Risk, Security and Video - Information Management Today

GSA Sparks Security Fears After Buying Risky Chinese Cameras

Data Breach Today

JANUARY 24, 2024

Experts Warn Against Increasing Federal Reliance on Chinese Technology Experts are raising fresh concerns about the "significant risk" for Chinese espionage against U.S. federal networks after a government watchdog caught the government's main acquisition arm purchasing unauthorized, Chinese-manufactured video conference cameras.

Manufacturing

Manufacturing Security Government Risk

Look Beyond TikTok: Massive Data Collection Is the Real Risk

Data Breach Today

MARCH 29, 2023

All Social Media Apps Collect Information on a Scale That Facilitates Surveillance There's much national security ado about how much user data gets collected by the Chinese-owned, wildly popular video-sharing app TikTok.

Data collection

Data collection Risk Government Security

NSA Offers Tips on Securing Unified Communication Channels

Data Breach Today

JUNE 18, 2021

Guidance Spells Out Best Risk Mitigation Practices The U.S. National Security Agency has released new guidance to help federal agencies as well as business enterprises protect their unified communications channels and voice/video over IP calls from cyberthreats.

Communications

Communications Security Risk

Alphv group claims the hack of Clarion, a global manufacturer of audio and video equipment for cars

Security Affairs

SEPTEMBER 24, 2023

The Alphv ransomware group claims to have hacked Clarion, the global manufacturer of audio and video equipment for cars and other vehicles. The Alphv ransomware group added Clarion, the global manufacturer of audio and video equipment for cars and other vehicles, to the list of victims on its Tor leak site.

Manufacturing

Manufacturing Ransomware Data breaches Risk

Secure Together: video conferencing, credential stuffing and eye strain

IT Governance

APRIL 15, 2020

Maybe you feel less guilty about having a mid-morning video chat with a colleague in lieu of your normal coffee break. The video conferencing platform Zoom has been heavily criticised in recent weeks , amid a series of allegations related to its inadequate cyber security and privacy measures. Cyber attacks. Phishing scams.

Security

Security Passwords Risk Phishing

Just Dance video game has been breached

IT Governance

DECEMBER 22, 2021

Ubisoft has confirmed that its popular video game series Just Dance has been targeted by cyber criminals. A statement from Ubisoft said that the breach was limited to “technical identifiers” including GameTags, profile IDs and device IDs, as well as recordings of Just Dance videos that were uploaded to a database accessible to other players.

Passwords

Passwords Risk Personal data Phishing

Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk

The Security Ledger

MAY 16, 2024

In this Spotlight Podcast, host Paul Roberts talks with Chris Walcutt, the CSO of DirectDefense about the rising cyber threats facing operational technology (OT) and how organizations that manage OT - including critical infrastructure owners can best manage increased cyber risks to OT environments. Read the whole entry. » For Hacking.

Risk

Risk Energy and Utilities Cybersecurity Systems administration

Clash of Clans gamers at risk while using third-party app

Security Affairs

DECEMBER 29, 2023

An exposed database and secrets on a third-party app puts Clash of Clans players at risk of attacks from threat actors. ” The exposed database puts Clash of Clans players at risk. The case is a stark example of the risks of using third-party apps.

Risk

Risk Access IT Data breaches

“At-Risk Meeting Notifier Zoom” feature alerts meeting organizers of Zoombombing risk

Security Affairs

NOVEMBER 17, 2020

The popular video conferencing application Zoom implemented the new “At-Risk Meeting Notifier” feature to warn of Zoombombing threat. Zoom announced the launch a new feature dubbed “At-Risk Meeting Notifier” to warn conference organizers of potential Zoombombing attacks. Delete the existing meeting.

Risk

Risk Passwords Security IT

Hong Kong firm loses over $25mn after employee’s video call with deepfake ‘chief financial officer’, others via WION

IG Guru

FEBRUARY 6, 2024

The post Hong Kong firm loses over $25mn after employee’s video call with deepfake ‘chief financial officer’, others via WION first appeared on IG GURU. Check out the story here.

