Security Boulevard

SEPTEMBER 24, 2024

Microsoft outlined steps it's taken over the past year under its Security Future Initiative, which was launched late last year in the wake of a high-profile attack by Chinese attackers and only months before another serious breach by a Russia-link threat group.

Government 121

Government Security Awareness Mobile Risk 121

Security Boulevard

NOVEMBER 25, 2024

EnamelPins, which manufactures and sells medals, pins, and other emblematic accessories, for months left open an Elasticsearch instance that exposed 300,000 customer emails, including 2,500 from military and government personnel. The post Huge Leak of Customer Data Includes Military Personnel Info appeared first on Security Boulevard.

Manufacturing 117

Manufacturing Government Security Awareness Phishing 117

Security Boulevard

JUNE 13, 2024

The post Tile/Life360 Breach: ‘Millions’ of Users’ Data at Risk appeared first on Security Boulevard. Location tracking service leaks PII, because—incompetence? Seems almost TOO easy.

Risk 134

Risk Social Engineering Data privacy Engineering 134

Security Boulevard

JULY 1, 2024

The post ‘Russia’ Breaches TeamViewer — ‘No Evidence’ Billions of Devices at Risk appeared first on Security Boulevard. SolarWinds hackers strike again: Remote access service hacked—by APT29, says TeamViewer.

Risk 135

Risk Hacking Social Engineering Authentication 135

SecureWorld News

JULY 3, 2024

However, this trend also introduces significant data security risks that cannot be overlooked. To navigate the complexities of global talent outsourcing while safeguarding valuable data, organizations must adopt a proactive and comprehensive approach to risk mitigation. Unauthorized access to sensitive data 1.

Risk 105

Risk Data breaches Penetration Testing Encryption 105

Security Boulevard

JULY 2, 2024

The post ‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE appeared first on Security Boulevard. Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug.

Risk 137

Risk Social Engineering Data privacy Software 137

Security Boulevard

JULY 12, 2024

We're primed to face another Y2K-like event: Q-Day, the point at which quantum computers become capable of breaking traditional encryption, totally upending security as we know it. The post Q-Day Prepping: What Businesses Can Do Now to Address Quantum Security Risks appeared first on Security Boulevard.

Risk 134

Risk Encryption Security Awareness Government 134

Security Boulevard

JANUARY 21, 2025

A study by cybersecurity startup Harmonic Security found that 8.5% of prompts entered into generative AI models like ChatGPT, Copilot, and Gemini last year included sensitive information, putting personal and corporate data at risk of being leaked.

Risk 109

Risk Cybersecurity Data privacy Security Awareness 109

Security Boulevard

AUGUST 5, 2024

The Payment Card Industry Data Security Standard (PCI DSS) aims to improve credit, debit and cash card transaction security and protect cardholders from breaches of their personal information. The post Effective Third-Party Risk Management Under PCI DSS 4.0 appeared first on Security Boulevard.

Risk 116

Risk Security Awareness Government Cybersecurity 116

Security Boulevard

NOVEMBER 17, 2023

The post Mitigating Cybersecurity Risks in a Hybrid-Work World appeared first on Security Boulevard. This shift toward remote work has opened up new opportunities for cybercriminals to exploit vulnerabilities and compromise sensitive data.

Risk 121

Risk Cybersecurity Security Awareness Government 121

Security Boulevard

FEBRUARY 6, 2024

The post Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk appeared first on Security Boulevard. By aligning priorities into a shared game plan, HR and IT can finally set their organizations up to defend against modern cyberthreats.

Risk 130

Risk Cybersecurity Social Engineering Cyber Risk 130

Security Boulevard

MAY 16, 2024

The post Risks of GenAI Rising as Employees Remain Divided About its Use in the Workplace appeared first on Security Boulevard. One in three office workers who use GenAI admit to sharing customer info, employee details and financial data with the platforms. Are you worried yet?

Risk 133

Risk Social Engineering Artificial Intelligence Data privacy 133

Security Boulevard

FEBRUARY 14, 2024

Employees are often heralded as a company's most valuable asset, but these insiders can also be an organization's biggest risk. The post 3 Ways Insider Threats Put Your Company at Risk in 2024 appeared first on Security Boulevard.

