Data collection and Technology - Cyber Security Informer

New survey shows US adults split on COVID-19 cell phone tracking and data collection

Tech Republic Security

MAY 8, 2020

Governments and organizations are unleashing new technologies to fight the spread of the coronavirus, adding to privacy and data collection concerns.

Data collection

Data collection Government Technology

SOC Technology Failures?—?Do They Matter?

Anton on Security

DECEMBER 10, 2021

SOC Technology Failures?—?Do img src: [link] Most failed Security Operations Centers (SOCs) that I’ve seen have not failed due to a technology failure. Let’s stick to mostly technology focused failures. Perhaps the tool vendor made some incorrect assumptions about how their technology is really used in the real world?

Technology

Technology CISO Data collection Threat Detection

Surveillance by the US Postal Service

Schneier on Security

DECEMBER 13, 2023

This is not about mass surveillance of mail , this is about sorts of targeted surveillance the US Postal Inspection Service uses to catch mail thieves : To track down an alleged mail thief, a US postal inspector used license plate reader technology, GPS data collected by a rental car company, and, most damning of all, hid a camera inside one of the (..)

Surveillance

Surveillance Data collection Technology

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Inside the DemandScience by Pure Incubation Data Breach

Troy Hunt

NOVEMBER 13, 2024

Apparently, before a child reaches the age of 13, advertisers will have gathered more 72 million data points on them. I knew I'd seen a metric about this sometime recently, so I went looking for "7,000", which perfectly illustrates how unaware we are of the extent of data collection on all of us.

Data breaches

Data breaches Passwords B2B Technology

How threat actors can use generative artificial intelligence?

Security Affairs

DECEMBER 1, 2024

The increasing sophistication of these technologies has made it harder than ever to distinguish real content from fake. A study by the Massachusetts Institute of Technology (MIT) presented in 2019 revealed that deepfakes generated by AI could deceive humans up to 60% of the time. As the technology evolves, so will its misuse.

Artificial Intelligence

Artificial Intelligence Phishing Media Cyber threats

Malwarebytes acquires AzireVPN to fuel additional VPN features and functionalities

Malwarebytes

NOVEMBER 7, 2024

Now, we’re leaning even more on our mission to reimagine consumer cybersecurity to protect devices and data, no matter where users are located, how they work and play, or the size of their wallet. AzireVPN customers will also continue to enjoy the same privacy-focused VPN service – no logs, no data collection, no bandwidth limitations.

VPN

VPN Data collection Internet Internet

Modern Mass Surveillance: Identify, Correlate, Discriminate

Schneier on Security

JANUARY 27, 2020

Communities across the United States are starting to ban facial recognition technologies. Forty major music festivals pledged not to use the technology, and activists are calling for a nationwide ban. Many Democratic presidential candidates support at least a partial ban on the technology.

Surveillance

Surveillance Technology Internet Internet

Enhancing IT Support for Manufacturing Systems: Addressing Critical Gaps

SecureWorld News

DECEMBER 23, 2024

Manufacturing systems, especially the ones that work with SCADA technology (Supervisory Control and Data Acquisition), IoT devices, and other critical technologies, depend heavily on efficient IT support to ensure that the downtime is minimal, and the performance is optimal.

Manufacturing

Manufacturing IoT Data collection Technology

Cloudy with Strategic Technology Macro Trends on the Horizon

SecureWorld News

SEPTEMBER 3, 2024

Legacy technologies such as Virtual Private Networks (VPNs) do not scale and have been proven to be fraught with risk as evidenced by incidents such as nation-state attacks. Zero Trust leverages multiple People, Process & Technology safeguards (layered architecture). This gives rise to Network observability!

Technology

Technology Architecture Risk Data collection

BrandPost: The state of operational technology and cybersecurity

CSO Magazine

MAY 26, 2023

Today, the convergence of operational technology (OT) and IT networks is accelerating because organizations can use the data collected by physical equipment and Industrial Internet of Things (IIoT) devices to identify issues and increase efficiency.

