August 9, 2024 at 10:01AM Verizon’s latest report shows a threefold increase in hacker exploitation of vulnerabilities, raising concerns for cybersecurity leaders. Organizations face challenges in managing vulnerabilities, with the expanding attack surfaces and difficulties in patching. The report also highlights the growing risks posed by software and partner ecosystems, emphasizing the need for proactive … Read more
August 8, 2024 at 11:00AM The concept of “immutable” within cybersecurity is explored, encompassing data, servers, backups, and blockchains. These technologies are designed to enhance security but don’t guarantee true immutability. They offer valuable layers in a security stack, but the term “immutable” is primarily a marketing term, signifying increased difficulty in unauthorized alterations. Organizations … Read more
August 8, 2024 at 09:49AM 1Password for Mac versions prior to 8.10.36 are susceptible to a bug allowing attackers to steal vault items. 1Password Vaults securely manage passwords for various accounts, with the ability to be shared. Around 150,000 businesses and numerous individual consumers rely on 1Password. To address the vulnerability, users must update to … Read more
August 8, 2024 at 06:40AM A recent survey by Arlington Research and Kaspersky revealed that many Brits are cautious about webcam privacy but willingly share personal information through online games. Conducted on 10,000 consumers, including 1,000 in the UK, aged between 18 and 40 interested in new technology, the survey highlighted the need for increased … Read more
August 7, 2024 at 03:25PM At Black Hat USA in Las Vegas, Eitan Worcel of Mobb Security, last year’s winner, passed the torch to Knostic, the 2024 winner. Sounil Yu, Knostic’s CTO, accepted the award. Four finalists, including LeakSignal, RAD Security, DryRun Security, and Knostic, made final pitches. Knostic’s tool focuses on access control of … Read more
August 7, 2024 at 02:54PM The UK’s ICO has provisionally decided to fine Advanced Computer Software Group Ltd (Advanced) £6.09M for failing to protect the personal information of tens of thousands in a ransomware attack. The breach impacted 83,000 people and various healthcare products. The final decision is pending Advanced’s response, potentially totaling $7.74 million. … Read more
August 7, 2024 at 11:12AM The UK’s Information Commissioner’s Office has announced its intent to fine the Advanced Computer Software Group £6.09 million due to a ransomware attack on the National Health Service. Personal data of 82,946 patients was compromised, causing disruption to the 111 call service. The attack was linked to inadequate security measures, … Read more
August 6, 2024 at 12:30AM UK mobile device management vendor Mobile Guardian experienced a security breach on August 4, leading to unauthorized access of devices managed by their tools. In Singapore, 13,000 devices were remotely wiped, prompting the Education Ministry to sever ties with the vendor. The breach also affects customers in Europe and North … Read more
August 5, 2024 at 03:40PM The Justice Department and FTC filed a lawsuit against TikTok and its parent company ByteDance for allegedly violating children’s online privacy protections. TikTok is accused of allowing children to create accounts and collect personal information without parental consent. FTC chair Lina Khan emphasized the need to protect children online from … Read more
August 5, 2024 at 01:15PM LeakSignal is an openly distributed data governance solution, aiming to tackle data leakage within organizations. It offers real-time data flow governance, using natural language processing techniques and Rust technology. The company is a finalist in the Black Hat Startup Spotlight competition, emphasizing proactive monitoring and alerting. Its mascot idea is … Read more