Security Boulevard

APRIL 5, 2024

Fast enough for government work: The Federal Communications Commission is finally minded to do something about decades-old vulnerabilities. appeared first on Security Boulevard. The post FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

Government 130

Government Digital transformation Telecommunications Social Engineering 130

Security Boulevard

JANUARY 26, 2024

The development of privacy-enhancing technologies (PETs) can resolve the tension between data privacy and utility. The post Why We Need to Cultivate a Confidential Computing Ecosystem appeared first on Security Boulevard.

Data privacy 87

Data privacy Technology Encryption Security Awareness 87

Security Boulevard

JUNE 27, 2022

But the American Data Privacy and Protection Act wasn’t the only privacy related issue on Capitol Hill last week. The post ADPPA US Privacy Law: Coming Soon in Wake of Roe v. Wade Redo appeared first on Security Boulevard. We could soon have a federal GDPR.

Data privacy 98

Data privacy Social Engineering IoT Engineering 98

Security Boulevard

SEPTEMBER 25, 2023

Apple Scrambled to Fix 3 More CVEs: Egyptian opposition presidential candidate Ahmed Eltantawy targeted “by the government. The post More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator appeared first on Security Boulevard.

Spyware 126

Spyware Government Social Engineering Data privacy 126

Security Boulevard

SEPTEMBER 8, 2022

Security and compliance. With data privacy in the headlines and cyberattacks on the rise, these two simple words have become hot topics across just about every industry. But as conversations about security and compliance continue, it has become clear that not everyone understands the distinction between the two.

Data privacy 98

Data privacy Security Awareness Government Risk 98

BH Consulting

MARCH 8, 2024

This meant, de facto , the Irish privacy regulator was responsible for overseeing the likes of Facebook/Meta, Twitter/X and many others. She also held the role at a time when the EU General Data Protection Regulation came into force, ushering in an increased public awareness of data privacy. presidents.

Cybersecurity 107

Cybersecurity Social Engineering Healthcare Data privacy 107

SC Magazine

JULY 12, 2021

We often hear about security awareness training’s role in maintaining proper cyber hygiene, but what about privacy awareness programs? As a significant portion of privacy incidents happen from human error, training is critical to mitigating privacy risk within an organization,” said Berry.

Education 109

Education Security Awareness Data privacy Social Engineering 109

eSecurity Planet

JANUARY 5, 2023

“In 2022, governments fought wars online, businesses were affected by multiple ransomware gangs, and regular users’ data was constantly on hackers’ radars,” said NordVPN CTO Marijus Briedis. 2023, he predicted, “will not be any easier when it comes to keeping users’ data safe and private.”

Ransomware 145

Ransomware CISO Software Cybercrime 145

Thales Cloud Protection & Licensing

JULY 15, 2021

Secure firmware flashing is also a way to enhance assurance of device security, allowing for audit capabilities and controls around these devices. There are also data privacy implications with IoT. Ellen's experience with medical clients gives her a more critical view of the need for data privacy with IoT devices.

IoT 100

IoT Data privacy Technology Risk 100

Security Boulevard

DECEMBER 8, 2023

TA446’s new TTPs: “Star Blizzard” FSB team called out by Five Eyes governments (again). The post Russian FSB Targets US and UK Politicians in Sneaky Spear-Phish Plan appeared first on Security Boulevard.

Phishing 83

Phishing Government Digital transformation Social Engineering 83

SecureWorld News

OCTOBER 27, 2021

If these things are true, how do we share information with others in a way that is proven to work and create a culture of security? Security awareness and how you talk about cybersecurity. But you know, if you're not doing it all the time in your security awareness department, roll out a survey.

Cybersecurity 90

Cybersecurity Cybercrime Security Awareness Education 90

SecureWorld News

SEPTEMBER 29, 2022

Cybersecurity Awareness Month was first declared by President George W. Bush and Congress in 2004 to help individuals protect themselves online as threats to technology and data privacy became more commonplace. This year's theme exemplifies that cybersecurity can be, and is, a complex subject, but it really comes down to people.