Information governance

Information governance Risk Government Information Security

NIST Specialist Offers Telework Security Insights

Data Breach Today

APRIL 6, 2020

With the COVID-19 pandemic forcing large portions of the workforce to shift to telework, CISOs need to rethink corporate policies on the use of video conferencing platforms and other communications tools, says NIST's Jeff Greene, who offers risk mitigation advice.

Security

Security Communications Risk

Episode 257: Securing Software on Wheels with

The Security Ledger

MARCH 27, 2024

In this episode of The Security Ledger Podcast (#257) Paul speaks with Dennis Kengo Oka, a senior principal automotive security strategist at the firm Synopsys about the growing cyber risks to automobiles as connected vehicle features proliferate in the absence of strong cybersecurity protections. Read the whole entry. »

Security

Security Cybersecurity Risk IT

News alert: ACM TechBrief lays out risks, policy implications of generative AI technologies

The Last Watchdog

SEPTEMBER 27, 2023

“TechBrief: Generative AI” begins by laying out a core challenge: the rapid commercialization of GenAI poses multiple large-scale risks to individuals, society, and the planet that require a rapid, internationally coordinated response to mitigate.

Risk

Risk Education Artificial Intelligence Government

7 Considerations for a Smooth Video Conference

IG Guru

JUNE 24, 2020

The post 7 Considerations for a Smooth Video Conference appeared first on IG GURU. As we get used to teleconference calls, check out the considerations below to ensure the experience is smooth, impactful, and memorable! […].

Risk

Risk Privacy Information Security Security

Weekly Update 403

Troy Hunt

JUNE 6, 2024

I just watched back a little segment from this week's video and somehow landed at exactly the point where I said "I am starting to lose my patience with repeating the same thing over and over again" (about 46 mins if you want to skip to it), which is precisely how I wanted to start this post.

Risk

Risk Access IT Security

Video: Don’t be a Security Zombie!

KnowBe4

OCTOBER 29, 2018

We often ask information security and privacy professionals what keeps them up at night. Nine out of 10 say it’s fear of Security Zombies. From clicking on phishing emails to leaving personal information unsecured, the video explores the variety of dangers a lack of security awareness can pose. Get Your Free Animation.

Security

Security Security awareness Phishing Education

GUEST ESSAY: The post-pandemic challenges of securely managing employee endpoints

The Last Watchdog

JULY 1, 2022

This raises the concerns of corporate data security in remote working that still stand as a key challenge that organizations are trying to navigate, workforce productivity being the second. Managing endpoints securely . Tools and best practices. Organizations can then seek out tools for driving innovation and engagement.

Security

Security MDM Education Phishing

NSA releases guidance for securing Unified Communications and VVoIP

Security Affairs

JUNE 21, 2021

The US National Security Agency (NSA) released guidance for securing Unified Communications/Voice and Video over IP Systems (VVoIP). NSA last week released guidance for securing their communication systems, specifically Unified Communications (UC) and Voice and Video over IP (VVoIP). ” concludes the guide.

Communications

Communications Security Authentication Encryption

Thales + Imperva: Delivering the Next Generation of Data Security

Thales Cloud Protection & Licensing

JANUARY 8, 2024

Thales + Imperva: Delivering the Next Generation of Data Security madhav Tue, 01/09/2024 - 05:13 We are pleased to share that Thales has completed its acquisition of Imperva. You can also learn more in our video. Imperva is now merging with our Thales Cloud Protection & Licensing Business Line.

Security

Security Digital transformation Cybersecurity Analytics

Security Affairs newsletter Round 462 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 10, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Military Data breaches Ransomware

COVID-19 Risks of Flying

Schneier on Security

JUNE 24, 2020

This is all a prelude to saying that I have been paying a lot of attention to the COVID-related risks of flying. This video is worth watching.) I think that most of the risk is pre-flight, in the airport: crowds at the security checkpoints, gates, and so on. It seems that the airflow inside the cabin really helps.

