Security Boulevard

JUNE 27, 2022

But the American Data Privacy and Protection Act wasn’t the only privacy related issue on Capitol Hill last week. The post ADPPA US Privacy Law: Coming Soon in Wake of Roe v. We could soon have a federal GDPR. Wade Redo appeared first on Security Boulevard.

Data privacy 98

Data privacy Social Engineering IoT Engineering 98

Security Boulevard

DECEMBER 12, 2024

Artificial stupidity: Large language models are terrible if you need reasoning or actual understanding. The post AI Slop is Hurting Security LLMs are Dumb and People are Dim appeared first on Security Boulevard.

Artificial Intelligence 112

Artificial Intelligence Social Engineering Data privacy Risk 112

eSecurity Planet

JANUARY 6, 2022

Fortinet notes that with the growing convergence of operational technology (OT) and IT at the network edge via remote access and IoT devices , “holding such systems and critical infrastructure for ransom will be lucrative but could also have dire consequences, including affecting the lives and safety of individuals.

Ransomware 136

Ransomware Cybersecurity Artificial Intelligence CISO 136

Security Boulevard

FEBRUARY 28, 2025

Dumb Design + Crud Code = Privacy Panic: Its been SEVEN MONTHS, but Tims crew is yet to fix the bugs. The post Apple Lets Stalkers Find YOU nRootTag Team Breaks AirTag Crypto appeared first on Security Boulevard.

Social Engineering 106

Social Engineering Data privacy IoT Engineering 106

Security Boulevard

JANUARY 15, 2025

Dont Mess With Texas Privacy: We will hold all these companies accountable, rants state attorney general Ken Paxton (pictured). The post Allstate Violates Drivers Privacy, Texas AG Alleges appeared first on Security Boulevard.

Accountability 96

Accountability Insurance Social Engineering Spyware 96

SC Magazine

MARCH 10, 2021

Making matters worse, the cameras employ facial recognition technology, which leads to questions as to whether an attacker could actually identify individuals caught on camera and then pursue them as targets for social engineering schemes or something even more nefarious. When surveillance leads to spying.

Surveillance 129

Surveillance IoT Accountability Passwords 129

Andrew Hay

DECEMBER 10, 2024

5G and IoT as Vulnerability Catalysts The proliferation of 5G will dramatically increase the number of connected devices, leading to a new wave of vulnerabilities. In 2025, securing IoT ecosystems will be a top priority, as poorly designed IoT devices become an attractive attack vector for botnets and espionage campaigns.

Cybersecurity 52

Cybersecurity IoT Artificial Intelligence Social Engineering 52

The Security Ledger

AUGUST 11, 2018

Scores of contests at the annual DEF CON event reveal hacker culture in its Baroque glory, with tests of social engineering and IoT hacking skills taking center stage. They don’t call it “Hacker Summer Camp” for nothing. Read the whole entry. »

Social Engineering 40

Social Engineering IoT Hacking Engineering 40

SecureWorld News

OCTOBER 20, 2021

We are subject to numerous laws and regulations designed to protect this information, such as the European Union’s General Data Protection Regulation (“GDPR”), the United Kingdom’s GDPR, the California Consumer Privacy Act (and its successor the California Privacy Rights Act that will go into effect on January 1, 2023), as well as various other U.S.

Cyber Risk 98

Cyber Risk Risk Insurance Cyber Insurance 98

Security Boulevard

JUNE 18, 2024

Or junk it if EOL: Two nasty vulnerabilities need an update—pronto. The post ASUS Router User? Patch ASAP! appeared first on Security Boulevard.

Firmware 135

Firmware Social Engineering Data privacy IoT 135

Security Boulevard

JULY 2, 2024

Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug. The post ‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE appeared first on Security Boulevard.

Risk 137

Risk Social Engineering Data privacy Software 137

Security Boulevard

MAY 23, 2024

Privacy FAIL: Apple location service returns far more data than it should, to people who have no business knowing it, without your permission. The post Apple API Allows Wi-Fi AP Location Tracking appeared first on Security Boulevard.