Technology

Technology Cybersecurity Data collection Internet

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Affairs

DECEMBER 5, 2024

Recent advances in artificial intelligence (AI) technology offer unprecedented opportunities for organizations to reduce the burden on struggling SOC analysts so they can focus on more strategic tasks, their mental health, and their overall well-being. But it doesn’t have to be this way.

Artificial Intelligence

Artificial Intelligence Data collection Cybersecurity Risk

Privacy vs. Surveillance in the Age of COVID-19

Schneier on Security

MARCH 30, 2020

The trade-offs are changing : As countries around the world race to contain the pandemic, many are deploying digital surveillance tools as a means to exert social control, even turning security agency technologies on their own civilians. I worry that in our haste and fear, we will fail to do any of that. More from EFF.

Surveillance

Surveillance Data collection Technology

Web 3.0 Requires Data Integrity

Schneier on Security

APRIL 3, 2025

As Web technologies matured, the focus shifted to protecting the vast amounts of data flowing through online systems. Success will require following practical guidelines for maintaining data integrity throughout the AI lifecycle—from data collection through model training and finally to deployment, use, and evolution.

Artificial Intelligence

Artificial Intelligence Architecture Internet Internet

RSAC Fireside Chat: Jscrambler levels-up JavaScript security, slows GenAI-fueled privacy loss

The Last Watchdog

JUNE 10, 2024

For instance, it helps online tax services prevent leakage of taxpayers’ personal information via pixels, those imperceptible JavaScripts embedded in a web page to collect information about the user’s interactions.

Data collection

Data collection Internet Internet Technology

On Surveillance in the Workplace

Schneier on Security

MARCH 12, 2019

Gamification and algorithmic management of work activities through continuous data collection. In a blog post about this report, Cory Doctorow mentioned "the adoption curve for oppressive technology, which goes, 'refugee, immigrant, prisoner, mental patient, children, welfare recipient, blue collar worker, white collar worker.'"

Surveillance

Surveillance Data collection Technology Risk

Your location or browsing habits could lead to price increases when buying online

Malwarebytes

JANUARY 20, 2025

The intermediaries claimed they used advanced algorithms, artificial intelligence, and other technologies, along with personal information about consumers to determine targeted prices. Understand how the company will be using your data Block web tracking wherever you can. FTC chair Lina M.

Surveillance

Surveillance Artificial Intelligence Consumer Protection Retail

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

Herjavec Group

JANUARY 31, 2022

Information Technology (IT) primarily refers to hardware, software, and communications technologies like networking equipment and modems that are used to store, recover, transmit, manipulate, and protect data. . Operational technology has seen innovations that allowed it to become safer, more efficient, and more reliable.

Technology

Technology Cybersecurity InfoSec Software

Texas Sues GM for Collecting Driving Data without Consent

Schneier on Security

AUGUST 14, 2024

General Motors sold this information to several other companies, including to at least two companies for the purpose of generating “Driving Scores” about GM’s customers, the AG alleged.

Insurance

Insurance Manufacturing Technology Data collection

LLM Summary of My Book Beyond Fear

Schneier on Security

SEPTEMBER 15, 2023

Where possible, favor openness and transparency over aggressive data collection or restrictions which erode civil liberties. Seek security policies and technologies that enhance society broadly rather than benefit special interests. Privacy Rights – Pervasive monitoring and data collection erode privacy rights and dignity.

Data collection

Data collection Risk Surveillance Manufacturing

CSTA Turns 400 – Proof That Technology Integrations Is Exactly What You Are Looking For

Cisco Security

AUGUST 26, 2021

With the addition of Kenna Security into our program we now have over 250 technology partners and over 400 integrations for our mutual customers to utilize. An integration with Cigent Technology is now available for Secure Endpoint customers to integrate with. Kenna has a healthy 3rd Party ecosystem of technology partners.

