Presentation and Technology - Cyber Security Informer

Book Review: Present Future — Business, Science and the Deep Tech Revolution

Lohrman on Security

JULY 4, 2021

Guy Perelmuter offers an insightful, easy to read, helpful guide to present and future technology in business areas ranging from the future of jobs to AI and from cryptocurrencies to quantum computing.

Cryptocurrency

Cryptocurrency Technology

SOC Technology Failures?—?Do They Matter?

Anton on Security

DECEMBER 10, 2021

SOC Technology Failures?—?Do img src: [link] Most failed Security Operations Centers (SOCs) that I’ve seen have not failed due to a technology failure. Let’s stick to mostly technology focused failures. Perhaps the tool vendor made some incorrect assumptions about how their technology is really used in the real world?

Technology

Technology CISO Data collection Threat Detection

StaryDobry ruins New Year’s Eve, delivering miner instead of presents

SecureList

FEBRUARY 18, 2025

Introduction On December 31, cybercriminals launched a mass infection campaign, aiming to exploit reduced vigilance and increased torrent traffic during the holiday season. Our telemetry detected the attack, which lasted for a month and affected individuals and businesses by distributing the XMRig cryptominer.

Malware

Malware Encryption Software Technology

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

2025 – The International Year of Quantum Science and Technology

Security Boulevard

APRIL 29, 2025

2025 The International Year of Quantum Science and Technology divya Tue, 04/29/2025 - 07:48 It is no surprise that the United Nations declared 2025 as the International Year of Quantum Science and Technology (IYQ). Wherever you are in the world, you have a variety of resources at your disposal.

Technology

Technology Digital transformation Encryption Marketing

Threat Model Thursday: Technology Consumers

Adam Shostack

JANUARY 2, 2025

The author critiques 'anticipatory data practices', a collection of techniques that include my own work, as presented to civil society activists. First, normal people don't "work on" technology the way technologists do. They're working on living their lives, and hoping technology helps.

Technology

Technology Surveillance Risk

The Legal Risks of Security Research

Schneier on Security

OCTOBER 30, 2020

Our Guide gives the most comprehensive presentation to date of this landscape of legal risks, with an eye to both legal and technical nuance.

Risk

Risk Technology Hacking

Introducing the DEF CON 32 Hackers' Almanack

Adam Shostack

MARCH 26, 2025

Every year, thousands of hackers converge in Las Vegas for a joyous, crazy exploration of the edges of technology otherwise fondly called Hacker Summer Camp. Im proud to be a member of this community and grateful to present The DEF CON 32 Hackers Almanack. Grateful to introduce the Hackers' Almanack!

Data breaches

Data breaches Passwords Technology Hacking

Facial Scanning by Burger King in Brazil

Schneier on Security

JANUARY 10, 2024

“BK presents Hangover Whopper, a technology that scans your hangover level and offers a discount on the ideal combo to help combat it.” ” The stunt runs until January 2nd.

Marketing

Marketing Technology

Chinese-Made LiDAR Systems a National Security Risk, Think Tank Says

Security Boulevard

DECEMBER 4, 2024

China's growing presence in the global market for LiDAR, a remote sensing technology widely used in defense and commercial system, presents a national security risk for the United States, which already is dealing with intrusions into critical infrastructure networks by China-backed threat groups, according to a reporte.

Risk

Risk Marketing Technology Malware

2025 – The International Year of Quantum Science and Technology

Thales Cloud Protection & Licensing

APRIL 29, 2025

2025 The International Year of Quantum Science and Technology divya Tue, 04/29/2025 - 07:48 It is no surprise that the United Nations declared 2025 as the International Year of Quantum Science and Technology (IYQ). Wherever you are in the world, you have a variety of resources at your disposal.

Technology

Technology Digital transformation Encryption Marketing

How threat actors can use generative artificial intelligence?

Security Affairs

DECEMBER 1, 2024

The increasing sophistication of these technologies has made it harder than ever to distinguish real content from fake. A study by the Massachusetts Institute of Technology (MIT) presented in 2019 revealed that deepfakes generated by AI could deceive humans up to 60% of the time. As the technology evolves, so will its misuse.