Risk 122

Risk Data breaches Security Awareness Government 122

eSecurity Planet

DECEMBER 7, 2022

Earlier this year, Ballistic Ventures invested $7 million in Nudge Security because of its focus on the modern workforce. This startup takes an interesting approach to security. See the Top Employee Security Awareness Training Tools. Kubernetes Security and Observability. GRC and risk measurement.

Cybersecurity 145

Cybersecurity Risk Technology Ransomware 145

Malwarebytes

NOVEMBER 6, 2024

Train your employees in security awareness, so they can recognize phishing attempts and know what they can and can’t do on company-issued hardware. Make it clear that mixing work and pleasure on the same device comes with security risks. Consider outsourcing time-consuming and specialized tasks.

Small Business 100

Small Business Backups VPN Firewall 100

Security Boulevard

FEBRUARY 8, 2023

6clicks today announced it has integrated its namesake governance, risk and compliance management (GRC) platform with generative AI to make it simpler to create policies. The 6clicks platform is based on an artificial intelligence (AI) engine it developed with the GPT-3 platform created by OpenAI.

Artificial Intelligence 121

Artificial Intelligence Government Engineering Risk 121

Centraleyes

MARCH 10, 2025

Privacy: Focuses on safeguarding personally identifiable information (PII) Each category addresses specific risks and priorities, allowing organizations to tailor their SOC 2 audit to their business needs. Incident Response: Establishes procedures for detecting, responding to, and recovering from security incidents.

Backups 52

Backups Encryption Risk Authentication 52

SecureWorld News

OCTOBER 5, 2023

His common sense approach to cybersecurity has made North Dakota a leader among state and local governments with unique challenges as public entities. He has created partnerships among fellow government peers—from cities to counties to federal to schools—with the private sector, and with vendors.

CISO 111

CISO Risk Government Architecture 111

Security Boulevard

APRIL 5, 2024

Fast enough for government work: The Federal Communications Commission is finally minded to do something about decades-old vulnerabilities. appeared first on Security Boulevard. The post FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

Government 130

Government Digital transformation Telecommunications Social Engineering 130

Security Boulevard

DECEMBER 9, 2022

states have now banned TikTok on government workers’ devices. The post TikTok Ban: Texas is Fourth State to Join; Indiana Sues appeared first on Security Boulevard. Plus, Indiana has sued the app’s owner.

Government 140

Government Social Engineering Engineering Security Awareness 140

Security Boulevard

FEBRUARY 17, 2025

The Growing Need for Cybersecurity Awareness Training (SAT) In todays rapidly evolving cyber threat landscape, organizations are increasingly recognizing the critical importance of Cyber Security Awareness Training (SAT) as a fundamental defense strategy.

Cyber threats 59

Cyber threats Security Awareness Cybersecurity Cyber Attacks 59

Security Boulevard

FEBRUARY 22, 2024

Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures. The post PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs appeared first on Security Boulevard.

Hacking 136

Hacking Government Digital transformation Social Engineering 136

Security Boulevard

JANUARY 25, 2024

Targeted ads target targets: Patternz and Nuviad enable potentially hostile governments to track individuals by misusing ad bidding. The post Malicious AdTech Spies on People as NatSec Targets appeared first on Security Boulevard.

Government 138

Government Social Engineering Advertising Data privacy 138

Security Boulevard

JULY 5, 2024

Spackle attack: Chinese company takes over widely used free web service—almost 400,000 websites at risk. The post ‘Polyfill’ Supply Chain Threat: 4x Worse Than We Thought appeared first on Security Boulevard.

Risk 137

Risk Social Engineering Data privacy Software 137

Security Boulevard

MARCH 25, 2025

In the cybersecurity risk world, we often encounter the issue of not speaking the same language as the business. This [] The post Aligning Cybersecurity and Third-Party Risk Management with Business Goals appeared first on Security Boulevard.