Technology

Technology Firewall VPN Authentication

Interview with the Head of the NSA’s Research Directorate

Schneier on Security

FEBRUARY 3, 2022

MIT Technology Review published an interview with Gil Herrera, the new head of the NSA’s Research Directorate.

Big data

Big data Surveillance Technology Data collection

New streaming ad technology plays hide-and-seek with gamers

Malwarebytes

OCTOBER 27, 2022

Let’s take a look at how advertising has been used in an Amazon gaming title previously, and see how that could create a frosty reception for any new ad technology. It may well be different technology, but it could have easily inspired similar thinking where gaming and game streaming products are concerned. How does this work?

Technology

Technology Advertising Marketing Retail

5G Security

Schneier on Security

JANUARY 14, 2020

intelligence agencies like the NSA rely on inadvertent insecurities for their worldwide data collection efforts, and law enforcement agencies like the FBI have even tried to introduce new ones to make their own data collection efforts easier. What's more, U.S.

Data collection

Data collection Software Marketing Government

Privacy Roundup: Week 3 of Year 2025

Security Boulevard

JANUARY 20, 2025

Specifically, stories and news items where public and/or private organizations have leveraged their capabilities to encroach on user privacy; for example, data brokers using underhanded means to harvest user location data without user knowledge or public organizations using technology without regard for user privacy.

Surveillance

Surveillance Malware Data breaches Scams

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

Meanwhile, the chairman of China's technology giant Huawei has pointed to NSA spying disclosed by Edward Snowden as a reason to mistrust US technology companies. Even so, these examples illustrate an important point: there's no escaping the technology of inevitable surveillance.

Surveillance

Surveillance Wireless Government Internet

LLMs and Phishing

Schneier on Security

APRIL 10, 2023

This is due not only to AI advances, but to the business model of the internet—surveillance capitalism—which produces troves of data about all of us, available for purchase from data brokers. Combine the digital dossiers that data brokers have on all of us with LLMs, and you have a tool tailor-made for personalized scams.

Phishing

Phishing Scams Internet Internet

114 Million US Citizens and Companies Found Unprotected Online

Adam Levin

DECEMBER 3, 2018

A cached version of the company’s website shows that it promised “access to our massive in-house data collection, as well as one of the largest data supplier networks of any data or lead company.”. The data was exposed due to a misconfiguration of Elasticsearch , an open-source search engine technology.

Identity Theft

Identity Theft Data collection Engineering Passwords

DCAP Systems: Protecting Your Data with Advanced Technology

SecureWorld News

APRIL 30, 2023

DCAP can be seen as an intelligent security instrument that provides off-the-shelf data protection technologies, implementing a new approach to solving an important and necessary task. DCAP systems are especially effective in preventing violations at the stage of establishing persistence, privilege escalation, and data collection.

Technology

Technology Unstructured Data Data breaches Information Security

Senators Urge FTC to Probe ID.me Over Selfie Data

Krebs on Security

MAY 18, 2022

for “deceptive statements” the company and its founder allegedly made over how they handle facial recognition data collected on behalf of the Internal Revenue Service , which until recently required anyone seeking a new IRS account online to provide a live video selfie to ID.me. ” As Cyberscoop reported on Apr.

Government

Government Accountability Surveillance Data collection

Google Is Using Its Vast Data Stores to Train AI

Schneier on Security

JULY 12, 2023

No surprise, but Google just changed its privacy policy to reflect broader uses of all the surveillance data it has captured over the years: Research and development : Google uses information to improve our services and to develop new products, features and technologies that benefit our users and the public.

Surveillance

Surveillance Technology Data collection Artificial Intelligence

GUEST ESSAY: Here’s why managed security services — MSS and MSSP — are catching on

The Last Watchdog

MAY 20, 2022

Managed security services (MSS) refer to a service model that enable the monitoring and managing of security technologies, systems, or even software-as-a-service (SaaS) products. An MSSP can assist with data collection and report generation to establish compliance during audits or in the aftermath of a possible incident.