Artificial Intelligence

Artificial Intelligence Phishing Media Cyber threats

Inside the DemandScience by Pure Incubation Data Breach

Troy Hunt

NOVEMBER 13, 2024

One last comment: there was a story published earlier this year titled Our Investigation of the Pure Incubation Ventures Leak and in there they refer to "encrypted passwords" being present in the data.

Data breaches

Data breaches Passwords B2B Technology

J-magic malware campaign targets Juniper routers

Security Affairs

JANUARY 24, 2025

Lumen Technologies researchers reported that the J-magic campaign targets Juniper routers with a custom backdoor using a passive agent based on the cd00r variant (an open-source backdoor by fx ). SeaSpy was a backdoor that targeted another FreeBSD-based system, the Barracuda mail server, with a variant of cd00r. ” concludes the report.

Malware

Malware VPN Encryption Hacking

2024 Paris Olympics Present Podium-Worthy Cybersecurity Challenges

SecureWorld News

JULY 17, 2024

The event not only showcases athletic prowess but also presents a significant challenge for cybersecurity professionals. The Olympics are a prime target for cyberattacks due to their high profile, the involvement of numerous stakeholders, and the extensive use of digital technologies.

Cybersecurity

Cybersecurity Phishing Mobile Media

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

Treasury Department’s Office of Foreign Assets Control (OFAC) sanctioned Chinese firm Sichuan Juxinhe Network Technology Co., government systems, including the recent targeting of Treasurys information technology (IT) systems, as well as sensitive U.S. telecommunication and internet service providers. . critical infrastructure.”

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

GUEST ESSAY: Ponemon study warns: AI-enhanced deepfake attacks taking aim at senior execs

The Last Watchdog

APRIL 22, 2025

As AI technology advances, attackers are shifting their focus from technical exploits to human emotions using deeply personal and well-orchestrated social engineering tactics. He holds a 2015 – 2016 Masters Degree in Security Technologies (MSST) @ Technological Leadership Institute, University of Minnesota.

Authentication

Authentication Social Engineering Technology Media

China admitted its role in Volt Typhoon cyberattacks on U.S. infrastructure

Security Affairs

APRIL 13, 2025

But American officials present and others later briefed on the meeting perceived the comments as confirmation of Beijings role and was intended to scare the U.S. .” states the WSJ. “Wang or the other Chinese officials didnt directly state that China was responsible for the hacking, the U.S. officials said.

Hacking

Hacking Manufacturing Education Government

Second Interdisciplinary Workshop on Reimagining Democracy

Schneier on Security

JANUARY 8, 2024

Modern democracy was invented in the mid-eighteenth century, using mid-eighteenth-century technology. Were democracy to be invented from scratch today, with today’s technologies, it would look very different. Each panel has six speakers, each of whom presents for ten minutes. Representation would look different.

Technology

Blackhat and Human Factors

Adam Shostack

FEBRUARY 14, 2025

The Human Factors track focuses on people in security: how their decisions can affect their security or the security of the organization, and how engineering and technology can help. It also includes new ways to strengthen technology and other solutions to decrease harm. New text is in bold.

Technology

Technology Engineering

Reducing the Crushing Burden of Cybersecurity, Privacy Laws in the UK

SecureWorld News

NOVEMBER 17, 2024

The interplay of domestic and international regulations presents significant challenges for organizations, demanding significant investments in technology, personnel, and processes. The UK has a complex regulatory landscape for businesses, particularly in the realms of cybersecurity and privacy. of the UK's business population, 5.5

Cybersecurity

Cybersecurity Risk Healthcare Accountability

News alert: Wultra secures €3M funding to help financial firms mitigate coming quantum threats

The Last Watchdog

JANUARY 15, 2025

15, 2025, CyberNewswire — Quantum computing is set to revolutionize technology, but it also presents a significant security risk for financial institutions. “Wultra has cutting-edge technology that solves the nightmare of every banker in the world,” says Martin Drdul, co-founder of Tensor Ventures.

