Mon.Jul 22, 2019

What You Should Know About the Equifax Data Breach Settlement

Krebs on Security

Big-three credit bureau Equifax has reportedly agreed to pay at least $650 million to settle lawsuits stemming from a 2017 breach that let intruders steal personal and financial data on roughly 148 million Americans.

Equifax Negotiates Potential $700 Million Breach Settlement

Data Breach Today

Deal Prepped With Feds and State Attorneys General Includes Victim Compensation Credit reporting giant Equifax has negotiated a proposed settlement that could reach $700 million to resolve federal and state probes into its massive 2017 data breach, as well as a nationwide class action lawsuit.

Hackers Expose Russian FSB Cyberattack Projects

Schneier on Security

More nation-state activity in cyberspace, this time from Russia : Per the different reports in Russian media, the files indicate that SyTech had worked since 2009 on a multitude of projects since 2009 for FSB unit 71330 and for fellow contractor Quantum.

Audit Finds More Security Vulnerabilities at IRS

Data Breach Today

GAO Makes More Security Recommendations; IRS Now Has 127 Issues to Resolve The Internal Revenue Services' internal financial reporting systems and IT infrastructure have 14 new security vulnerabilities, along with a long list of previously unresolved deficiencies, according to a U.S.

Top 10 industries for monetizing data: Is yours one of them?

Find out which industries, use cases, and business applications are the best opportunities for data monetization. Understand what data is being monetized, who wants it, and why. Use data you already own to create new revenue sources. Download the eBook today!

New APT34 campaign uses LinkedIn to deliver fresh malware

Security Affairs

The APT24 group continues its cyber espionage activity, its members were posing as a researcher from Cambridge to infect victims with three new malware. Experts at FireEye have uncovered a new espionage campaign carried out by APT34 APT group ( OilRig , and HelixKitten. Greenbug ) through LinkedIn.

More Trending

Kazakhstan wants to intercept all HTTPS Internet traffic of its citizens

Security Affairs

Bad news for citizens of Kazakhstan, the government is beginning to intercept all the encrypted traffic, and to do it, it is forcing them to install a certificate.

Recent DNS Hijacking Campaigns Trigger Government Action

Data Breach Today

US and UK Agencies Respond to Increasing Attacks A recent spate of attacks targeting domain name system protocols and registrars, including several incidents that researchers believe have ties to nation-state espionage, is prompting the U.S. and U.K.

NEW TECH: Early adopters find smart ‘Zero Trust’ access improves security without stifling innovation

The Last Watchdog

As we approach the close of the second decade of the 21 st century, it’s stunning, though perhaps not terribly surprising, that abused logon credentials continue to fuel the never-ending escalation of cyber attacks. Related: Third-party risks exacerbated by the ‘gig economy’ Dare we anticipate a slowing — and ultimately the reversal – of this trend? Yes, I believe that’s now in order.

Access 117

Ireland Assessing Minors' Profiles on Instagram

Data Breach Today

Data Scientist Files Reports With European Regulators Ireland's Data Protection Commission says it is "assessing" a report concerning minors who have business profiles on Instagram that may expose email addresses and phone numbers.

Data 147

The Key to Strategic HR: Process Automation

Do you want to automate your HR processes, but don’t know where to start? In this eBook, PeopleDoc explores which processes benefit the most from automation, and how an HR Service Delivery platform can help get things off the ground.

Bring your own identity (BYOI): New models of digital identity

Information Management Resources

As digital business grows across all industries, and data privacy continues to pose a significant risk to enterprises, the growing need for security includes a reliance on trust in digital identities. Digital ID Personally identifiable information Data types

Risk 106

2.3 Billion Files Exposed Online: The Root Causes

Data Breach Today

Misconfigured file storage technologies and a lack of basic security controls are the root causes for the inadvertent online exposure of 2.3 billion files worldwide that contain personal information, including sensitive medical data, says Harrison Van Riper, a security researcher at Digital Shadows

WSJ says Equifax to Pay $700 million settlement for 2017 breach

Security Affairs

The Wall Street Journal revealed that Equifax will pay around $700 million to settle with the Federal Trade Commission over the 2017 data breach. According to The Wall Street Journal, Equifax will pay around $700 million to settle with the Federal Trade Commission over the 2017 data breach.

IT 71

$700 Million Equifax Fine Is Still Too Little, Too Late

WIRED Threat Level

For failing to safeguard Social Security numbers, credit card numbers, and more, Equifax will pay up—but not enough, experts say. Security Security / Security News

Embedded BI and Analytics: Best Practices to Monetize Your Data

Speaker: Azmat Tanauli, Senior Director of Product Strategy at Birst

By creating innovative analytics products and expanding into new markets, more and more companies are discovering new potential revenue streams. Join Azmat Tanauli, Senior Director of Product Strategy at Birst, as he walks you through how data that you're likely already collecting can be transformed into revenue!

