Security Boulevard

JULY 2, 2024

The post ‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE appeared first on Security Boulevard. Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug.

Risk 137

Risk Social Engineering Data privacy Software 137

Security Boulevard

MAY 16, 2024

One in three office workers who use GenAI admit to sharing customer info, employee details and financial data with the platforms. The post Risks of GenAI Rising as Employees Remain Divided About its Use in the Workplace appeared first on Security Boulevard. Are you worried yet?

Risk 133

Risk Social Engineering Artificial Intelligence Data privacy 133

Security Boulevard

AUGUST 3, 2021

Data laundering, like money laundering, is the act of acquiring data through an illegal means—whether that’s the dark web or a hacked/stolen database—and then taking that data and running it through a legitimate business or process in order to make the data seem authentic.

Risk 145

Risk Authentication Technology Hacking 145

Security Boulevard

NOVEMBER 28, 2023

Generative AI can help maintain a competitive advantage, but organizations should be mindful of the security and data privacy challenges of a new deployment. The post The Necessity of Security Best Practices When Implementing Generative AI appeared first on Security Boulevard.

Data privacy 122

Data privacy Social Engineering Security Awareness Engineering 122

Security Boulevard

JANUARY 26, 2024

The development of privacy-enhancing technologies (PETs) can resolve the tension between data privacy and utility. The post Why We Need to Cultivate a Confidential Computing Ecosystem appeared first on Security Boulevard.

Data privacy 87

Data privacy Technology Encryption Security Awareness 87

Security Boulevard

JUNE 27, 2022

But the American Data Privacy and Protection Act wasn’t the only privacy related issue on Capitol Hill last week. The post ADPPA US Privacy Law: Coming Soon in Wake of Roe v. Wade Redo appeared first on Security Boulevard. We could soon have a federal GDPR.

Data privacy 98

Data privacy Social Engineering IoT Security Awareness 98

Security Boulevard

JULY 5, 2024

Spackle attack: Chinese company takes over widely used free web service—almost 400,000 websites at risk. The post ‘Polyfill’ Supply Chain Threat: 4x Worse Than We Thought appeared first on Security Boulevard.

Risk 137

Risk Social Engineering Data privacy Software 137

BH Consulting

AUGUST 16, 2023

And to cover some other big privacy developments, last month the EU Commission adopted a new legal framework for EU-US data sharing. The EU-US Data Privacy Framework replaces the previous model, Privacy Shield, which a court struck down in 2020. The winners will be revealed on 8 November at a ceremony in London.

Social Engineering 52

Social Engineering Cybercrime Data privacy Engineering 52

Security Boulevard

JUNE 26, 2024

30,000 websites at risk: Check yours ASAP! The post WordPress Plugin Supply Chain Attack Gets Worse appeared first on Security Boulevard. 800 Million Ostriches Can’t Be Wrong.)

Risk 131

Risk Social Engineering Data privacy Software 131

eSecurity Planet

SEPTEMBER 23, 2024

They enforce security measures to prevent threats and unauthorized access. Understanding the various controls, their applications, benefits, and associated risks will help you gain full, secure operations during and after cloud migration. They offer an organized method to safeguard data, applications, and infrastructure.

Risk 106

Risk Threat Detection Architecture Data breaches 106

Security Boulevard

MAY 24, 2024

Inglorious Basta(rds): 16 days on, huge hospital system continues to be paralyzed by ransomware—and patient safety is at risk. appeared first on Security Boulevard. The post Black Basta Ascension Attack Redux — can Patients Die of Ransomware?

Ransomware 135

Ransomware Risk Social Engineering Healthcare 135

Centraleyes

AUGUST 25, 2024

The NIST Cybersecurity Framework (CSF) has long served as a cybersecurity cornerstone, offering a structured approach to managing and improving cybersecurity risk. framework expands upon existing categories and introduces new subcategories to cover emerging threats such as ransomware, supply chain vulnerabilities, and cloud security.

Risk 52

Risk Government Cybersecurity Backups 52

Security Boulevard

SEPTEMBER 8, 2022

Security and compliance. With data privacy in the headlines and cyberattacks on the rise, these two simple words have become hot topics across just about every industry. But as conversations about security and compliance continue, it has become clear that not everyone understands the distinction between the two.