Banking

Banking Authentication Technology Marketing

Self-Driving Cars Are Surveillance Cameras on Wheels

Schneier on Security

JULY 3, 2023

. “We’re supposed to be able to go about our business in our day-to-day lives without being surveilled unless we are suspected of a crime, and each little bit of this technology strips away that ability.”

Surveillance

Surveillance Marketing Technology

On the Dangers of Cryptocurrencies and the Uselessness of Blockchain

Schneier on Security

JUNE 24, 2022

But that’s nothing inherent in blockchain technology—that’s just a bunch of bad design choices bitcoin made. In our letter, we write: “By its very design, blockchain technology is poorly suited for just about every purpose currently touted as a present or potential source of public benefit.

Cryptocurrency

Cryptocurrency Technology Scams Government

AI Risks

Schneier on Security

OCTOBER 9, 2023

Reading the headlines, one would hope that the rapid gains in AI technology have also brought forth a unifying realization of the risks—and the steps we need to take to mitigate them. The technology historian David C. The reality, unfortunately, is quite different.

Risk

Risk Artificial Intelligence Technology Surveillance

Global Foundation for Cyber Studies and Research Launches Cyber-Policy Magazine, Cyber Insights

Joseph Steinberg

AUGUST 3, 2021

The Global Foundation for Cyber Studies and Research (GFCyber) announced today that it has launched Cyber Insights , a new digital magazine that aims to help readers stay informed about contemporary cyber-related issues and their potential ramifications, from the perspectives of policy, practice, and technology.

Artificial Intelligence

Artificial Intelligence Technology Cybersecurity

New Atrium Health data breach impacts 585,000 individuals

Security Affairs

DECEMBER 6, 2024

Atrium Health launched an investigation into the security breach and discovered that from January 2015 to July 2019, certain online tracking technologies were active on its MyAtriumHealth (formerly MyCarolinas) Patient Portal, accessible via web and mobile. The company notified the US Department of Health and Human Services (HHS).

Data breaches

Data breaches Identity Theft Accountability Technology

What are the key Threats to Global National Security?

IT Security Guru

NOVEMBER 1, 2024

As technology advances, so do the methods and motivations of those who seek to disrupt global stability. As nations work to bolster their defenses, cybersecurity threats demand constant attention due to the rapid pace of technological advancement and the increasing sophistication of cybercriminals.

Technology

Technology Cyber Attacks Government Social Engineering

Is Your Chip Card Secure? Much Depends on Where You Bank

Krebs on Security

JULY 30, 2020

based merchants suggest thieves are exploiting weaknesses in how certain financial institutions have implemented the technology to sidestep key chip card security features and effectively create usable, counterfeit cards. Newer, chip-based cards employ a technology known as EMV that encrypts the account data stored in the chip.

Banking

Banking Malware Encryption Accountability

ESET detailed a flaw that could allow a bypass of the Secure Boot in UEFI systems

Security Affairs

JANUARY 17, 2025

UEFI replaces the legacy Basic Input/Output System (BIOS) firmware interface originally present in all IBM PC-compatible personal computers, with most UEFI firmware implementations providing support for legacy BIOS services. Greenware Technologies, Radix Technologies Ltd., Wasay Software Technology Inc., SANFONG Inc.,

Firmware

Firmware Technology Software Manufacturing

Joseph Steinberg To Speak Again At Penn Club & Columbia Club About CyberSecurity

Joseph Steinberg

MARCH 24, 2025

In this session, Steinberg will show you how you can improve your odds of staying cybersecure, no matter your level of technological sophistication. We all know that we face increased threats from costly hacker attacks and data breaches unfortunately, however, much of what we have been taught about how to protect ourselves is simply wrong.