Marketing

Marketing Digital transformation Technology Cybersecurity

US Federal Judge Upholds Automakers' Right to Record Texts, Call Logs

SecureWorld News

NOVEMBER 15, 2023

The automakers argued that their practice was necessary to provide certain features and services, such as hands-free calling and texting, and that customers had consented to the data collection by agreeing to the terms of service when they purchased their vehicles. For the auto manufacturers involved, this is a significant victory.

Data collection

Data collection Technology Surveillance Data privacy

SHARED INTEL: VCs pumped $21.8 billion into cybersecurity in 2021 — why there’s more to come

The Last Watchdog

JUNE 13, 2022

Many of the startups attempting to tackle this vexing problem are offering the promise of data science and machine learning to automate the process of managing identities, although none of them even have the data collected to prove the accuracy and robustness of their proposed solutions.

Cybersecurity

Cybersecurity Artificial Intelligence Software Marketing

Lumma/Amadey: fake CAPTCHAs want to know if you’re human

SecureList

OCTOBER 29, 2024

Armed with BitLocker To Go, the attackers manipulate the registry, primarily to create the branches and keys that the Trojan needs to operate: That done, Lumma, again using the utility, searches the victim’s device for files associated with various cryptocurrency wallets and steals them: Then, the attackers view browser extensions related to (..)

Adware

Adware Malware Cryptocurrency Password Management

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

The Last Watchdog

JANUARY 9, 2023

It’s often difficult for small businesses to invest significantly in data privacy compliance or security measures because they don’t have large budgets. In fact, many SMBs have to choose between investing in new technology and making payroll.

Data privacy

Data privacy Small Business Data collection Cyber Risk

OpenAI Is Not Training on Your Dropbox Documents—Today

Schneier on Security

DECEMBER 19, 2023

This isn’t helped by the fact that AI technology means the scope of what’s possible is changing at a rate that’s hard to appreciate even if you’re deeply aware of the space. Privacy is important, and very easily misunderstood. People both overestimate and underestimate what companies are doing, and what’s possible.

Government

Government Banking Risk Internet

Secret Service Investigates Breach at U.S. Govt IT Contractor

Krebs on Security

SEPTEMBER 9, 2019

Secret Service is investigating a breach at a Virginia-based government technology contractor that saw access to several of its systems put up for sale in the cybercrime underground, KrebsOnSecurity has learned.

Cybercrime

Cybercrime Government Data collection Internet

GUEST ESSAY: Privacy risks introduced by the ‘metaverse’ — and how to combat them

The Last Watchdog

OCTOBER 10, 2022

As digital technologies become more immersive and tightly integrated with our daily lives, so too do the corresponding intrusive attacks on user privacy. To test the true extent of data collection in VR, we designed a simple 30-person user study called MetaData. Related: The case for regulating facial recognition.

Risk

Risk Data privacy Data collection Technology

Cybersecurity Weekly Update – 24 February 2025

Security Boulevard

FEBRUARY 23, 2025

Home Office Contractor's Data Collection Sparks Privacy Concerns The Home Office faces scrutiny after revelations that its contractor, Equifax, collected data on British citizens while conducting financial checks on migrants applying for fee waivers.

Cybersecurity

Cybersecurity Government Data collection Encryption

Google agreed to settle a $5 billion privacy lawsuit

Security Affairs

DECEMBER 31, 2023

According to the lawsuit, the company utilized its advertising technologies and other methods to collect details of users’ site visits and activities, even when individuals were using “private” browsing mode. The IT giant is accused of having collected an unaccountable trove of information.

Data collection

Data collection Advertising Hacking Technology

MY TAKE: ‘Network Detection and Response’ emerges as an Internet of Things security stopgap

The Last Watchdog

APRIL 9, 2020

Data collected by IoT devices will increasingly get ingested into cloud-centric networks where it will get crunched by virtual servers. I had a fascinating discussion about this with Sri Sundaralingam, vice president of cloud and security solutions at ExtraHop , a Seattle-based supplier of NDR technologies. We spoke at RSA 2020.