Social Engineering 133

Social Engineering Data privacy Engineering IoT 133

Security Boulevard

FEBRUARY 7, 2024

PR FAIL: Were 3 million toothbrushes hacked into a botnet? Or does a Fortinet spokeschild have egg on his face? The post ‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing appeared first on Security Boulevard.

Hacking 142

Hacking Social Engineering DDOS Internet 142

Security Boulevard

JULY 9, 2024

Credential crunch: Ten billion plain-text passwords in a file—sky falling or situation normal? The post Biggest Ever Password Leak — but is ObamaCare’s RockYou2024 Really NEW? appeared first on Security Boulevard.

Passwords 127

Passwords Social Engineering Data privacy IoT 127

Security Boulevard

APRIL 10, 2024

4×CVE=RCE or Merely CE? Update your LG TV now, or let hackers root it. But is Bitdefender overhyping the issue? The post Watch This? Patch This! LG Fixes Smart TV Vulns appeared first on Security Boulevard.

Social Engineering 135

Social Engineering IoT Data privacy Engineering 135

Security Boulevard

FEBRUARY 22, 2024

Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures. The post PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs appeared first on Security Boulevard.

Hacking 136

Hacking Government Digital transformation Social Engineering 136

Security Boulevard

APRIL 5, 2024

Fast enough for government work: The Federal Communications Commission is finally minded to do something about decades-old vulnerabilities. The post FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair? appeared first on Security Boulevard.

Government 130

Government Digital transformation Telecommunications Social Engineering 130

Security Boulevard

FEBRUARY 8, 2024

Snow joke: A Microsoft researcher found it—and it’s somehow Microsoft’s fault. The post Linux Vendors Squawk: PATCH NOW — CVSS 9.8 Bootkit Bug in shim.efi appeared first on Security Boulevard.

Social Engineering 132

Social Engineering Data privacy IoT Engineering 132

Security Boulevard

NOVEMBER 29, 2023

The post Okta Screws Up (Yet Again) — ALL Customers’ Data Hacked, not just 1% appeared first on Security Boulevard. You had one job: Last month’s sheer incompetence descends this week into UTTER FARCE.

Hacking 135

Hacking Social Engineering Authentication Architecture 135

Security Boulevard

AUGUST 14, 2024

See These CVEs: Patch Tuesday—ten zero-days, seven Critical vulns, zero time to waste. The post August Patch Pileup: Microsoft’s Zero-Day Doozy Dump appeared first on Security Boulevard.

Social Engineering 123

Social Engineering Data privacy Engineering IoT 123

Security Boulevard

APRIL 29, 2024

MDM Hindered: Android phones are still OK; this is Samsung’s home, after all. The post South Korean iPhone Ban: MDM DMZ PDQ appeared first on Security Boulevard.

Social Engineering 129

Social Engineering Data privacy IoT Engineering 129

Security Boulevard

MARCH 11, 2024

Free rides and traffic jams: U.S. Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti. The post Irony of Ironies: CISA Hacked — ‘by China’ appeared first on Security Boulevard.

Hacking 138

Hacking Cybersecurity Social Engineering Data privacy 138

Security Boulevard

JULY 10, 2024

MD5 MITM Muddle: Ancient, widely used protocol has CVSS 9.0 vulnerability. The post ‘Blast-RADIUS’ Critical Bug Blows Up IT Vacation Plans appeared first on Security Boulevard.

Social Engineering 124

Social Engineering Data privacy IoT Engineering 124

Security Boulevard

FEBRUARY 1, 2024

a/k/a BRONZE SILHOUETTE: FBI head Wray won’t tolerate China’s “real-world threat to our physical safety.” The post FBI Warning: China Will Hack US Infra. via Router Botnet) appeared first on Security Boulevard.

Hacking 126

Hacking Social Engineering Data privacy IoT 126

Thales Cloud Protection & Licensing

NOVEMBER 5, 2024

As if things were not difficult enough, data collection in more states and countries is becoming stricter, with increased consumer protection laws leaving retailers applying tighter data privacy to their digital platforms. The human element risk cannot be understated.