Cybersecurity 68

Cybersecurity Education Security Awareness Password Management 68

SecureWorld News

MAY 22, 2023

On June 8, she will lead a panel discussion on "The Future of Privacy and Cyber: AI, Quantum and Mind Readers," joined by Monique Ferraro, Cyber Counsel, HSB Insurance; Karen Painter Randall, Partner and Chair, Cybersecurity Data Privacy and Incident Response, Connell Foley LLP; and Violet Sullivan, VP of Client Engagement, Redpoint Cyber.

Scams 88

Scams Password Management Passwords Authentication 88

Centraleyes

AUGUST 25, 2024

expands its core structure to include six functions: Identify, Protect, Detect, Respond, Recover, and a newly introduced function: Govern. framework expands upon existing categories and introduces new subcategories to cover emerging threats such as ransomware, supply chain vulnerabilities, and cloud security. NIST CSF 1.1

Risk 52

Risk Government Cybersecurity Backups 52

Malwarebytes

APRIL 5, 2023

In fact, an October 2022 Government Accountability Office (GAO) report found that loss of learning following a cyberattack ranged from three days to three weeks, with recovery time taking anywhere from two to nine months. Secure data storage is also a requirement of FERPA.

Education 83

Education Ransomware Cybersecurity Risk 83

Security Boulevard

JUNE 28, 2024

Chinese fast-fashion-cum-junk retailer “is a data-theft business.” AG appeared first on Security Boulevard. The post Temu is Malware — It Sells Your Info, Accuses Ark.

Malware 137

Malware Retail Social Engineering Data privacy 137

Security Boulevard

FEBRUARY 16, 2024

The post DoD Email Breach: Pentagon Tells Victims 12 Months Late appeared first on Security Boulevard. 3TB Email FAIL: Personal info of tens of thousands leaks. Microsoft cloud email server was missing a password.

Passwords 128

Passwords Digital transformation Social Engineering Data privacy 128

Security Boulevard

MARCH 11, 2024

Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti. The post Irony of Ironies: CISA Hacked — ‘by China’ appeared first on Security Boulevard. Free rides and traffic jams: U.S.

Hacking 138

Hacking Cybersecurity Social Engineering Data privacy 138

Security Boulevard

JUNE 13, 2024

The post Tile/Life360 Breach: ‘Millions’ of Users’ Data at Risk appeared first on Security Boulevard. Location tracking service leaks PII, because—incompetence? Seems almost TOO easy.

Risk 134

Risk Social Engineering Data privacy Engineering 134

Security Boulevard

APRIL 8, 2024

Enter the lobbyists: A draft federal privacy act has Washington DC buzzing. The post Here Comes the US GDPR: APRA, the American Privacy Rights Act appeared first on Security Boulevard. But it’s just a bill—and it’s a long, long journey before it becomes a law.

Data privacy 133

Data privacy Security Awareness Mobile Risk 133

Security Boulevard

NOVEMBER 1, 2024

Plus brillants exploits: Canadian Centre for Cyber Security fingers Chinese state sponsored hackers. China Hacks Canada too, Says CCCS appeared first on Security Boulevard. The post Ô!

Hacking 128

Hacking Social Engineering Cyber Attacks Data privacy 128

Security Boulevard

MAY 23, 2024

Privacy FAIL: Apple location service returns far more data than it should, to people who have no business knowing it, without your permission. The post Apple API Allows Wi-Fi AP Location Tracking appeared first on Security Boulevard.

Social Engineering 133

Social Engineering Data privacy Engineering IoT 133

Security Boulevard

FEBRUARY 7, 2024

The post ‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing appeared first on Security Boulevard. PR FAIL: Were 3 million toothbrushes hacked into a botnet? Or does a Fortinet spokeschild have egg on his face?

Hacking 142

Hacking Social Engineering DDOS Internet 142

Security Boulevard

MAY 24, 2024

appeared first on Security Boulevard. Inglorious Basta(rds): 16 days on, huge hospital system continues to be paralyzed by ransomware—and patient safety is at risk. The post Black Basta Ascension Attack Redux — can Patients Die of Ransomware?

