Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. A relatively new method of fraud on the ICO market was stealing a White Paper of ICO project and presenting an identical idea under a new brand name. Pierluigi Paganini.

Cybercrime 108

Cybercrime Hacking Banking Phishing 108

Schneier on Security

JANUARY 21, 2022

However, as the app collects a range of highly sensitive medical information, it is unclear with whom or which organization(s) it shares this information. MY2022 includes features that allow users to report “politically sensitive” content.

Surveillance 362

Surveillance Encryption Wireless Government 362

Schneier on Security

SEPTEMBER 30, 2022

We present the first large-scale measurement study of geodifferences in the mobile app ecosystem. We design a semi-automatic, parallel measurement testbed that we use to collect 5,684 popular apps from Google Play in 26 countries.

Mobile 342

Mobile Internet Internet VPN 342

Security Boulevard

JANUARY 26, 2024

Authors/Presenters: Lu Zhou, Chengyongxiao Wei, Tong Zhu, Guoxing Chen, Xiaokuan Zhang, Suguo Du, Hui Cao, Haojin Zhu Permalink The post USENIX Security ’23 – POLICYCOMP: Counterpart Comparison of Privacy Policies Uncovers Overbroad Personal Data Collection Practices appeared first on Security Boulevard.

Data collection 53

Data collection Education Information Security 53

Malwarebytes

OCTOBER 3, 2024

Two things are true of data online: It will be collected and, just as easily, it will be lost. These types of cookies are present on nearly every single website that people visit today, from Google to Facebook to YouTube to Reddit.

Data breaches 124

Data breaches Data collection Advertising Internet 124

Security Affairs

DECEMBER 31, 2023

Google has yet to respond to a request for comment on the settlement.

Data collection 144

Data collection Advertising Hacking Technology 144

Anton on Security

DECEMBER 10, 2021

Example SOC Troubles from some presentation :-) As we are working on the next SOC paper jointly with Deloitte ( paper 1 , paper 2 , paper 3 coming out really soon), we came across the need to review some of the current technology challenges in the SOC. Data collection failures still plague many SOCs.

Technology 242

Technology CISO Data collection Threat Detection 242

The Last Watchdog

OCTOBER 10, 2022

To test the true extent of data collection in VR, we designed a simple 30-person user study called MetaData. In a follow-up work, called “ MetaGuard ,” we present a promising solution to our VR data privacy woes. But until recently, the VR privacy threat has remained entirely theoretical.

Risk 222

Risk Data privacy Data collection Technology 222

Security Affairs

OCTOBER 30, 2023

“The Chief Information Officer of Canada determined that WeChat and Kaspersky suite of applications present an unacceptable level of risk to privacy and security. On a mobile device, the WeChat and Kaspersky applications data collection methods provide considerable access to the device’s contents.”

Mobile 138

Mobile Government Data collection Antivirus 138

Security Affairs

SEPTEMBER 14, 2020

A team of researchers at Temple University in Philadelphia has presented a project named CIRWA (repository of critical infrastructure ransomware attacks) that aims at tracking ransomware attacks on critical infrastructure worldwide. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware 144

Ransomware Advertising Data collection Healthcare 144

Security Boulevard

JANUARY 20, 2025

Items presented here are typically curated with the end user and small groups (such as families and small/micro businesses) in mind. Due to this focus, items primarily affecting enterprises or large organizations may not be included, even if they are widespread or "popular" stories.

Surveillance 97

Surveillance Malware Data breaches Scams 97

Security Affairs

AUGUST 14, 2020

The Threat Report Portugal: Q2 2020 compiles data collected on the malicious campaigns that occurred from April to Jun, Q2, of 2020. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 145

Threat Reports Phishing Malware Banking 145

Malwarebytes

AUGUST 20, 2024

The AG accuses GM of installing technology that allegedly improves the safety, functionality, and operability of its vehicles, but at the same time this technology gathers driving data about the vehicle’s usage. The driving data collected and sold by GM included trip details like speed, seatbelt status, and driven distance.