BlackBerry Cylance addresses AI-based antivirus engine bypass

Security Affairs

BlackBerry Cylance has addressed a bypass vulnerability recently discovered in its AI-based antivirus engine CylancePROTECT product.

Lack of digital standards making data management increasingly complicated

Information Management Resources

With no international alignment on how to regulate the digital environment, organizations are managing an increasingly complicated set of conflicting rules in key markets. Digital transformation Data strategy Data management

Hackers published a list of allegedly phished Discord login credentials

Security Affairs

Last week, hackers published a list of Discord credentials (email addresses/passwords) that were allegedly phished from the users of the gaming chat platform.

Robert Mueller's Testimony: What Congress Needs to Know

WIRED Threat Level

Here’s what members of Congress should know before they question the former special counsel. Security Security / National Security

Security Affairs - Untitled Article

Security Affairs

Security experts have discovered a critical remote code execution flaw in Palo Alto Networks GlobalProtect product, the flaw was quickly addressed.

OpenText automates invoicing for Rosneft Deutschland

OpenText Information Management

OpenText™ recently announced that Rosneft Deutschland GmbH, Germany’s third largest crude oil refiner and a major wholesaler of petroleum products, has deployed OpenText Business Network solutions to help accelerate invoicing automation.

B2B 61

Loading Data into Oracle Autonomous Data Warehouse using OAC

Perficient Data & Analytics

In this blog post I will show you some exciting functionality that is available in Oracle Analytics Cloud (OAC). It is the kind of functionality that you rarely see in front end reporting and visualizations platforms – either before the Cloud or even after the advent of the Cloud.

Sales 59

Critical RCE Flaw in Palo Alto Gateways Hits Uber

Threatpost

The bug is previously unknown but yet still fixed in later releases. However, many organizations are likely still vulnerable. Cloud Security Vulnerabilities critical vulnerability CVE-2019-1579 gateway global protect Palo Alto remote code execution ssl vpn uber

Cloud 83

The Marines’ New LMADIS Drone-Killer Aced Its First Test

WIRED Threat Level

Last week’s US strike of an Iranian drone is the first reported successful use of LMADIS, the Marines’ new energy weapon. Security Security / National Security

IT 56

Large-Scale Government Hacks Hit Russia, Bulgaria

Threatpost

The Bulgarian attack impacted almost all tax information for the entire country. Breach Government Hacks Privacy Bulgaria Cyberattacks FSB russian security agency secret projects tax information

Clouds and containers are not all about what’s new and hot

DXC Technology

This past Spring at London’s OpenInfra Days UK 2019, Mark Shuttleworth, executive chairman at Canonical and creator of Ubuntu Linux, said in a keynote, “I believe OpenStack is important. It’s become trendy to say: ‘I’m skipping OpenStack and going straight to Kubernetes.’ ’ It’s like skipping salad and going straight to steam – they both solve […]. Applications Cloud DevOps cloud cloud computing containers IaaS Kubernetes OpenStack

Cloud 55

Equifax to Pay $700 Million in 2017 Data Breach Settlement

Threatpost

Equifax will dish out as much as $700 million on the heels of its infamous 2017 data breach that impacted 150 million customers. Breach Hacks data breach data breach fine Equifax Equifax Data Breach equifax settlement FTC

6 Actions that Made GDPR Real in 2019

Dark Reading

In the wake of recent fines levied against British Airways, Marriott, and Facebook, companies are starting to take data privacy and security more seriously

Researcher warns DevOps Security is Back to the Future

The Security Ledger

The deployment of DevOps tools and platforms at many organizations recalls the bad old days of the 1990s, with lax control of authentication, loose configuration and scant attention to security, experts warn.

The end of LIBOR: Are you prepared?

InfoGoTo

What once could have been argued as being one of the most important benchmarks in banking, LIBOR (London InterBank Offered Rate), is coming to an end. With a shelf life expiring at the end of 2021, what does this mean for investors and borrowers?

PMP® Exam Will Change in December according to PMI

IG Guru

The PMP exam was last updated in 2015 according to the PMI website. Check out this link or source below for all the info regarding the update. The post PMP® Exam Will Change in December according to PMI appeared first on IG GURU. Education 2019 Exam PMI PMP

How Cybercriminals Break into the Microsoft Cloud

Dark Reading

Microsoft and Trimarc researchers explore the most common attacks against the cloud and effective defenses and mitigation

Cloud 71

Amazon Alexa, Google Home On Collision Course With Regulation

Threatpost

Threatpost talks to Tim Mackey with Synopsys about recent Amazon Echo and Google Home privacy faux pas. Will GDPR and other regulations catch up to the voice assistants?