Artificial Intelligence

Artificial Intelligence Cybersecurity Data breaches Government

SEC Fines Four Companies $7M for Misleading Cybersecurity Disclosures

SecureWorld News

OCTOBER 23, 2024

Check Point Software Technologies Ltd., According to the SEC , these companies described their cybersecurity incidents in ways that either minimized the impact or presented the risks as hypothetical, even when the companies knew that their systems had been compromised. Check Point Software Technologies Ltd. Unisys Corp.,

Cybersecurity

Cybersecurity Risk Hacking Software

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

Today, there are two major types of common CMS platforms: •The older “traditional” or “monolithic” CMS platforms include a content repository (usually a multimedia database), the administrative console (where content is added and categorized), the presentation system (which makes nice-looking pages), and the search engine. Gierlinger.

Data breaches

Data breaches Encryption Mobile Technology

Massive Oracle Cloud Breach: 6M Records Exposed, 140k+ Tenants Risked

eSecurity Planet

MARCH 24, 2025

The fact that the affected subdomain was captured on the Wayback Machine in February 2025 further points to the longstanding vulnerability present in legacy Oracle systems. This incident reinforces that message.

Risk

Risk Passwords Hacking Encryption

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

Treasury Department’s Office of Foreign Assets Control (OFAC) sanctioned Chinese firm Sichuan Juxinhe Network Technology Co., government systems, including the recent targeting of Treasurys information technology (IT) systems, as well as sensitive U.S. telecommunication and internet service providers. . critical infrastructure.”

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Affairs

DECEMBER 5, 2024

Recent advances in artificial intelligence (AI) technology offer unprecedented opportunities for organizations to reduce the burden on struggling SOC analysts so they can focus on more strategic tasks, their mental health, and their overall well-being. But it doesn’t have to be this way.

Artificial Intelligence

Artificial Intelligence Data collection Cybersecurity Risk

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Joseph Steinberg

JUNE 10, 2022

Many of Gillis’s comments echoed those that I have heard in recent months from CISOs and others within the cybersecurity industry who witness developments from various vantage points quite different from those of a vendor of cybersecurity technologies. Sampling No Longer Works.

Cybersecurity

Cybersecurity Artificial Intelligence CISO Wireless

AIs as Computer Hackers

Schneier on Security

FEBRUARY 2, 2023

The researchers have since commercialized the technology, which is now busily defending networks for customers like the U.S. AIs would improve every year because all of the core technologies are continually improving. A system called Mayhem, created by a team of Carnegie-Mellon computer security researchers, won. Department of Defense.

Artificial Intelligence

Artificial Intelligence Technology Software Hacking

The Supreme Court Narrowed the CFAA

Schneier on Security

JUNE 7, 2021

But the confusing part is footnote 8: For present purposes, we need not address whether this inquiry turns only on technological (or “code-based”) limitations on access, or instead also looks to limits contained in contracts or policies. It’s a good ruling, and one that will benefit security researchers.

Technology

Hushme: A Headset That Lets You Make Private Phone Calls In A Non-Private Environment

Joseph Steinberg

JUNE 7, 2021

Every so often, I encounter an unusual technology device that so well solves a problem that I have encountered many times that I cannot imagine not adding the product to my arsenal of tools, even if it is not something that I would necessarily use every day. The Hushme is one such offering.

Artificial Intelligence

Artificial Intelligence Technology Media Cybersecurity

News alert: Seventh Sense unveils a revolutionary privacy solution — face-based PKI and ‘eID’

The Last Watchdog

SEPTEMBER 10, 2024

This cutting-edge innovation combines Post-Quantum Cryptography (PQC)* — designed to withstand the security threats posed by future quantum computing—with the trusted SSL technology that secures websites worldwide. This is achieved through the generation of Face Certificates for specific purposes, such as login, eKYC, and more.

Computers and Electronics

Computers and Electronics Encryption Government Authentication

Scammers Steal Over $25 Million By Using AI Deepfake Video Call To Convince Suspicious Employee That A Phishing Email Is Legitimate

Joseph Steinberg

FEBRUARY 4, 2024

Scammers stole over $25 million from a multinational business by utilizing cutting-edge real-time video deepfake technology to convince an employee in the firm’s accounts-payable department that the worker had properly validated a payment request previously sent to him via email. Million USD at the time of the theft and at present).