Insurance 112

Insurance Accountability Data collection Surveillance 112

CyberSecurity Insiders

SEPTEMBER 8, 2021

ICO is also intending to put forward a request to G7 Summit authorities and will urge them to present a plan to improve the current cookie consent functionality that is in place. By doing so, ICO wants to aim for a unified data protection for all web users in European Union.

Data collection 99

Data collection Data privacy Data breaches Software 99

Security Affairs

JANUARY 9, 2023

Here it comes, inSicurezzaDigitale announced the Dashboard Ransomware Monitor, it is the second project after the recent presentation of the project Mastodon. All data collected by the dashboard can be exported in different formats and can be analyzed using useful graphics. ” explained the development team. .

Ransomware 98

Ransomware Data collection Hacking Cybersecurity 98

Security Affairs

FEBRUARY 13, 2024

The data collected unearthed a total of 1771 ransomware claims, with 55 recorded incidents in Italy. The months of May, June, July, and August each presented unique challenges in the realm of cybersecurity.

Ransomware 133

Ransomware Data collection Hacking Accountability 133

Security Affairs

SEPTEMBER 17, 2024

The report provides insights into factors influencing user consent for data collection and usage and reasons for consumer disengagement. A Statista survey of US consumers showed that two-thirds (66%) of respondents said they would gain trust in a company if it were transparent about how it uses their personal data.

Data collection 116

Data collection Data privacy B2B Digital transformation 116

CyberSecurity Insiders

AUGUST 26, 2021

Factually speaking, an Information Commissioner plays a vital role in regurgitating data flow between companies and their customers, respectively. It helps in protecting the rights of citizens and offers a plan to companies on what to do and what not to do when it comes to data collection and its security.

Information Security 112

Information Security Data privacy Data collection Media 112

SecureWorld News

OCTOBER 8, 2020

In addition to a meticulous evaluation of individual work performance, the data collected in this way were used, among other things, to obtain a profile of the employees for measures and decisions in the employment relationship. A $42 million fine is significant. And that was intentional.

Data collection 115

Data collection Data privacy Retail Education 115

Troy Hunt

NOVEMBER 25, 2020

Back to the bit about risks impacting data collected by IoT devices and back again to CloudPets, Context Security's piece aligned with my own story about kids' CloudPets messages being left exposed to the internet. What downside does it present? What upside does it bring you? How likely is that to happen?

IoT 363

IoT Firmware Risk Manufacturing 363

Security Affairs

SEPTEMBER 11, 2018

This was a one-time data collection, done for security purposes (to analyze whether a user had recently encountered adware or other threats, and thus to improve the product & service).” ” reads the official reply published by the company. states the Guardian app research team. “In

Adware 108

Adware Data collection Advertising Antivirus 108

SecureWorld News

OCTOBER 2, 2024

Our personal photos, private messages, and sensitive data are being used without our knowledge or consent to train AI systems. This unsettling reality is no longer a distant future but a rapidly encroaching present, and it is about to get even worse. Request to see the data they have collected and ask them to delete it where possible.

Artificial Intelligence 120

Artificial Intelligence Data collection Data privacy Technology 120

Krebs on Security

AUGUST 14, 2019

Data collected in the course of the investigation also reveals some fascinating details that may help explain why these pump skimmers are so lucrative and ubiquitous. The researchers will present their work on Bluetana later today at the USENIX Security 2019 conference in Santa Clara, Calif.

Banking 259

Banking Computers and Electronics Marketing Mobile 259

Security Affairs

DECEMBER 29, 2023

Under Christmas tree you can find great gifts such as significant improvements of user interface (panel), modal windows on loading and expansion of data collection objects. Presently, Meduza password stealer supports Windows Server 2012/2016/2019/2022 and Windows 10/11.

Password Management 143

Password Management Cryptocurrency Passwords Authentication 143

Security Affairs

SEPTEMBER 1, 2023

The experts added that many of these customizations have occurred independently and new functionality is not present in sample clusters associated with other threat actors. ” continues the report.

