Ireland fines LinkedIn €310 million over targeted advertising

October 24, 2024 at 02:21PM LinkedIn was fined €310 million by the Irish Data Protection Commission for GDPR violations related to data processing for targeted advertising. The inquiry revealed failures in obtaining valid consent, transparency, and legitimate interests. LinkedIn must comply with EU regulations and amend its advertising systems following the ruling. ### Meeting Takeaways: … Read more

Obfuscation: There Are Two Sides To Everything

August 1, 2024 at 07:30AM The article explores the topic of obfuscation as a technique used in software protection and how it is also used by malicious software authors to evade detection. It highlights various methods of obfuscation and its impact on detecting and preventing cyber threats. The importance of not relying solely on signature-based … Read more

Dynamically Evolving SMS Stealer Threatens Global Android Users

July 31, 2024 at 08:01AM A novel malware dubbed “SMS Stealer” has targeted Android devices for over two years, stealing SMS messages and one-time passwords. Researchers have tracked its global impact, with India and Russia most affected. This dynamic and sophisticated campaign uses multiple threat vectors and poses a significant risk, underscoring the need for … Read more

Ways iOS Sideloading Can Be More Secure

June 3, 2024 at 05:46PM The European Union’s Digital Markets Act allowed sideloading on iOS devices in Europe, prompting concerns about security. Apple’s notarization process and real-time monitoring aim to mitigate these risks, distinguishing it from Android’s open approach. Nonetheless, Apple’s notarization may not prevent all malicious apps, and the extent of sideloading’s impact on … Read more

Anetac Targets Service Account Security

May 6, 2024 at 08:37AM Anetac addresses the challenge of monitoring, securing, and managing scattered service accounts, APIs, and access keys in modern applications. Their dynamic security and identity management platform aims to protect service accounts and prevent breaches by identifying and responding to incidents involving abused accounts. Anetac has raised $16 million in funding … Read more

Godfather Banking Trojan Spawns 1.2K Samples Across 57 Countries

April 25, 2024 at 02:41PM The Godfather mobile banking Trojan has over 1,000 circulating samples in dozens of countries, targeting hundreds of banking apps. Identified in 2022, it intercepts 2FA calls, initiates bank transfers, and is becoming a prevalent malware-as-a-service. Its developers continuously create new samples to overcome security software, reflecting a broader trend of … Read more

Narrowing the Focus of AI in Security

November 7, 2023 at 08:06AM The AI industry has seen a surge in investment and attention in recent months, with companies like Amazon, Microsoft, Meta, and Google leading the way. Machine learning and data science have become integral to the development of AI, and universities and corporations have invested in the necessary resources. While Gartner … Read more

DPI: Still Effective for the Modern SOC?

November 1, 2023 at 08:49AM The ongoing debate about the effectiveness of deep packet inspection (DPI) in the security industry has intensified as networks become more dispersed. Recent research shows that deploying solutions for network visibility is increasingly challenging due to multi-cloud approaches and the adoption of Zero Trust models. Although DPI is not dead, … Read more