Retail 71

Retail Data breaches Digital transformation Risk 71

Security Boulevard

NOVEMBER 5, 2024

As if things were not difficult enough, data collection in more states and countries is becoming stricter, with increased consumer protection laws leaving retailers applying tighter data privacy to their digital platforms. The human element risk cannot be understated.

Retail 64

Retail Data breaches Digital transformation Risk 64

Security Boulevard

JULY 26, 2024

Big BIOS bother: Hundreds of PC models from vendors such as HP, Lenovo, Dell, Intel, Acer and Gigabyte shipped with useless boot protection—using private keys that aren’t private. The post PKfail: 800+ Major PC Models have Insecure ‘Secure Boot’ appeared first on Security Boulevard.

Social Engineering 87

Social Engineering Firmware Data privacy Engineering 87

Security Boulevard

MAY 17, 2024

DPRK IT WFH: Justice Department says N. Korean hackers are getting remote IT jobs, posing as Americans. The post North Korea IT Worker Scam Brings Malware and Funds Nukes appeared first on Security Boulevard.

Scams 83

Scams Malware Social Engineering Data privacy 83

Security Boulevard

DECEMBER 20, 2023

Testy Testudine: Lurking vuln in SSH spec means EVERY implementation must build patches. The post SSH FAIL: Terrapin Attack Smashes ‘Secure’ Shell Spec appeared first on Security Boulevard.

Digital transformation 86

Digital transformation Social Engineering Data privacy Authentication 86

Security Boulevard

DECEMBER 28, 2023

“No Ordinary Vulnerability” — Operation Triangulation research uncovers new details of fantastic attack chain. The post NSA iPhone Backdoor? Apple Avoids Russian Blame Game appeared first on Security Boulevard.

Digital transformation 85

Digital transformation Social Engineering Spyware Data privacy 85

Security Boulevard

FEBRUARY 28, 2024

GRU APT28 is back again: Fancy Bear still hacking ubiquitous gear, despite patch availability. The post FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure appeared first on Security Boulevard.

Hacking 86

Hacking Social Engineering Data privacy Authentication 86

Security Boulevard

NOVEMBER 22, 2023

FSB APT USB VBS LNK DLL: WTH? Flash drive sharing malware escapes Україна. Gamaredon fingered as perps. The post ‘LitterDrifter’ Russian USB Worm Leaks from Ukraine War Zone appeared first on Security Boulevard.

Malware 81

Malware Social Engineering Data privacy IoT 81

Hacker's King

OCTOBER 3, 2024

Typical targets for zero-day attacks include: Government agencies Large companies People with access to important data , like trade secrets Ordinary users : Hackers can use vulnerabilities to take control of computers and create botnets. Hardware and IoT devices : These can also be attacked through unpatched vulnerabilities.

Media 52

Media Spyware Accountability Marketing 52

Security Boulevard

OCTOBER 13, 2023

This is why we can’t have nice things: 38 victims of Apple’s “negligence” named in amended class action. The post Stalking: Fear of Apple AirTag ‘Explodes’ — Lawsuit Momentum Grows appeared first on Security Boulevard.

Social Engineering 80

Social Engineering Data privacy IoT Engineering 80

Security Boulevard

JANUARY 21, 2024

Then they switch to the best practices to prevent social media account takeovers, highlighting […] The post The World of Scambaiting, Preventing Social Media Account Takeovers, Network Wrenches Hacked appeared first on Shared Security Podcast.

Media 78

Media Accountability Hacking Scams 78

Security Boulevard

NOVEMBER 20, 2023

Too many times: Federal Communications Commission shuts stable door after horse bolted. But chairwoman Jessica Rosenworcel (pictured) was hoping it would save us. The post FCC’s Got New Rules for SIM-Swap and Port-Out Fraud appeared first on Security Boulevard.

Social Engineering 78

Social Engineering Authentication Scams Data privacy 78

Security Boulevard

AUGUST 27, 2024

Should’ve listened to Edison: After the arrest of Pavel Durov—the Telegram CEO—comes news of domestic extremists using the chat app to organize. The post ‘Terrorgram’ Telegram Terrorists Trash Transformers — Grid in Peril appeared first on Security Boulevard.

Social Engineering 125

Social Engineering Encryption Data privacy IoT 125