Malware 128

Malware Data collection Architecture Hacking 128

Security Affairs

MAY 11, 2019

The extent of the flaw is wide, according to data collected by Krstic during the study, the vulnerabilities could impact up to 10 million people and 30,000 doors at 200 facilities. Krstic presented the findings of his study at SecurityWeek’s ICS Cyber Security Conference held in Singapore.

Hacking 111

Hacking Advertising Surveillance Data collection 111

Security Boulevard

MARCH 24, 2025

Items presented here are typically curated with the end user and small groups (such as families and small/micro businesses) in mind. These apps also frequently use Bluetooth data to gather location information and proximity to nearby devices.

Surveillance 75

Surveillance Telecommunications Malware Data breaches 75

Security Affairs

APRIL 20, 2020

The Threat Report Portugal: Q1 2020 compiles data collected on the malicious campaigns that occurred from January to March, Q1, of 2020. From Figure 2, January presented a total of 15 phishing campaigns, 29 in February and 46 during March. The campaigns were classified as either phishing or malware.

Threat Reports 137

Threat Reports Phishing Malware Banking 137

Webroot

JUNE 25, 2021

Security experts warn that while the internet of things (IoT) isn’t inherently a bad thing, it does present concerns that must be considered. For others, home networks are simply hosting more devices as smart doorbells, thermostats and refrigerators now connect to the internet. Many devices come pre-configured with inherently poor security.

IoT 103

IoT Internet Internet Data collection 103

Security Affairs

DECEMBER 10, 2020

Go versions of the backdoor were used since 2018 , they initially start collecting info on the compromised system, and then sends it to the command and control server. The malware connects to the C2 through HTTP POST requests. The malware also attempts to download and execute a payload from the C2 it.

Malware 122

Malware Phishing Government Data collection 122

Security Affairs

JUNE 19, 2021

“The name of the VPN server vendor was redacted in documents presented to South Korean press today at a KAERI press conference.” ” The South Korean authorities did not reveal which VPN vendor was targeted by the threat actors. ” reported The Record.

Hacking 145

Hacking VPN Internet Internet 145

CyberSecurity Insiders

DECEMBER 18, 2021

It also empowers business owners to easily see, understand and act on contextual intelligence using scoring frameworks proven to stop insider threats, prevent data loss, maximize software investments and protect the workforce, wherever they may be. Noise can overwhelm and mask true threats and is a distraction for scarce security resources.

Risk 134

Risk Social Engineering Surveillance Data collection 134

Security Affairs

AUGUST 3, 2024

“According to the complaint, from 2019 to the present, TikTok knowingly permitted children to create regular TikTok accounts and to create, view, and share short-form videos and messages with adults and others on the regular TikTok platform. In 2019, the government sued TikTok’s predecessor, Musical.ly, for COPPA violations.

Accountability 128

Accountability Data collection Risk Hacking 128

Anton on Security

JANUARY 20, 2022

One of the most notorious and painful problems that has amazing staying power is of course that of data collection. I remember how our engineers struggled in 2002 with some API-based collection from a known firewall vendor.

Technology 211

Technology Engineering Data collection Firewall 211

NetSpi Technical

NOVEMBER 14, 2024

For those interested in the previous PowerHuntShares release, here is the blog and presentation. The Results directory houses csv files containing all the computer, share, file, and permission data collected, including things like excessive privileges and stored secret samples. Let the pseudo-TLDR/release notes begin!

Passwords 145

Passwords Risk Data collection Backups 145

Security Affairs

NOVEMBER 6, 2024

The app “presents an unacceptable level of risk to privacy and security,” explained Canada’s chief information officer. TikTok was also under the scrutiny of Canadian privacy regulators that are investigating whether the company obtains valid and meaningful consent from users when collecting their personal information. “On

Government 117

Government Mobile Media Technology 117

SecureList

APRIL 29, 2025

configrc5" , was created in the user’s home directory with the following structure: configrc5 directory structure Interestingly enough, one of the first execution steps is checking if other known miners are present on the machine using the script a / init0. Chain of commands used by the attackers to download and decompress dota.tar.gz

Passwords 73

Passwords Authentication System Administration Malware 73