Internet

Internet Internet IoT Technology

“We will hold them accountable”: General Motors sued for selling customer driving data to third parties

Malwarebytes

AUGUST 20, 2024

GM collected scores of data points from consumers about their driving habits and monetized that data by selling it on to other commercial parties. The driving data collected and sold by GM included trip details like speed, seatbelt status, and driven distance.

Insurance

Insurance Accountability Data collection Surveillance

IT threat evolution Q3 2024

SecureList

NOVEMBER 29, 2024

CloudSorcerer is a sophisticated cyber-espionage tool used for stealth monitoring, data collection and exfiltration via Microsoft, Yandex and Dropbox cloud infrastructures. The data collected about the targets’ companies and contact information could be used to spy on people of interest and lay the groundwork for future attacks.

Energy and Utilities

Energy and Utilities Ransomware Malware Government

Masterclass in CIAM for Insurance: Balancing Security, Experience, and Consent

IT Security Guru

AUGUST 7, 2024

The insurance industry is experiencing a significant transformation fuelled by the ubiquity of digital technologies. CIAM platforms facilitate this process by allowing “just-in-time” data collection at various touchpoints along the user journey, enriching customer profiles and enabling personalised services.

Insurance

Insurance Data collection Authentication Technology

New survey shows US adults split on COVID-19 cell phone tracking and data collection

SOC Technology Failures?—?Do They Matter?

Webinars

Trending Sources

Surveillance by the US Postal Service

Webinars

Inside the DemandScience by Pure Incubation Data Breach

How threat actors can use generative artificial intelligence?

Malwarebytes acquires AzireVPN to fuel additional VPN features and functionalities

Modern Mass Surveillance: Identify, Correlate, Discriminate

Enhancing IT Support for Manufacturing Systems: Addressing Critical Gaps

Cloudy with Strategic Technology Macro Trends on the Horizon

BrandPost: The state of operational technology and cybersecurity

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Privacy vs. Surveillance in the Age of COVID-19

Web 3.0 Requires Data Integrity

RSAC Fireside Chat: Jscrambler levels-up JavaScript security, slows GenAI-fueled privacy loss

On Surveillance in the Workplace

Your location or browsing habits could lead to price increases when buying online

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

Texas Sues GM for Collecting Driving Data without Consent

LLM Summary of My Book Beyond Fear

CSTA Turns 400 – Proof That Technology Integrations Is Exactly What You Are Looking For

Interview with the Head of the NSA’s Research Directorate

New streaming ad technology plays hide-and-seek with gamers

5G Security

Privacy Roundup: Week 3 of Year 2025

On Chinese "Spy Trains"

LLMs and Phishing

114 Million US Citizens and Companies Found Unprotected Online

DCAP Systems: Protecting Your Data with Advanced Technology

Senators Urge FTC to Probe ID.me Over Selfie Data

Google Is Using Its Vast Data Stores to Train AI

GUEST ESSAY: Here’s why managed security services — MSS and MSSP — are catching on

US Federal Judge Upholds Automakers' Right to Record Texts, Call Logs

SHARED INTEL: VCs pumped $21.8 billion into cybersecurity in 2021 — why there’s more to come

Lumma/Amadey: fake CAPTCHAs want to know if you’re human

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

OpenAI Is Not Training on Your Dropbox Documents—Today

Secret Service Investigates Breach at U.S. Govt IT Contractor

GUEST ESSAY: Privacy risks introduced by the ‘metaverse’ — and how to combat them

Cybersecurity Weekly Update – 24 February 2025

Google agreed to settle a $5 billion privacy lawsuit

MY TAKE: ‘Network Detection and Response’ emerges as an Internet of Things security stopgap

“We will hold them accountable”: General Motors sued for selling customer driving data to third parties

IT threat evolution Q3 2024

Masterclass in CIAM for Insurance: Balancing Security, Experience, and Consent

Stay Connected