July 22, 2024 at 01:01PM Play ransomware, a new threat, has initiated targeted attacks on Linux devices, focusing on VMware ESXi virtual machines. This is a concerning development, expanding potential victims and ransom negotiation success. The gang’s tactics involve scanning and encrypting files, leading to significant disruptions in business operations and reduced data recovery options. … Read more
July 19, 2024 at 08:28AM The Cloud Security Alliance released CCSK v5, a comprehensive cloud security training and certificate for security professionals. It covers topics like incident response, data encryption, and application security. The program complements other education and provides in-depth information on cloud architecture, workloads, AI, and more. The exam is 120 minutes long … Read more
July 18, 2024 at 05:17PM A judge has mostly dismissed a lawsuit by America’s financial watchdog against SolarWinds and its CISO for misleading investors about computer security practices and the backdooring of its Orion product after the SUNBURST attack. The judge ruled in favor of SolarWinds on post-SUNBURST claims but sustained the SEC’s securities fraud … Read more
July 18, 2024 at 04:03PM OpenAI is launching new compliance tools for ChatGPT Business Edition, aiming to support enterprise customers in regulated industries like finance and healthcare. The Enterprise Compliance API and third-party integrations help audit, manage data, and ensure compliance with regulations like FINRA, HIPAA, and GDPR. This move aligns with OpenAI’s focus on … Read more
July 18, 2024 at 04:00AM Meta has suspended the use of generative artificial intelligence in Brazil following objections from the country’s data protection authority over privacy concerns. The halt is due to talks with Brazil’s National Data Protection Authority to address the issue. This follows a trend of tech giants facing regulatory challenges over data … Read more
July 17, 2024 at 04:40PM The press release highlights the growing trend of organizations adopting Zero Trust architectures in response to evolving cybersecurity threats. It emphasizes the challenges and common mistakes organizations face when implementing these strategies, such as overlooking organizational culture, underestimating human risk, neglecting the supply chain, failing to plan for sustainable success, … Read more
July 17, 2024 at 12:08PM Enterprise security teams are increasingly addressing the risks associated with the use of AI-enabled applications. An analysis by Netskope found that organizations are implementing controls such as blocking policies and data loss prevention tools to protect against the sending of sensitive data to AI apps. The focus is now shifting … Read more
July 17, 2024 at 07:52AM The UK’s Information Commissioner’s Office reprimanded Hackney for a ransomware attack that exposed personal information of 280,000 residents. The ICO criticized the council’s inadequate security measures but acknowledged its efforts post-attack. Hackney disagreed with the ICO’s ruling, citing limited resources to challenge it. The attack disrupted services and compromised sensitive … Read more
July 17, 2024 at 07:18AM The text outlines the threat posed by accidental insiders in cybersecurity. It discusses how employees, through lack of awareness or pressure to perform, can compromise security. The text highlights the potential consequences of such breaches and proposes proactive measures to mitigate the risk, emphasizing the importance of training, organizational controls, … Read more
July 16, 2024 at 06:27PM Kaspersky is parting ways with the U.S. and is offering its security products free for six months as a farewell gift to U.S. users. This move follows the U.S. government adding Kaspersky to its Entity List due to national security concerns. The company will shut down its U.S. business and … Read more