Ransomware 135

Ransomware Risk Social Engineering Healthcare 135

Security Boulevard

JANUARY 10, 2024

The post China Cracks Apple Private Protocol — AirDrop Pwned appeared first on Security Boulevard. AirDrop hashing is weaksauce: Chinese citizens using peer-to-peer wireless comms “must be identified.”

Wireless 135

Wireless Social Engineering Firewall Data privacy 135

eSecurity Planet

SEPTEMBER 23, 2024

Deterrent controls help to create a more secure cloud environment by making it less inviting to potential attackers. Combined with other cloud safeguards , these measures are especially effective at increasing security awareness and discouraging suspicious conduct.

Risk 88

Risk Threat Detection Architecture Data breaches 88

Security Boulevard

OCTOBER 25, 2024

The post 100 MILLION Americans in UnitedHealth PII Breach appeared first on Security Boulevard. Not cute: $UNH’s Change Healthcare unit paid a big ransom—its IT was as weak as a kitten.

Healthcare 133

Healthcare Social Engineering Authentication Data privacy 133

Security Boulevard

JANUARY 3, 2024

The post Facebook’s New Privacy Nightmare: ‘Link History’ appeared first on Security Boulevard. How stupid does he think we are? You’ll want to turn off this new app setting.

Social Engineering 138

Social Engineering Advertising Data privacy Engineering 138

Security Boulevard

SEPTEMBER 6, 2024

The post Russian ‘WhisperGate’ Hacks: 5 More Indicted appeared first on Security Boulevard. Eaten by a GRU: Fake ransomware created by Russian GRU Unit 29155 attacked Ukraine and NATO—a month before the full scale invasion.

Hacking 137

Hacking Ransomware Social Engineering Cyber Attacks 137

Security Boulevard

FEBRUARY 29, 2024

The post GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL appeared first on Security Boulevard. Forking hell: Scrotebots clone thousands of projects, injecting malware millions of times.

Software 137

Software Malware Social Engineering Data privacy 137

Security Boulevard

JUNE 25, 2024

The post Microsoft Privacy FAIL: Windows 11 Silently Backs Up to OneDrive appeared first on Security Boulevard. Copying users’ files and deleting some? Even a cartoon hound knows this isn’t fine.

Social Engineering 137

Social Engineering Account Security Accountability Data privacy 137

Security Boulevard

MARCH 27, 2024

The post Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data appeared first on Security Boulevard. Meta MITM IAAP SSL bump: Zuck ordered “Project Ghostbusters”—with criminal consequences, says class action lawsuit.

Social Engineering 137

Social Engineering VPN Data privacy Engineering 137

Security Boulevard

JULY 5, 2024

The post ‘Polyfill’ Supply Chain Threat: 4x Worse Than We Thought appeared first on Security Boulevard. Spackle attack: Chinese company takes over widely used free web service—almost 400,000 websites at risk.

Risk 137

Risk Social Engineering Data privacy Software 137

Security Boulevard

JANUARY 2, 2024

The post Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old appeared first on Security Boulevard. What a Mickey Mouse operation: Infostealer scrotes having a field day with unpatched vulnerability.

Social Engineering 137

Social Engineering Accountability Account Security Data privacy 137

Security Boulevard

JULY 2, 2024

The post ‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE appeared first on Security Boulevard. Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug.

Risk 137

Risk Social Engineering Data privacy Software 137

Security Boulevard

JANUARY 30, 2024

The post ‘Extremely serious’ — Mercedes-Benz Leaks Data on GitHub appeared first on Security Boulevard. Oh, Lord: My friends all hack Porsches—I must make amends.

Hacking 136

Hacking Digital transformation Social Engineering Data privacy 136

Security Boulevard

APRIL 10, 2024

LG Fixes Smart TV Vulns appeared first on Security Boulevard. 4×CVE=RCE or Merely CE? Update your LG TV now, or let hackers root it. But is Bitdefender overhyping the issue? The post Watch This? Patch This!

Social Engineering 135

Social Engineering IoT Data privacy Engineering 135