Krebs on Security

APRIL 15, 2020

The Coronavirus has prompted thousands of information security professionals to volunteer their skills in upstart collaborative efforts aimed at frustrating cybercriminals who are seeking to exploit the crisis for financial gain. At least three major industry groups are working to counter the latest cyber threats and scams.

Cybersecurity 294

Cybersecurity Phishing Government Ransomware 294

Security Affairs

FEBRUARY 21, 2024

government offers rewards of up to $15 million for information that could lead to the identification or location of LockBit ransomware gang members and affiliates. Yesterday, a joint law enforcement action, code-named Operation Cronos , conducted by law enforcement agencies from 11 countries disrupted the LockBit ransomware operation.

Energy and Utilities 99

Energy and Utilities Ransomware Agriculture Manufacturing 99

Security Affairs

APRIL 21, 2024

Every week the best security articles from Security Affairs are free for you in your email box. carmaker with phishing attacks Law enforcement operation dismantled phishing-as-a-service platform LabHost Previously unknown Kapeka backdoor linked to Russian Sandworm APT Cisco warns of a command injection escalation flaw in its IMC.

Data breaches 107

Data breaches Security MDM Ransomware 107

IBM Big Data Hub

APRIL 24, 2024

An online retailer always gets users’ explicit consent before sharing customer data with its partners. A navigation app anonymizes activity data before analyzing it for travel trends. One cannot overstate the importance of data privacy for businesses today. The user can accept or reject each use of their data individually.

Data Privacy 71

Data Privacy Privacy GDPR Personal data 71

Krebs on Security

JUNE 15, 2021

” The indictment also says Witte provided code to the Trickbot Group for a web panel used to access victim data stored in a database. law enforcement agencies. “Several group members had AllaWitte folders with data. . “Several group members had AllaWitte folders with data.

Ransomware 298

Ransomware Passwords Government Access 298

The Last Watchdog

OCTOBER 3, 2022

How did America and Americans regress to being much less secure than before the Internet? What everyone doesn’t know is how irrational the Internet’s utopian founding premises have proven to be concerning America’s and Americans’ security over the last quarter century. The first irrational security-related premise is that U.S.

Government 170

Government Authentication Communications Privacy 170

Hunton Privacy

JUNE 16, 2021

After two rounds of public comments, the Data Security Law of the People’s Republic of China (the “DSL”) was formally issued on June 10, 2021, and will become effective on September 1, 2021. increasing the punishment dynamics for violations of the law. . increasing the punishment dynamics for violations of the law. .

Security 114

Security Education Cybersecurity Government 114

Krebs on Security

MARCH 16, 2020

Anyone who’s seen the 1984 hit movie Ghostbusters likely recalls the pivotal scene where a government bureaucrat orders the shutdown of the ghost containment unit , effectively unleashing a pent-up phantom menace on New York City. opted to stop providing that support.

Government 245

Government IT Risk Security 245

Krebs on Security

MARCH 1, 2022

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti , an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 million in annual revenue. ” GAP #1. 22, 2020, the U.S. 22, 2020, the U.S.

Ransomware 260

Ransomware Government Security IT 260

IT Governance

MARCH 20, 2024

In the UK, cyber security has been dropping down the board’s list of priorities. The UK government’s Cyber Security Breaches Survey 2023 confirms this trend. Fewer directors, trustees and other senior managers of both UK businesses and charities see cyber security as a high priority in 2023 compared to 2022.

Security 116

Security Data breaches Government Insurance 116

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S.

Data Privacy 138

Data Privacy Compliance Privacy Security 138

Security Affairs

OCTOBER 22, 2023

During a meeting of security chiefs of the Five Eyes alliance held in California, McCallum told BBC that the Chinese cyber espionage reached an epic scale. Chinese cyber espionage aims at obtaining commercial secrets and intellectual property to advantage the government of Beijing. ” reported BBC.

Military 135

Military Government Access Cybersecurity 135

Hunton Privacy

NOVEMBER 22, 2022

reports that, on November 18, 2022, the Government of India (“Government”) released the long-awaited fourth draft of India’s proposed privacy law, now renamed the Digital Personal Data Protection Bill. There is no separate category of sensitive personal data. . Rights of Data Principals. Kochhar & Co.