Data privacy 98

Data privacy Security Awareness Government Risk 98

SecureWorld News

MAY 10, 2022

The rapid expansion of remote work during the pandemic has helped bring to light another password management bad habit that is ratcheting up security risks for users and businesses: unsecured Wi-Fi networks. Poor password management creates unnecessary risk for your users and your organization.

Passwords 78

Passwords Education Password Management Computers and Electronics 78

Thales Cloud Protection & Licensing

JULY 15, 2021

Ellen has extensive experience in cybersecurity, and specifically, the understanding of IoT risk. This is a massive growth, as well as an equally substantial risk footprint. Secure firmware flashing is also a way to enhance assurance of device security, allowing for audit capabilities and controls around these devices.

IoT 100

IoT Data privacy Technology Risk 100

Security Boulevard

AUGUST 1, 2024

Identity security and data security must be addressed simultaneously for an organization’s security posture to address security risks and threats adequately. The post The Unbreakable Bond: Why Identity and Data Security are Inseparable appeared first on Security Boulevard.

Risk 118

Risk Data privacy Security Awareness Cybersecurity 118

Webroot

JANUARY 24, 2022

As consumers and businesses are becoming increasingly more concerned about their data privacy, understanding how to protect that information becomes vital. This week, the global community is rallying together to raise awareness about online privacy through Data Privacy Week. What is Data Privacy Week?

Data privacy 90

Data privacy Security Awareness Antivirus Backups 90

Security Boulevard

JULY 30, 2024

Fortanix today extended the reach of its ability to discover encryption keys to on-premises IT environments to enable organizations to more comprehensively manage risks. The post Fortanix Extends Encyption Key Discovery to On-Premises IT Platforms appeared first on Security Boulevard.

Encryption 93

Encryption Risk Data privacy Security Awareness 93

Security Boulevard

NOVEMBER 4, 2021

That, at least, seems to be the state of cybersecurity and risk mitigation since the COVID-19 pandemic began. It also isn’t far from the truth: Ransomware attacks have markedly increased, placing significant pressure on insurance markets to provide organizations with affordable options to minimize risk.

Ransomware 144

Ransomware Insurance Marketing Risk 144

Responsible Cyber

JULY 13, 2024

Emphasizing the need for a comprehensive security strategy with the help of Responsible Cyber , a leading provider of cybersecurity and risk management solutions that protect organizations from internal and external threats. By following these guidelines, users can ensure their cloud storage remains secure and efficient.

Backups 52

Backups Data breaches Education Risk 52

SC Magazine

JULY 12, 2021

We often hear about security awareness training’s role in maintaining proper cyber hygiene, but what about privacy awareness programs? As a significant portion of privacy incidents happen from human error, training is critical to mitigating privacy risk within an organization,” said Berry.

Education 109

Education Security Awareness Data privacy Social Engineering 109

BH Consulting

MAY 23, 2023

Repetition can lead people to over-disclose information, that could then put them at risk of identity theft and cybercrime. First published in the Journal of Cybersecurity , the research aims to understand the ‘privacy paradox’, where people share information without protecting it from others who don’t need to see it.

Artificial Intelligence 52

Artificial Intelligence Identity Theft Social Engineering InfoSec 52

The Security Ledger

OCTOBER 18, 2018

And this year is a special occasion: a Quinceañera of sorts recognizing 15 years since the first Cybersecurity Awareness Month in 2004. As my guests this week note: the goals of Cyber Security focus and importance of cyber security awareness month has changed a lot since the early 2000s. The Computers in our Pockets.

Cyber Risk 40

Cyber Risk Cybersecurity Risk Computers and Electronics 40

eSecurity Planet

APRIL 9, 2024

Common threats include misconfigurations, cross-site scripting attacks, and data breaches. This step reduces the risks of illegal access, data loss, and regulatory noncompliance, as well as protects the integrity and security of sensitive information within SaaS applications.

Risk 108

Risk Threat Detection Data breaches Encryption 108

Security Boulevard

JANUARY 8, 2024

The accelerating development and expanding deployment of AI systems is creating significant security and privacy risks that aren’t being mitigated by modern solutions, according to a research paper from the U.S. Predictive and generative AI systems and machine learning operations rely on massive amounts of data that open.

