August 19, 2024 at 09:43AM The City of Flint, Michigan, is working to restore network systems after a ransomware attack on August 14. The attack affected payment and communication services, but emergency services like 911 were not impacted. BS&A billing system was disrupted, causing online transaction issues. The city is investigating potential impact on personal … Read more
August 15, 2024 at 07:33AM Identity Threat Detection and Response (ITDR) is vital for detecting and responding to identity-based attacks, covering both human and non-human identities in various environments. Core capabilities include developing universal identity profiles, tracking access paths, and orchestrating multi-environment detection. An effective ITDR solution should address questions regarding identity inventory, risk assessment, … Read more
August 14, 2024 at 03:38PM The U.S. National Institute of Standards and Technology (NIST) has unveiled three encryption standards to withstand potential cyber threats from quantum computing technology. Based on the meeting notes, the U.S. National Institute of Standards and Technology (NIST) has released the first three encryption standards specifically designed to withstand potential cyberattacks … Read more
August 14, 2024 at 11:28AM Google is implementing privacy-focused AI features on Android devices, using end-to-end protection to secure data in transit and keeping sensitive data locally on the device. Gemini, a new AI assistant, helps with various tasks and operates on-device or in the cloud based on complexity and privacy requirements. These measures aim … Read more
August 14, 2024 at 03:09AM The Gcore Radar Report for H1 2024 shows a 46% increase in DDoS attacks compared to the previous year, with the gaming industry most affected. Attack power has risen, and application-layer attacks pose risks to financial services and e-commerce. The report emphasizes the need for worldwide collaboration to minimize DDoS … Read more
August 13, 2024 at 11:36AM SAP announced 17 new and 8 updated security notes for August 2024. Two “hot news” notes addressed critical vulnerabilities, including missing authentication check in BusinessObjects Business Intelligence and server-side request forgery bug in Node.js library. Four other high-severity vulnerabilities were resolved, along with several medium-severity ones. Organizations are urged to … Read more
August 13, 2024 at 11:24AM Kootenai Health reported a data breach affecting 464,000 patients. Personal information was stolen and leaked due to a ransomware attack by the 3AM group. The meeting notes indicate that Kootenai Health has experienced a data breach affecting more than 464,000 patients. This breach occurred as a result of a ransomware … Read more
August 12, 2024 at 12:34PM EVIT is sending letters to over 200,000 individuals after a cyber incident in January led to the theft of 48 types of personal data. The incident, possibly linked to the LockBit ransomware group, triggered a thorough security response. The school is taking steps to enhance its security and mitigate risk, … Read more
August 9, 2024 at 06:39PM Cloud security researchers discovered critical flaws in Amazon Web Services (AWS) that could lead to remote code execution, user takeover, data exposure, and denial of service. The “Bucket Monopoly” issue allows attackers to create covert access to S3 buckets, potentially enabling data theft, privilege escalation, and malicious code execution. AWS … Read more
August 9, 2024 at 01:49PM Entro Security, a leader in Non-Human Identity (NHI) and Secrets Management, has announced two groundbreaking features at Black Hat USA: Optical Character Recognition (OCR) support for secret scanning and Employees Tokens Blast Radius. These unique features provide comprehensive insight and governance for secrets and NHI management, empowering security teams with … Read more