Risk 52

Risk Cybersecurity CISO Security Awareness 52

Security Boulevard

MAY 24, 2024

Inglorious Basta(rds): 16 days on, huge hospital system continues to be paralyzed by ransomware—and patient safety is at risk. appeared first on Security Boulevard. The post Black Basta Ascension Attack Redux — can Patients Die of Ransomware?

Ransomware 135

Ransomware Risk Social Engineering Healthcare 135

Security Boulevard

JUNE 26, 2024

30,000 websites at risk: Check yours ASAP! The post WordPress Plugin Supply Chain Attack Gets Worse appeared first on Security Boulevard. 800 Million Ostriches Can’t Be Wrong.)

Risk 131

Risk Social Engineering Data privacy Software 131

Security Boulevard

SEPTEMBER 25, 2023

Apple Scrambled to Fix 3 More CVEs: Egyptian opposition presidential candidate Ahmed Eltantawy targeted “by the government. The post More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator appeared first on Security Boulevard.

Spyware 126

Spyware Government Social Engineering Data privacy 126

SecureWorld News

MAY 29, 2024

The manufacturing sector faces an increasingly daunting cyber threat landscape that puts production operations, intellectual property, and entire supply chains at risk. The risk is too great, and key business partnerships are required," said Amy Bogac , former CISO at The Clorox Company. trillion annually. "

Manufacturing 106

Manufacturing CISO Artificial Intelligence Cyber threats 106

Security Boulevard

MAY 4, 2023

In recent years, digital identities have gained popularity and have been implemented by many national governments to serve as the basis of our modern digital society. The post Protecting the Future of Digital Identities appeared first on Security Boulevard.

Government 116

Government Banking Security Awareness Risk 116

Security Boulevard

JANUARY 26, 2023

The ongoing spate of breaches against critical infrastructure and government entities underscores the vulnerability of this sector. In July 2022, officials announced the federal court system had experienced a major data breach via its document filing system – back in 2020.

Data breaches 128

Data breaches Government Security Awareness Risk 128

Security Boulevard

FEBRUARY 24, 2023

Earlier this month, Jen Easterly and Eric Goldstein of the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security signaled a major shift in the federal government’s approach to cybersecurity risk and responsibility. The post Innovation at the Expense of Cybersecurity?

Cybersecurity 144

Cybersecurity Risk CISO Security Awareness 144

Security Boulevard

JULY 2, 2024

Critical infrastructure and public sector organizations such as government and municipalities, manufacturing units, communication networks, transportation services, power and water treatment plants, et. The post 7 Steps To Secure Critical Infrastructure appeared first on Security Boulevard.

Manufacturing 119

Manufacturing Government Cyber Insurance Insurance 119

Security Boulevard

JULY 8, 2024

The supplier performance risk system (SPRS) is a database maintained by the DoD that “utilizes suppliers’ performance data in areas of product delivery and quality to rate performance and predict potential risk.” The post Why SPRS Matters and 4 Steps to Improve Your Security Posture appeared first on Security Boulevard.

Risk 109

Risk Security Awareness Government Cybersecurity 109

SecureWorld News

DECEMBER 6, 2023

The proposed regulations, designed specifically for hospitals, establish a robust framework for cybersecurity risk management and incident response. Hospitals will be required to implement comprehensive cybersecurity programs, including vulnerability assessments, access controls, and security awareness training for their employees.

Cyber Attacks 103

Cyber Attacks Healthcare Computers and Electronics Financial Services 103

Security Boulevard

NOVEMBER 1, 2024

Plus brillants exploits: Canadian Centre for Cyber Security fingers Chinese state sponsored hackers. China Hacks Canada too, Says CCCS appeared first on Security Boulevard. The post Ô!

Hacking 128

Hacking Social Engineering Cyber Attacks Data privacy 128

CyberSecurity Insiders

DECEMBER 12, 2022

At the start of the COVID-19 pandemic, we saw bad actors capitalizing on new fears and opportunities to carry out fraud attacks on consumers and businesses alike, posing as health and government organizations to offer health information, testing, and vaccines. Financial organizations will see a rise in BIN attacks.

Scams 127

Scams Social Engineering Education Security Awareness 127