Security Boulevard

JANUARY 25, 2024

Targeted ads target targets: Patternz and Nuviad enable potentially hostile governments to track individuals by misusing ad bidding. The post Malicious AdTech Spies on People as NatSec Targets appeared first on Security Boulevard.

Government 138

Government Social Engineering Advertising Data privacy 138

Security Boulevard

FEBRUARY 22, 2024

Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures. The post PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs appeared first on Security Boulevard.

Hacking 136

Hacking Government Digital transformation Social Engineering 136

Security Boulevard

JANUARY 26, 2024

The development of privacy-enhancing technologies (PETs) can resolve the tension between data privacy and utility. The post Why We Need to Cultivate a Confidential Computing Ecosystem appeared first on Security Boulevard.

Data privacy 87

Data privacy Technology Encryption Security Awareness 87

Security Boulevard

SEPTEMBER 25, 2023

Apple Scrambled to Fix 3 More CVEs: Egyptian opposition presidential candidate Ahmed Eltantawy targeted “by the government. The post More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator appeared first on Security Boulevard.

Spyware 126

Spyware Government Social Engineering Data privacy 126

Security Boulevard

NOVEMBER 1, 2024

Plus brillants exploits: Canadian Centre for Cyber Security fingers Chinese state sponsored hackers. China Hacks Canada too, Says CCCS appeared first on Security Boulevard. The post Ô!

Hacking 128

Hacking Social Engineering Cyber Attacks Data privacy 128

Security Boulevard

SEPTEMBER 8, 2022

Security and compliance. With data privacy in the headlines and cyberattacks on the rise, these two simple words have become hot topics across just about every industry. But as conversations about security and compliance continue, it has become clear that not everyone understands the distinction between the two.

Data privacy 98

Data privacy Security Awareness Government Risk 98

Security Boulevard

OCTOBER 25, 2024

The post 100 MILLION Americans in UnitedHealth PII Breach appeared first on Security Boulevard. Not cute: $UNH’s Change Healthcare unit paid a big ransom—its IT was as weak as a kitten.

Healthcare 133

Healthcare Social Engineering Authentication Data privacy 133

Security Boulevard

OCTOBER 16, 2024

The post Apple Enrages IT — 45-Day Cert Expiration Fury appeared first on Security Boulevard. CA/B testing: Ludicrous proposal draws ire from “furious” systems administrators.

System Administration 134

System Administration Social Engineering Data privacy IoT 134

SC Magazine

JULY 12, 2021

We often hear about security awareness training’s role in maintaining proper cyber hygiene, but what about privacy awareness programs? As a significant portion of privacy incidents happen from human error, training is critical to mitigating privacy risk within an organization,” said Berry.

Education 109

Education Security Awareness Data privacy Social Engineering 109

Security Boulevard

NOVEMBER 21, 2024

The post Here’s Yet Another D-Link RCE That Won’t be Fixed appeared first on Security Boulevard. D-Licious: Stubborn network device maker digs in heels and tells you to buy new gear.

Internet 122

Internet Internet IoT Data privacy 122

Security Boulevard

FEBRUARY 7, 2025

FCC Gets Tough on Robocall Fraud appeared first on Security Boulevard. KYC isnt a Thing, claims telco: Commissioner Brendan Carr (pictured) wants $4.5 million fine on Telnyx, for enabling illegal robocall scheme. The post FINALLY!

Social Engineering 125

Social Engineering Data privacy Scams Engineering 125

Security Boulevard

JANUARY 8, 2025

The post Insecure Medical Devices Illumina DNA Sequencer Illuminates Risks appeared first on Security Boulevard. IEI-IEI, Oh: Running an obsolete OS, on obsolete hardware, configured with obsolete settings.

Risk 125

Risk Social Engineering Internet Internet 125

Security Boulevard

FEBRUARY 28, 2025

Dumb Design + Crud Code = Privacy Panic: Its been SEVEN MONTHS, but Tims crew is yet to fix the bugs. The post Apple Lets Stalkers Find YOU nRootTag Team Breaks AirTag Crypto appeared first on Security Boulevard.