Risk

Risk IT Security

Webinar: Shantanoo A. Govilkar, from DivIHN, will discuss recent trends in Information Governance & Risk Management via ARMA Chicago on February 13, 2024 at 12pm Central

IG Guru

FEBRUARY 5, 2024

This is a one-hour live video conference with an expert presenter and a chance to ask questions and connect with your fellow ARMA members. Govilkar, from DivIHN, will discuss recent trends in Information Governance & Risk Management via ARMA Chicago on February 13, 2024 at 12pm Central first appeared on IG GURU.

Information governance

Information governance Government Risk Privacy

Security Affairs newsletter Round 452 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 31, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Artificial Intelligence Ransomware Cybersecurity

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

IT Governance

APRIL 29, 2024

Keyboard app vulnerabilities reveal keystrokes to network eavesdroppers Security researchers have identified critical security vulnerabilities in Cloud-based pinyin keyboard apps from Baidu, Inc., We identified certain accounts that we believe are affiliated with the Spy.pet website, which we have subsequently banned.”

Data Privacy

Data Privacy Privacy Manufacturing Security

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

Wikipedia uses a CMS for textual entries, blog posts, images, photographs, videos, charts, graphics, and “ talk pages ” that help its many contributors collaborate. Security is essential for a CMS. Best security practices. percent of CMS users worry about the security of their CMS—while 46.4 What can you do about it?

CMS

CMS Security Encryption Data breaches

Flaws allow hacking a system playing untrusted videos on VLC Player

Security Affairs

JUNE 22, 2019

Two vulnerabilities in VLC media player could allow remote attackers to take full control over a computer system while playing untrusted videos. An attacker could remotely take full control over a computer system while playing untrusted videos with any version of VLC media player software prior to 3.0.7. Pierluigi Paganini.

Security

Security Risk Access IT

Discussing the risks of bullying for anonymous social app NGL

Security Affairs

JULY 8, 2022

This is a transcription of my complete interview with the program NEWSFEED at TRT, during which we discussed NGL software and the risks of bullying. Cyberbullying is dramatically increasing the risk of suicides among young people. Below is the video of the program: Follow me on Twitter: @securityaffairs and Facebook.

Risk

Risk IT Security

Video: Zoom Researcher Details Web Conference Security Risks, 2020 Threats

Threatpost

JANUARY 29, 2020

Maya Horowitz with Check Point Research discussed recently-disclosed Zoom vulnerabilities that could have opened up web conferencing meetings to hackers.

Risk

Risk Security IoT Cloud

Episode 256: Recursive Pollution? Data Feudalism? Gary McGraw On LLM Insecurity

The Security Ledger

FEBRUARY 21, 2024

Paul speaks with Gary McGraw of the Berryville Institute of Machine Learning (BIML), about the risks facing large language model machine learning and artificial intelligence, and how organizations looking to leverage artificial intelligence and LLMs can insulate themselves from those risks. The post Episode 256: Recursive Pollution?

Artificial Intelligence

Artificial Intelligence Risk Military Security

Nude Videos of Kids From Hacked Baby Monitors Were Sold on Telegram

WIRED Threat Level

JULY 15, 2023

Plus: A fitness app may have leaked the location of a murdered submarine captain, the privacy risks of filing taxes online, and how Facebook data was used in an abortion trial.

Privacy

Privacy Risk Security

Privacy and Data Security Risks in M&A Transactions: Video Series

Hunton Privacy

AUGUST 9, 2017

In a video roundtable series, Hunton & Williams LLP partners Lisa J. Friedberg and Lee Pacchia of Mimesis Law, discuss the special consideration that should be given to privacy and cybersecurity risks in corporate transactions. Sotto and Steven M. Haas and special counsel Allen C.