Artificial Intelligence

Artificial Intelligence Phishing Scams Accountability

Can Security Experts Leverage Generative AI Without Prompt Engineering Skills?

Tech Republic Security

OCTOBER 22, 2024

A study at Rensselaer Polytechnic Institute presented at ISC2 Security Congress compared ChatGPT-written training prompted by security experts and prompt engineers.

Engineering

Engineering Artificial Intelligence Technology Cybersecurity

Understanding the U.S. Cyber Trust Mark: A New Era for IoT Security

SecureWorld News

JANUARY 8, 2025

From baby monitors to home security systems, these IoT products have become integral to daily life, yet they also present significant cybersecurity risks. National Institute of Standards and Technology (NIST) and certified by accredited labs.

IoT

IoT Manufacturing Government Cybersecurity

Microsoft: Attackers Exploiting Windows Zero-Day Flaw

Krebs on Security

SEPTEMBER 8, 2021

Many of those zero-days involve older Microsoft technologies or those that have been retired, like IE11; Microsoft officially retired support for Microsoft Office 365 apps and services on IE11 last month.

Software

Software Engineering Internet Internet

Book Review: Present Future — Business, Science and the Deep Tech Revolution

SOC Technology Failures?—?Do They Matter?

Webinars

Trending Sources

StaryDobry ruins New Year’s Eve, delivering miner instead of presents

Webinars

2025 – The International Year of Quantum Science and Technology

Threat Model Thursday: Technology Consumers

The Legal Risks of Security Research

Introducing the DEF CON 32 Hackers' Almanack

Facial Scanning by Burger King in Brazil

Chinese-Made LiDAR Systems a National Security Risk, Think Tank Says

2025 – The International Year of Quantum Science and Technology

How threat actors can use generative artificial intelligence?

Inside the DemandScience by Pure Incubation Data Breach

J-magic malware campaign targets Juniper routers

2024 Paris Olympics Present Podium-Worthy Cybersecurity Challenges

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

GUEST ESSAY: Ponemon study warns: AI-enhanced deepfake attacks taking aim at senior execs

China admitted its role in Volt Typhoon cyberattacks on U.S. infrastructure

Second Interdisciplinary Workshop on Reimagining Democracy

Blackhat and Human Factors

Reducing the Crushing Burden of Cybersecurity, Privacy Laws in the UK

News alert: Wultra secures €3M funding to help financial firms mitigate coming quantum threats

Self-Driving Cars Are Surveillance Cameras on Wheels

On the Dangers of Cryptocurrencies and the Uselessness of Blockchain

AI Risks

Global Foundation for Cyber Studies and Research Launches Cyber-Policy Magazine, Cyber Insights

New Atrium Health data breach impacts 585,000 individuals

What are the key Threats to Global National Security?

Is Your Chip Card Secure? Much Depends on Where You Bank

ESET detailed a flaw that could allow a bypass of the Secure Boot in UEFI systems

Joseph Steinberg To Speak Again At Penn Club & Columbia Club About CyberSecurity

SEC Fines Four Companies $7M for Misleading Cybersecurity Disclosures

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

Massive Oracle Cloud Breach: 6M Records Exposed, 140k+ Tenants Risked

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

AIs as Computer Hackers

The Supreme Court Narrowed the CFAA

Hushme: A Headset That Lets You Make Private Phone Calls In A Non-Private Environment

News alert: Seventh Sense unveils a revolutionary privacy solution — face-based PKI and ‘eID’

Scammers Steal Over $25 Million By Using AI Deepfake Video Call To Convince Suspicious Employee That A Phishing Email Is Legitimate

Can Security Experts Leverage Generative AI Without Prompt Engineering Skills?

Understanding the U.S. Cyber Trust Mark: A New Era for IoT Security

Microsoft: Attackers Exploiting Windows Zero-Day Flaw

Stay Connected