Social Engineering 106

Social Engineering Data privacy IoT Engineering 106

Security Boulevard

NOVEMBER 13, 2024

The post These 20 D-Link Devices Have Critical RCE Bug — but NO Patch NEVER appeared first on Security Boulevard. ‘Bobby’ flaw flagged WONTFIX: Company doesn’t make storage devices now; has zero interest in fixing this catastrophic vulnerability.

Internet 128

Internet Internet IoT Data privacy 128

Thales Cloud Protection & Licensing

JULY 15, 2021

Secure firmware flashing is also a way to enhance assurance of device security, allowing for audit capabilities and controls around these devices. There are also data privacy implications with IoT. Ellen's experience with medical clients gives her a more critical view of the need for data privacy with IoT devices.

IoT 100

IoT Data privacy Technology Risk 100

Security Boulevard

JANUARY 21, 2025

A study by cybersecurity startup Harmonic Security found that 8.5% of prompts entered into generative AI models like ChatGPT, Copilot, and Gemini last year included sensitive information, putting personal and corporate data at risk of being leaked.

Risk 109

Risk Cybersecurity Data privacy Security Awareness 109

Security Boulevard

JANUARY 15, 2025

Dont Mess With Texas Privacy: We will hold all these companies accountable, rants state attorney general Ken Paxton (pictured). The post Allstate Violates Drivers Privacy, Texas AG Alleges appeared first on Security Boulevard.

Accountability 96

Accountability Insurance Social Engineering Spyware 96

SecureWorld News

OCTOBER 27, 2021

If these things are true, how do we share information with others in a way that is proven to work and create a culture of security? Security awareness and how you talk about cybersecurity. But you know, if you're not doing it all the time in your security awareness department, roll out a survey.

Cybersecurity 98

Cybersecurity Cybercrime Security Awareness Education 98

SecureWorld News

SEPTEMBER 29, 2022

Cybersecurity Awareness Month was first declared by President George W. Bush and Congress in 2004 to help individuals protect themselves online as threats to technology and data privacy became more commonplace. This year's theme exemplifies that cybersecurity can be, and is, a complex subject, but it really comes down to people.

Cybersecurity 86

Cybersecurity Education Security Awareness Password Management 86

Security Boulevard

DECEMBER 8, 2023

TA446’s new TTPs: “Star Blizzard” FSB team called out by Five Eyes governments (again). The post Russian FSB Targets US and UK Politicians in Sneaky Spear-Phish Plan appeared first on Security Boulevard.

Phishing 83

Phishing Government Digital transformation Social Engineering 83

Security Boulevard

JANUARY 31, 2025

The post Ransomware Scum Out For Blood: NYBCe is Latest Victim appeared first on Security Boulevard. Bloody hell: New York Blood Center Enterprises crippled by ransomware scrotes unknown.

Ransomware 91

Ransomware Social Engineering Healthcare Data privacy 91

SecureWorld News

MAY 22, 2023

On June 8, she will lead a panel discussion on "The Future of Privacy and Cyber: AI, Quantum and Mind Readers," joined by Monique Ferraro, Cyber Counsel, HSB Insurance; Karen Painter Randall, Partner and Chair, Cybersecurity Data Privacy and Incident Response, Connell Foley LLP; and Violet Sullivan, VP of Client Engagement, Redpoint Cyber.

Scams 98

Scams Password Management Passwords Authentication 98

Security Boulevard

JUNE 28, 2024

Chinese fast-fashion-cum-junk retailer “is a data-theft business.” AG appeared first on Security Boulevard. The post Temu is Malware — It Sells Your Info, Accuses Ark.

Malware 137

Malware Retail Social Engineering Data privacy 137

Security Boulevard

JUNE 13, 2024

The post Tile/Life360 Breach: ‘Millions’ of Users’ Data at Risk appeared first on Security Boulevard. Location tracking service leaks PII, because—incompetence? Seems almost TOO easy.

Risk 134

Risk Social Engineering Data privacy Engineering 134

Security Boulevard

MAY 23, 2024

Privacy FAIL: Apple location service returns far more data than it should, to people who have no business knowing it, without your permission. The post Apple API Allows Wi-Fi AP Location Tracking appeared first on Security Boulevard.

