.S. pharmaceutical firm Pfizer

Healthcare 213

Healthcare 213

Speaker: Shannon Lietz, Director of DevSecOps Team, Intuit

The new DevSecOps team is up and running, and you feel ready to take on rising security threats while delivering quality software updates. But that leaves just one question: how do you monitor your new program as effectively and efficiently as possible? Join Shannon Lietz, Director of DevsecOps at Intuit, and award-winning innovator, to learn the answers to these questions so you can lead your DevSecOps team to the top!

Security

WIRED Threat Level

FEBRUARY 15, 2021

A French security agency warns that the destructively minded group has exploited an IT monitoring tool from Centreon. Security Security / Cyberattacks and Hacks

IT 106

IT Security 106

Security Affairs

FEBRUARY 13, 2021

Court documents obtained by Forbes revealed that the FBI may have a tool that allows accessing private Signal messages on iPhones. Court documents related to a recent gun-trafficking case in New York and obtained by Forbes revealed that the FBI may have a tool to access private Signal messages.

Access 105

Access Metadata Encryption Information Security 105

Dark Reading

FEBRUARY 15, 2021

Users' distrust of corporate security teams is exposing businesses to unnecessary vulnerabilities

Security 107

Security 107

Data Breach Today

FEBRUARY 13, 2021

Breach Occurred After System Admin Granted Unauthorized Access Russian-Dutch multinational eCommerce company Yandex sustained a data breach in which 4,887 customer accounts were compromised after an unidentified employee with systems admin privileges gave unauthorized access to attackers

Data breaches 209

Data breaches Access 209

Advertiser: Amplitude

As part of our goal to continue helping our community during these times, we wanted to share with you this critical data on the state of digital products across industries and provide context on how businesses are responding to the changing winds.

B2B

WIRED Threat Level

FEBRUARY 14, 2021

The lucrative business of dealing in code vulnerabilities is central to espionage and war planning, which is why brokers never spoke about it—until now. Security Security / National Security

Marketing 103

Marketing IT Security 103

Schneier on Security

FEBRUARY 17, 2021

Interesting research on persistent web tracking using favicons. For those who don’t know, favicons are those tiny icons that appear in browser tabs next to the page name.).

Paper 99

Paper Privacy IT 99

Security Affairs

FEBRUARY 19, 2021

A privacy bug in the Brave Browser caused the leak of the Tor onion URL addresses visited in the Tor mode by the users. A bug in the Private Window with Tor implemented in the Brave web browser could reveal the onion sites visited by the users.

Privacy 96

Privacy IT Security 96

Data Breach Today

FEBRUARY 16, 2021

Flaw Was Present in Microsoft Defender Since 2009, SentinelOne Finds Microsoft has patched a 12-year-old vulnerability in Microsoft Defender that, if exploited, could enable nonadministrative users to escalate privilege in the application.

Security 201

Security 201

Advertiser: UserTesting

Up to 80% of new products fail. The reality is harsh and the reasons why are endless. Perhaps the new product couldn’t oust a customer favorite. Maybe it looked great but was too hard to use. Or, despite being a superior product, the go-to-market strategy failed. There’s always a risk when building a new product, but you can hedge your bets by understanding exactly what your customers' expectations truly are at every step of the development process.

Risk

Dark Reading

FEBRUARY 19, 2021

A proof-of-concept program infects systems with ARM64-compiled binaries and then reaches out to download additional functionality

95

95

WIRED Threat Level

FEBRUARY 13, 2021

The “big hack” redux, riot planning on Facebook, and more of the week's top security news. Security Security / Security News

IT 84

IT Security 84

Security Affairs

FEBRUARY 18, 2021

PaloAlto Network warns of the WatchDog botnet that uses exploits to take over Windows and Linux servers and mine cryptocurrency. Security researchers at Palo Alto Networks uncovered a cryptojacking botnet, tracked as WatchDog, that is targeting Windows and Linux systems.

Mining 97

Mining Cloud Access Information Security 97