Risk

Risk Privacy Personal data Cybersecurity

ISO 27001 and Physical Security

IT Governance

MAY 15, 2024

Physical access control, physical security monitoring, CCTV, and more When we hear the term ‘information security’ – or, for that matter, ‘ISO 27001’ – our thoughts usually turn straight to cyber security. However, physical security is also an important aspect of information and data security.

Security

Security Information Security Access Cloud

GUEST ESSAY: Six risks tied to social media marketing that all businesses should heed

The Last Watchdog

MAY 2, 2019

While the internet and social media have been very positive for businesses, there remains an inherent risk when it comes to how brands manage their Facebook, Twitter, and Instagram accounts. 1 : Cybercrime Businesses should always be very aware of the threat of cybercriminals, and social media also poses very real cyber-security risks.

Risk

Risk Marketing Passwords Sales

Privacy and Data Security Risks in M&A Transactions: Part 2 of Video Series

Hunton Privacy

OCTOBER 19, 2017

They discuss due diligence, deal documents and best practices in privacy and data security. Watch the full videos: Segment 3 – Before, During and After a Deal and Segment 4 – Lessons Learned and Outlook for the Future.

Privacy

Privacy Risk Security Cybersecurity

EDPB Adopts Guidelines on Data Processing Through Video Devices

Hunton Privacy

JULY 26, 2019

The European Data Protection Board (the “EDPB”) recently adopted its Guidelines 3/2019 on processing of personal data through video devices (the “Guidelines”). Although the Guidelines provide examples of data processing for video surveillance, these examples are not exhaustive.

GDPR

GDPR Personal data Privacy Compliance

MY TAKE: COVID-19 cements the leadership role CISOs must take to secure company networks

The Last Watchdog

MAY 13, 2020

Chief Information Security Officers were already on the hot seat well before the COVID-19 global pandemic hit, and they are even more so today. They must rally the troops to proactively engage, day-to-day, in the intricate and absolutely vital mission of preserving the security of IT assets, without stifling innovation.

Security

Security Cybersecurity Military Risk

Canada bans WeChat and Kaspersky apps on government-issued mobile devices

Security Affairs

OCTOBER 30, 2023

Canada banned the Chinese messaging app WeChat and Kaspersky antivirus on government mobile devices due to privacy and security risks. The Government of Canada announced a ban on the use of the WeChat and Kaspersky applications on government-issued mobile devices due to privacy and security risks.

Government

Government Privacy Risk Data collection

Zoom Settles with FTC Over Deceptive Security Claims

Hunton Privacy

NOVEMBER 10, 2020

On November 9, 2020, the Federal Trade Commission announced it had entered into an consent agreement (the “Proposed Settlement”) with Zoom Video Communications, Inc. reviewing software updates for security flaws and ensuring that updates will not hamper third-party security features.

Security

Security Encryption Authentication Risk

Episode 257: Securing Software on Wheels with Dennis Kengo Oka of Synopsys

The Security Ledger

MARCH 27, 2024

In this episode of The Security Ledger Podcast (#257) Paul speaks with Dennis Kengo Oka, a senior principal automotive security strategist at the firm Synopsys about the growing cyber risks to automobiles as connected vehicle features proliferate in the absence of strong cybersecurity protections. Read the whole entry. »

Security

Security Cybersecurity Risk Government

LLMs’ Data-Control Path Insecurity

Schneier on Security

MAY 13, 2024

This general problem of mixing data with commands is at the root of many of our computer security vulnerabilities. Attackers can embed malicious commands in images and videos, so any system that processes those is vulnerable. Although now you have to secure that other LLM from prompt-injection attacks.)

Risk

Risk Security IT Access

Spotlight Podcast: OT Is Under Attack. Now What?

The Security Ledger

JUNE 5, 2024

Chris Walcutt, the CSO at DirectDefense talks about the rapidly changing threat landscape that critical infrastructure owners and operators inhabit, and how savvy firms are managing OT cyber risks. appeared first on The Security Ledger with Paul F. Chris Walcutt is the Chief Security Officer at DirectDefense.

