May 15, 2024 at 01:58PM Google recently announced new privacy and security features for Android, including advanced protection to secure users’ devices and data in the event of theft. The features include a private space for sensitive apps, an extra layer of protection for device settings, and an upgrade to factory reset that renders stolen … Read more
May 14, 2024 at 04:09PM In today’s digital landscape, companies grapple with encryption challenges and find that a one-size-fits-all approach doesn’t suffice. While encryption is crucial for data security, managing decryption keys is equally essential. Additionally, the rising adoption of cloud services necessitates a thorough evaluation of key management practices. Finally, organizations should proactively prepare … Read more
May 14, 2024 at 05:36AM The UK’s NHS warns that vulnerabilities in Arcserve Unified Data Protection software are likely being actively exploited. Despite not disclosing any specific data, NHS strongly encourages organizations to apply patches as outlined in Arcserve’s advisory. Critical vulnerabilities include authentication bypass and path traversal, posing risks of data theft, ransomware attacks, … Read more
May 13, 2024 at 12:37PM IntelBroker claims to be selling stolen Europol data, including internal emails, employee details, and classified documents on the Dark Web. The breach targeted Europol Platform for Experts, causing its website to go down. Europol is investigating and confirmed no operational data was compromised. This follows a physical security breach earlier … Read more
May 13, 2024 at 11:26AM The City of Helsinki is investigating a serious data breach affecting tens of thousands of students, guardians, and personnel. An unauthorized actor gained access to a network drive containing sensitive information, including personally identifiable data. The breach impacts over 80,000 students and their guardians, and all city personnel. Authorities have … Read more
May 13, 2024 at 08:27AM The browser has become a key workspace in the enterprise, but also a target for cyber attacks. LayerX’s “Annual Browser Security Report 2024” delves into the evolving threat landscape, highlighting vulnerabilities from hybrid work risks to AI-powered threats. The report recommends a multifaceted approach to combat threats, emphasizing regular updates, … Read more
May 10, 2024 at 02:20PM Reality Defender, an AI-based security startup, won the Most Innovative Startup at RSA Conference’s Innovation Sandbox for its deepfake detection platform. With a focus on preventing deepfake fraud, the company uses AI to identify manipulated audio, video, and text in real time. The competition also featured pitches from nine other … Read more
May 9, 2024 at 06:18PM Monday.com, a widely used project management platform, has removed its “Share Update” feature due to abuse by threat actors in phishing attacks. Customers received phishing emails purportedly from Monday.com’s email accounts, prompting concerns of a security breach. The company confirmed that the feature was misused, leading to its suspension, and … Read more
May 9, 2024 at 11:30AM Dell recently cautioned about a data breach where a threat actor claimed to have acquired information for about 49 million customers via a breached Dell portal. The stolen data includes names, physical addresses, Dell hardware and order details. Though Dell reassures minimal risk as no financial data was accessed, customers … Read more
May 8, 2024 at 08:30AM The 2024 RSA Conference in San Francisco featured companies like Action1, Abnormal Security, and AppViewX announcing new product and service offerings. Other notable announcements include Cloudflare’s risk management solutions, HCLSoftware’s AppScan Supply Chain Security, and LogicGate’s AI governance solution. Palo Alto Networks also introduced new AI security solutions and Zscaler … Read more