October 23, 2023 at 02:09PM The growth of AI productivity tools like ChatGPT has made AI accessible to all employees, but it poses challenges for IT and security teams. Nudge Security helps organizations understand and manage the risks associated with AI tools by discovering and inventorying the tools employees are using, accelerating security reviews, detecting … Read more
October 21, 2023 at 12:41PM The International Criminal Court (ICC) has provided more information about a cyberattack it experienced five weeks ago, stating that it was a targeted operation for espionage. The ICC has taken necessary steps to address any compromise to data and is reinforcing its risk management framework. The impact of the attack … Read more
October 20, 2023 at 02:48PM Attackers breached Okta’s support management system using stolen credentials, gaining access to files containing cookies and session tokens uploaded by customers. The incident did not impact the production Okta service or the Auth0/CIC case management system. Okta notified affected customers and advised all customers to sanitize their HAR files to … Read more
October 19, 2023 at 03:53PM Japanese electronics company Casio announced that their ClassPad server was breached, resulting in the theft of a database containing personal information of customers from 149 countries. The data includes names, email addresses, purchasing information, and service usage details. Casio has blocked outside access to the affected databases and is working … Read more
October 19, 2023 at 12:01AM In today’s digital world, personal privacy is frequently compromised due to the exchange of personal information. The public often feels powerless against data brokers and overwhelmed by information overload. A consumer survey revealed the need for better privacy tools and understanding. With data breaches becoming more common, a collaborative effort … Read more
October 18, 2023 at 10:53AM D-Link has confirmed being targeted by cyber criminals but downplayed the impact. Only around 700 stolen records were determined, contradicting the claim of 3 million in a hacking forum post. The data came from an old D-View 6 system in a test lab environment and included low-sensitive information. D-Link is … Read more
October 18, 2023 at 09:30AM D-Link has completed its investigation into a hacker’s claims of a data breach and determined that the claims were exaggerated. The company confirmed a breach but stated that only 700 records, not 3 million, were compromised. The stolen data is believed to be from an old D-View 6 system, and … Read more
October 18, 2023 at 08:55AM Modern enterprises face the challenge of balancing the need for data collaboration and expanded access with the increased risk of cybersecurity threats. Traditional data security measures are insufficient for the data needs of modern enterprises. The CISO Survival Guide emphasizes the importance of data access control and the intersection of … Read more
October 18, 2023 at 08:48AM Lost and stolen computers pose a significant risk to data security, accounting for 17% of breaches. The threats include unauthorized access, lack of encryption, and physical access to corporate networks. To mitigate this risk, organizations should train employees, implement geolocation and geofencing, conduct endpoint data discovery, apply endpoint data encryption, … Read more
October 18, 2023 at 03:33AM A medium-severity flaw has been discovered in Synology’s DiskStation Manager (DSM) that could allow an attacker to remotely hijack an administrator’s account by deciphering their password. The flaw stems from the use of a weak random number generator. Synology has already addressed the issue in updates released in June 2023. … Read more