Risk 78

Risk Technology Data privacy IoT 78

SecureWorld News

OCTOBER 27, 2021

In today's connected environment, there are a large number of evolving cyber threats putting your organization at risk. If these things are true, how do we share information with others in a way that is proven to work and create a culture of security? Security awareness and how you talk about cybersecurity.

Cybersecurity 87

Cybersecurity Cybercrime Security Awareness Education 87

CyberSecurity Insiders

JUNE 7, 2023

The influx of remote working culture has added new challenges and cybersecurity risks for small businesses. In addition, few companies can provide access to password management software or VPNs to protect their internet connection and credentials and maintain security on rogue Wi-Fi networks.

Small Business 93

Small Business Cybersecurity Cyber Attacks Data breaches 93

eSecurity Planet

JANUARY 5, 2023

“All of this means cyber risk continues to escalate and that CISOs need to be just as nimble and methodical as the adversary.”. Software supply chain issues like the SolarWinds attack and the Log4j vulnerability have made supply chain security and software dependencies major issues in recent years. Similarly, the U.S.

Ransomware 145

Ransomware CISO Software Cybercrime 145

Security Boulevard

APRIL 1, 2024

A thorough cybersecurity investigation is necessary to mitigate these risks effectively. Recommended Mitigation/Action Steps Enhance Security Protocols: Implement stricter security measures within the network infrastructure to prevent malware infections and unauthorized access. Sign up for the NEW (and free!)

Malware 64

Malware Cybersecurity Risk Education 64

Security Boulevard

NOVEMBER 13, 2024

The post These 20 D-Link Devices Have Critical RCE Bug — but NO Patch NEVER appeared first on Security Boulevard. ‘Bobby’ flaw flagged WONTFIX: Company doesn’t make storage devices now; has zero interest in fixing this catastrophic vulnerability.

Internet 127

Internet Internet IoT Data privacy 127

Malwarebytes

APRIL 5, 2023

To safeguard learning continuity in this environment, US lawmakers have passed legislation aimed at mitigating security and privacy risks for the K–12 community. State laws Since COPPA, most state education departments and legislatures have developed stricter policies to better protect student privacy online.

Education 61

Education Ransomware Cybersecurity Risk 61

SecureWorld News

MAY 22, 2023

On June 8, she will lead a panel discussion on "The Future of Privacy and Cyber: AI, Quantum and Mind Readers," joined by Monique Ferraro, Cyber Counsel, HSB Insurance; Karen Painter Randall, Partner and Chair, Cybersecurity Data Privacy and Incident Response, Connell Foley LLP; and Violet Sullivan, VP of Client Engagement, Redpoint Cyber.

Scams 86

Scams Password Management Passwords Authentication 86

CyberSecurity Insiders

MAY 6, 2021

He is also an adjunct professor and industry advisory board member (cybersecurity and data privacy) at the HKBU School of Business. I am currently the Chief Information Security Officer (CISO) at Crypto.com, where I drive the company’s global cybersecurity and data privacy strategy. What job do you do today?

Cryptocurrency 52

Cryptocurrency Data privacy Computers and Electronics Cybersecurity 52

Security Boulevard

NOVEMBER 1, 2024

Plus brillants exploits: Canadian Centre for Cyber Security fingers Chinese state sponsored hackers. China Hacks Canada too, Says CCCS appeared first on Security Boulevard. The post Ô!

Hacking 128

Hacking Social Engineering Cyber Attacks Data privacy 128

Security Boulevard

OCTOBER 25, 2024

The post 100 MILLION Americans in UnitedHealth PII Breach appeared first on Security Boulevard. Not cute: $UNH’s Change Healthcare unit paid a big ransom—its IT was as weak as a kitten.

Healthcare 133

Healthcare Social Engineering Authentication Data privacy 133

Security Boulevard

OCTOBER 23, 2024

The post FortiJump: Yet Another Critical Fortinet 0-Day RCE appeared first on Security Boulevard. FortiFAIL: Remote code execution vulnerability still not acknowledged by Fortinet after 10+  days’ exploitation.

Data privacy 132

Data privacy Security Awareness Risk Government 132

Security Boulevard

OCTOBER 16, 2024

The post Apple Enrages IT — 45-Day Cert Expiration Fury appeared first on Security Boulevard. CA/B testing: Ludicrous proposal draws ire from “furious” systems administrators.

System Administration 134

System Administration Social Engineering Data privacy IoT 134