Social Engineering 133

Social Engineering Data privacy Engineering IoT 133

Security Boulevard

MARCH 3, 2025

By failing to value privacy alone, the system skews in favor of not protecting privacy. The post DOGE Access to Personal Information and The Difficulty of Showing Harm in Privacy Litigation appeared first on Security Boulevard. If a company has effective insurance, prevention becomes even less cost-effective.

Insurance 59

Insurance Data privacy Data breaches Security Awareness 59

Security Boulevard

MAY 24, 2024

appeared first on Security Boulevard. Inglorious Basta(rds): 16 days on, huge hospital system continues to be paralyzed by ransomware—and patient safety is at risk. The post Black Basta Ascension Attack Redux — can Patients Die of Ransomware?

Ransomware 135

Ransomware Risk Social Engineering Healthcare 135

Malwarebytes

APRIL 5, 2023

In fact, an October 2022 Government Accountability Office (GAO) report found that loss of learning following a cyberattack ranged from three days to three weeks, with recovery time taking anywhere from two to nine months. Secure data storage is also a requirement of FERPA.

Education 76

Education Ransomware Cybersecurity Risk 76

Security Boulevard

SEPTEMBER 6, 2024

The post Russian ‘WhisperGate’ Hacks: 5 More Indicted appeared first on Security Boulevard. Eaten by a GRU: Fake ransomware created by Russian GRU Unit 29155 attacked Ukraine and NATO—a month before the full scale invasion.

Hacking 137

Hacking Ransomware Social Engineering Cyber Attacks 137

Security Boulevard

JUNE 25, 2024

The post Microsoft Privacy FAIL: Windows 11 Silently Backs Up to OneDrive appeared first on Security Boulevard. Copying users’ files and deleting some? Even a cartoon hound knows this isn’t fine.

Social Engineering 137

Social Engineering Account Security Accountability Data privacy 137

Security Boulevard

MARCH 27, 2024

The post Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data appeared first on Security Boulevard. Meta MITM IAAP SSL bump: Zuck ordered “Project Ghostbusters”—with criminal consequences, says class action lawsuit.

Social Engineering 137

Social Engineering VPN Data privacy Engineering 137

Security Boulevard

JULY 5, 2024

The post ‘Polyfill’ Supply Chain Threat: 4x Worse Than We Thought appeared first on Security Boulevard. Spackle attack: Chinese company takes over widely used free web service—almost 400,000 websites at risk.

Risk 137

Risk Social Engineering Data privacy Software 137

Security Boulevard

JULY 2, 2024

The post ‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE appeared first on Security Boulevard. Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug.

Risk 137

Risk Social Engineering Data privacy Software 137

Security Boulevard

APRIL 10, 2024

LG Fixes Smart TV Vulns appeared first on Security Boulevard. 4×CVE=RCE or Merely CE? Update your LG TV now, or let hackers root it. But is Bitdefender overhyping the issue? The post Watch This? Patch This!

Social Engineering 135

Social Engineering IoT Data privacy Engineering 135

Security Boulevard

JULY 23, 2024

The post EFF Angry as Google Keeps 3rd-Party Cookies in Chrome appeared first on Security Boulevard. Regulatory capture by stealth? Google changes its mind about third-party tracking cookies—we’re stuck with them for the foreseeable.

Social Engineering 135

Social Engineering Advertising Marketing Surveillance 135

Security Boulevard

JUNE 18, 2024

appeared first on Security Boulevard. Or junk it if EOL: Two nasty vulnerabilities need an update—pronto. The post ASUS Router User? Patch ASAP!

Firmware 135

Firmware Social Engineering Data privacy IoT 135

Security Boulevard

JULY 1, 2024

The post ‘Russia’ Breaches TeamViewer — ‘No Evidence’ Billions of Devices at Risk appeared first on Security Boulevard. SolarWinds hackers strike again: Remote access service hacked—by APT29, says TeamViewer.

Risk 135

Risk Hacking Social Engineering Authentication 135