December 1, 2023 at 05:19AM The UK data watchdog reprimanded NHS Fife for a security lapse that led to an unauthorized person obtaining patient data and providing care. A document with personal data of 14 patients was taken after CCTV was disconnected. NHS Fife has since improved document security and access protocols. Takeaways from the … Read more
November 30, 2023 at 12:26PM After a cyberattack, Staples shut down systems to contain the breach and protect customer data, disrupting backend operations and delivery. Though stores remain open, online order processing is delayed. Staples is restoring systems and expects a return to normal operations soon without ransomware or file encryption. Takeaways from Meeting Notes: … Read more
November 30, 2023 at 10:07AM AI and ML technologies offer substantial productivity gains but carry risks like data misuse and inaccurate results. To use AI securely, companies must examine legal agreements, guard sensitive data, validate vendor security, use local open-source tools, track AI usage, and create tailored AI policies. Meeting Takeaways: 1. **AI/ML Benefits and … Read more
November 29, 2023 at 06:26PM Piiano, a data protection firm, launched Piiano Flows, the first privacy-centric static code analyzer, offering free scans until year-end. Post the Duolingo leak, this tool helps security teams identify potential data leaks in source code, protecting sensitive information early in the development cycle. Here are the clear takeaways from the … Read more
November 29, 2023 at 05:24PM Dollar Tree, including Family Dollar, was affected by a data breach of service provider Zeroed-In Technologies, compromising personal data (names, birthdates, SSNs) of nearly 2 million employees. Affected parties were offered identity protection services, and the incident may lead to a class-action lawsuit. Meeting Takeaways: 1. Impact: Dollar Tree, via … Read more
November 29, 2023 at 10:50AM The increasing reliance on web-based apps for various tasks makes them prime targets for hackers due to multiple dependencies, valuable data storage, and insecure APIs. Successful breaches can cause data loss, reputational damage, and spread malware. Continuous monitoring, like Outpost24’s PTaaS, is crucial for real-time vulnerability identification and mitigation. Meeting … Read more
November 29, 2023 at 08:32AM Okta’s customer support system was breached, affecting all support system users and exposing names, emails, and other details. Less than 1% of customers had session tokens stolen. Okta advises all users, especially unsecured admins, to implement multi-factor authentication and increase vigilance against phishing. No credentials were exposed. Previous attacks included … Read more
November 28, 2023 at 02:02PM The global aviation industry has suffered significant losses due to the pandemic, leading airlines to focus on capital preservation and survival. However, as the sector recovers, CEOs and CISOs are looking to invest in long-term growth, with cybersecurity becoming a top priority. Cyberattacks on the aviation industry are increasing, resulting … Read more
November 28, 2023 at 09:22AM Athena AI, integrated into the Varonis Data Security Platform, provides generative AI capabilities to enhance data protection. It enables security teams to conduct investigations, remediate threats, and strengthen their security posture effectively. With features like an AI SOC analyst and natural language search, customers can quickly respond to incidents, identify … Read more
November 28, 2023 at 04:14AM The text discusses the need for a consumer software security organization similar to the US National Highway Traffic Safety Administration. It highlights the lack of safety standards for software and the need to protect consumers from digital crimes. The text suggests the creation of safety ratings for software and devices … Read more