Digital transformation

Digital transformation Military Risk Cybersecurity

Data Backups: Types and Methods [Video]

Record Nations

SEPTEMBER 20, 2017

Data backup is an essential process to ensure business stability and security. Any data that isn’t backed up regularly risks being lost, stolen, or accidentally deleted. Transcript Backup Types: Rule of Three The risk of losing days, […].

Risk

Risk Security

Security Affairs newsletter Round 439 by Pierluigi Paganini – International edition

Security Affairs

OCTOBER 1, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence

Artificial Intelligence Security Ransomware Data breaches

TikTok fined €345M by Irish DPC for violating children’s privacy

Security Affairs

SEPTEMBER 16, 2023

The Irish data regulators discovered that the popular video-sharing app allowed adults to send direct messages to certain teenagers who have no family connection with them. Children under 13 are exposed to serious risks due to the default account setting that allows anyone to view the content they publish. “The

Privacy

Privacy Risk Personal data IT

GSA Sparks Security Fears After Buying Risky Chinese Cameras

Look Beyond TikTok: Massive Data Collection Is the Real Risk

Trending Sources

NSA Offers Tips on Securing Unified Communication Channels

Alphv group claims the hack of Clarion, a global manufacturer of audio and video equipment for cars

Secure Together: video conferencing, credential stuffing and eye strain

Just Dance video game has been breached

Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk

Clash of Clans gamers at risk while using third-party app

“At-Risk Meeting Notifier Zoom” feature alerts meeting organizers of Zoombombing risk

Hong Kong firm loses over $25mn after employee’s video call with deepfake ‘chief financial officer’, others via WION

NIST Specialist Offers Telework Security Insights

Episode 257: Securing Software on Wheels with

News alert: ACM TechBrief lays out risks, policy implications of generative AI technologies

7 Considerations for a Smooth Video Conference

Weekly Update 403

Video: Don’t be a Security Zombie!

GUEST ESSAY: The post-pandemic challenges of securely managing employee endpoints

NSA releases guidance for securing Unified Communications and VVoIP

Thales + Imperva: Delivering the Next Generation of Data Security

Security Affairs newsletter Round 462 by Pierluigi Paganini – INTERNATIONAL EDITION

COVID-19 Risks of Flying

Webinar: Shantanoo A. Govilkar, from DivIHN, will discuss recent trends in Information Governance & Risk Management via ARMA Chicago on February 13, 2024 at 12pm Central

Security Affairs newsletter Round 452 by Pierluigi Paganini – INTERNATIONAL EDITION

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

Flaws allow hacking a system playing untrusted videos on VLC Player

Discussing the risks of bullying for anonymous social app NGL

Video: Zoom Researcher Details Web Conference Security Risks, 2020 Threats

Episode 256: Recursive Pollution? Data Feudalism? Gary McGraw On LLM Insecurity

Nude Videos of Kids From Hacked Baby Monitors Were Sold on Telegram

Privacy and Data Security Risks in M&A Transactions: Video Series

ISO 27001 and Physical Security

GUEST ESSAY: Six risks tied to social media marketing that all businesses should heed

Privacy and Data Security Risks in M&A Transactions: Part 2 of Video Series

EDPB Adopts Guidelines on Data Processing Through Video Devices

MY TAKE: COVID-19 cements the leadership role CISOs must take to secure company networks

Canada bans WeChat and Kaspersky apps on government-issued mobile devices

Zoom Settles with FTC Over Deceptive Security Claims

Episode 257: Securing Software on Wheels with Dennis Kengo Oka of Synopsys

LLMs’ Data-Control Path Insecurity

Spotlight Podcast: OT Is Under Attack. Now What?

Data Backups: Types and Methods [Video]

Security Affairs newsletter Round 439 by Pierluigi Paganini – International edition

TikTok fined €345M by Irish DPC for violating children’s privacy

Stay Connected