Personal data 102

Personal data Data breaches Government Compliance 102

Security Affairs

FEBRUARY 25, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. A new round of the weekly SecurityAffairs newsletter arrived!

Military 107

Military Security Ransomware Insurance 107

Schneier on Security

JULY 1, 2021

Here’s one more contribution to that issue: a research paper that the insurance industry is hurting more than it’s helping. However, the most pressing challenge currently facing the industry is ransomware. To date, the UK government has taken a light-touch approach to the cyber insurance industry.

Insurance 109

Insurance Ransomware Paper Marketing 109

Security Affairs

JANUARY 24, 2024

A ransomware attack against the Finnish IT services provider Tietoevry disrupted the services of some Swedish government agencies and shops. The company said that the ransomware attack took place on Friday night and impacted only one data center in Sweden. Tietoevry notified law enforcement and impacted customers.

Ransomware 119

Ransomware Government Retail Cloud 119

Collibra

SEPTEMBER 16, 2021

A data governance council is a governing body for strategizing data governance programs, raising awareness of its importance, approving enterprise data policies and standards, prioritizing related projects, and enabling ongoing support. What does a data governance council do?

Government 59

Government IT Privacy Sales 59

eSecurity Planet

APRIL 12, 2024

Data loss prevention (DLP) best practices are principles that help prevent intentional or unintentional data erasure. By following these guidelines, organizations can reduce the detrimental impact of data loss and quickly resume operations after an incident. Proofpoint’s 2024 data loss landscape report reveals 84.7%

Encryption 118

Encryption Risk Data breaches Access 118

eSecurity Planet

MARCH 3, 2023

The new document spells out an ambitious plan for implementing national cybersecurity controls and laws. The initiatives that stand out the most — critical infrastructure security standards, a national data privacy and security law, and liability for security failures — will likely take time and the support of Congress to implement.

Cybersecurity 102

Cybersecurity Government Manufacturing Personal data 102

The Last Watchdog

JULY 27, 2020

These heads of state and captains of industry even coined a buzz phrase, “stakeholder capitalism,” to acknowledge the need to take into account the interests of the economically disadvantaged and politically powerless citizens of the world as they bull ahead with commercial and political uses of AI. AI was prominent on their agenda.

IT 261

IT Government Artificial Intelligence Personal data 261

Security Affairs

SEPTEMBER 4, 2023

These scammers often attempt to disguise themselves as a government agency, bank, or other organization to lend legitimacy to their claims, for example, a postal service like the United States Postal Service (USPS), asking to pay additional delivery fees via credit card.

e-Delivery 117

e-Delivery Phishing Passwords IT 117

Krebs on Security

JUNE 18, 2021

NYSE:FAF ] was leaking more than 800 million documents — many containing sensitive financial data — related to real estate transactions dating back 16 years. Securities and Exchange Commission settled its investigation into the matter after the Fortune 500 company agreed to pay a paltry penalty of less than $500,000.

Insurance 265

Insurance Risk Financial Services Mining 265

Collibra

SEPTEMBER 16, 2021

A data governance council is a governing body for strategizing data governance programs, raising awareness of its importance, approving enterprise data policies and standards, prioritizing related projects, and enabling ongoing support. What does a data governance council do?

Government 52

Government IT Privacy Sales 52

Data Matters

MARCH 11, 2022

Securities and Exchange Commission (SEC) proposed new cybersecurity rules to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting by public companies. an incident in which a malicious actor has demanded payment to restore company data that was stolen or altered.

Cybersecurity 88

Cybersecurity Risk Government e-Discovery 88

DLA Piper Privacy Matters

AUGUST 23, 2021

In good news for organisations handling personal information, China’s Personal Information Protection Law (“ PIPL ”) was finalised on 20 August 2021, and will come into force on 1 November 2021. To be clear, this is not China’s own GDPR.

Data Privacy 111

Data Privacy Privacy Compliance Analytics 111

Hunton Privacy

JULY 13, 2022

On July 11, 2022, the Federal Trade Commission’s Bureau of Consumer Protection issued a business alert on businesses’ handling of sensitive data, with a particular focus on location and health data. According to the alert, the combination of location and health data “creates a new frontier of potential harms to consumers.”.

Marketing 124

Marketing Privacy Data collection Analytics 124

IT Governance

MARCH 29, 2024

Here are all our Q&As to date, grouped by broad topic: AI Cyber attacks and data breaches Cyber Essentials Cyber resilience Cyber security Data privacy DORA Incident response ISO 27001 PCI DSS PECR Security testing Training Miscellaneous To get new expert insights straight to your inbox, sign up to our weekly newsletter, the Security Spotlight.

Data Privacy 52

Data Privacy Compliance GDPR Privacy 52

Data Matters

FEBRUARY 11, 2022

Sean’s practice focuses on antitrust and consumer protection litigation and government investigations. Sean, who has spent his entire career handling complex antitrust litigation matters and government investigations, is among the country’s most experienced and highly regarded antitrust lawyers.

Government 88

Government Financial Services Privacy Marketing 88

Hunton Privacy

JULY 7, 2020

China has lacked a comprehensive data protection and data security law that regulates in detail requirements and procedures relating to the collection, processing, control and storage of personal data. In recent years, China has seen developments on data protection both in legislation and in practice.

Security 140

Security Military Government Risk 140

OpenText Information Management

NOVEMBER 16, 2021

OpenText is pleased to bring to market additional capabilities and offerings aimed at making the world a safer, more secure place by finding the truth in data. With OpenText™ Cloud Editions (CE) 21.4, appeared first on OpenText Blogs.

Cloud 57

Cloud Security Marketing Government 57

Hunton Privacy

MAY 3, 2021

On April 29, 2021, China issued a second draft version of the Data Security Law (“Draft DSL”). Data Protection Policy Based On Hierarchical Classification and Category. Nonetheless, the Draft DSL does not provide the definition of important data, which may be defined in future implementing rules.

Security 111

Security Cybersecurity Data collection Government 111

Security Affairs

OCTOBER 6, 2021

Resecurity researchers dumped Gigabytes of data from Agent Tesla C2Cs, one of the most well-known cyberespionage tools suffers a data leakage. The data extraction was made possible through a collaboration with Resecurity, law enforcement and several ISPs in the European Union, Middle East and North America.

Financial Services 135

Financial Services Retail Education Information Security 135

DLA Piper Privacy Matters

MAY 4, 2021

Second drafts of the new overarching national personal data protection and data security laws have just been published, and give a clearer picture of the impending new national frameworks in China. Draft Personal Information Protection Law.

Compliance 77

Compliance Security Personal data Privacy 77

Data Matters

APRIL 11, 2022

The concept of “important data” is a cornerstone of China’s data regulatory regime. The Cyber Security Law (2017) (the CSL ) prohibits operators of critical information infrastructures ( CIIs ) from transferring their “important data” and personal information outside of China. Then, what are “important data”?

Military 88

Military Artificial Intelligence Security Financial Services 88

Security Affairs

DECEMBER 1, 2019

Every week the best security articles from Security Affairs free for you in your email box. Iran – Government blocks Internet access in response to the protests. Federal Communications Commission has cut off government funding for equipment from Chinese firms. A new round of the weekly SecurityAffairs newsletter arrived!

Security 94

Security Ransomware Communications Personal data 94

Data Matters

MARCH 7, 2022

On 23 February 2022, the European Commission ( Commission ) proposed a draft of a regulation on harmonised rules on fair access to and use of data – also known as the Data Act. The Data Act is part of the Commission’s broader digital and data strategy, announced in February 2020, to make “Europe fit for the Digital Age”.

Big data 117

Big data Artificial Intelligence Cloud Manufacturing 117

Krebs on Security

FEBRUARY 10, 2020

Justice Department today unsealed indictments against four Chinese officers of the People’s Liberation Army (PLA) accused of perpetrating the 2017 hack against consumer credit bureau Equifax that led to the theft of personal data on nearly 150 million Americans. commercial and government interests. .” Not today, anyway.

Military 233

Military Phishing Government Sales 233