Technology - Cyber Security Informer

FBI Raids Chinese Point-of-Sale Giant PAX Technology

Krebs on Security

OCTOBER 26, 2021

federal investigators today raided the Florida offices of PAX Technology , a Chinese provider of point-of-sale devices used by millions of businesses and retailers globally. FBI agents entering PAX Technology offices in Jacksonville today. Headquartered in Shenzhen, China, PAX Technology Inc. organizations. Source: WOKV.com.

Technology

Technology Retail Computers and Electronics Malware

On Technologies for Automatic Facial Recognition

Schneier on Security

SEPTEMBER 15, 2023

Interesting article on technologies that will automatically identify people: With technology like that on Mr. Leyvand’s head, Facebook could prevent users from ever forgetting a colleague’s name, give a reminder at a cocktail party that an acquaintance had kids to ask about or help find someone at a crowded conference.

Technology

RSAC Fireside Chat: Qwiet AI leverages graph-database technology to reduce AppSec noise

The Last Watchdog

MAY 23, 2024

By the same token, AppSec technology is advancing apace to help companies meet this challenge. We also had a lively sidebar about the lessons security vendors are learning as they race to integrate GenAI and LLM technology into their respective solutions. AppSec has never been more challenging.

Technology

Technology Antivirus Marketing Internet

ManageEngine: Australian SMEs Aim to Reduce IT Costs Amid Growing Technology Complexity

Tech Republic Security

JULY 29, 2024

“Digital intensity” caused by multiple cloud environments, application growth and AI is putting pressure on IT leaders in medium-sized businesses to manage costs while modernising their infrastructure.

Technology

Technology Digital transformation Artificial Intelligence Cybersecurity

Enhance Innovation and Governance Through the Cloud Development Maturity Model

This model offers a structured approach to modernizing development, aligning technology, developer experience, security, and workflows. Leverage the Cloud Development Environment Maturity Model to elevate your software development practices with scalable, secure cloud-based workspaces.

Government

Why Technology Interoperability is the Key to a Safer Internet of Things (IoT)

Security Boulevard

DECEMBER 4, 2024

The post Why Technology Interoperability is the Key to a Safer Internet of Things (IoT) appeared first on Security Boulevard. With IoT connectivity expanding, organizations across the industry must grapple with the complexities of securing this vast network of internet-connected “things.”

IoT

IoT Internet Internet Technology

Facial Recognition Systems in the US

Schneier on Security

JANUARY 3, 2024

There’s no difference whether the identification technology is facial recognition, the MAC address of our phones, gait recognition, license plate recognition, or anything else. Facial recognition is just the easiest technology right now. The problem here is identification, correlation, and then discrimination.

Retail

Retail Technology Surveillance

ChatGPT: Hopes, Dreams, Cheating and Cybersecurity

Lohrman on Security

JANUARY 29, 2023

So what are the opportunities and risks with using this technology across different domains? ChatGPT is an AI-powered chatbot created by OpenAI.

Cybersecurity

Cybersecurity Technology Risk

Secret Service Tracking People’s Locations without Warrant

Schneier on Security

NOVEMBER 21, 2024

This feels important : The Secret Service has used a technology called Locate X which uses location data harvested from ordinary apps installed on phones. Because users agreed to an opaque terms of service page, the Secret Service believes it doesn’t need a warrant.

Technology

Technology Surveillance

Monetization Monitor: Monetization Models and Pricing 2020

Advertiser: Revenera

Reliable insights aren’t getting easier as technology evolves. While these might do the job to help enforce usage limits, they generally fall short on monetization model flexibility (the ability to implement a new model) or usage insights (the ability to see how a product is being used). Fast innovation (SaaS, IoT, etc.)

IoT

Magic Security Dust

Schneier on Security

APRIL 1, 2024

It’s about time someone is commercializing this essential technology. Adam Shostack is selling magic security dust.

Technology

On the Dangers of Cryptocurrencies and the Uselessness of Blockchain

Schneier on Security

JUNE 24, 2022

But that’s nothing inherent in blockchain technology—that’s just a bunch of bad design choices bitcoin made. In our letter, we write: “By its very design, blockchain technology is poorly suited for just about every purpose currently touted as a present or potential source of public benefit.

Cryptocurrency

Cryptocurrency Technology Scams Government

Existential Risk and the Fermi Paradox

Schneier on Security

DECEMBER 2, 2022

Technology changes the amplitude of the noise. The magnifying effects of technology enable short-term damage to cause long-term planet-wide systemic damage. Our rapid, technologically enabled changes to the atmosphere, compounded through feedback loops and tipping points, may make Earth much less hospitable for the coming centuries.

Risk

Risk Technology Hacking

Cryptocurrency Startup Loses Encryption Key for Electronic Wallet

Schneier on Security

SEPTEMBER 6, 2023

I can’t understand why anyone thinks these technologies are a good idea. The cryptocurrency fintech startup Prime Trust lost the encryption key to its hardware wallet—and the recovery key—and therefore $38.9 It is now in bankruptcy.

Cryptocurrency

Cryptocurrency Encryption Technology

Beware of Pixels & Trackers on U.S. Healthcare Websites

This report offers insights for cybersecurity, compliance, and privacy executives at healthcare organizations, as well as for policymakers and auditors.

Healthcare

Obligatory ChatGPT Post

Schneier on Security

DECEMBER 13, 2022

As with any new technology, the development and deployment of ChatGPT is likely to have a significant impact on the field of cybersecurity. In many ways, ChatGPT and other AI technologies hold great promise for improving the ability of organizations and individuals to defend against cyber threats.

Cyber threats

Cyber threats Technology Risk Cybersecurity

Another Event-Related Spyware App

Schneier on Security

NOVEMBER 15, 2022

The app also provides Egypt’s Ministry of Communications and Information Technology, which created it, with other so-called backdoor privileges, or the ability to scan people’s devices. It can also track people’s locations via smartphone’s built-in GPS and Wi-Fi technologies, according to two of the analysts.

Spyware

Spyware Technology Encryption Government

GUEST ESSAY: The timing is ripe to instill trust in the open Internet — and why this must get done

The Last Watchdog

SEPTEMBER 14, 2023

Fastly addresses these technological vulnerabilities by utilizing tools like Rust and WebAssembly. The societal aspects of technology, the human side, have grown equally unruly. People are wary of technology and its creators. These principles drive better technological outcomes, ensuring an improved experience for all web users.

Internet

Internet Internet Technology Risk

CyberSecurity Expert Joseph Steinberg To Lecture At Columbia University

Joseph Steinberg

APRIL 28, 2024

Steinberg, who will serve as a Lecturer on Cybersecurity, will teach in the Technology Management graduate program run by Columbia’s School of Professional Studies; Steinberg’s lectures are scheduled to take place at Columbia’s New York City campus in May, June, and July of 2024.

Artificial Intelligence

Artificial Intelligence Cybersecurity Technology

Making Software Pirates Pay: An E-Commerce Playbook

Advertiser: Revenera

How you can leverage technology to identify unpaid use and reach unpaid users with targeted in-application messaging that will drive conversions. This playbook will show you: Why you should pursue a strategy of converting unpaid users into paying customers.

Software

New Image/Video Prompt Injection Attacks

Schneier on Security

FEBRUARY 22, 2024

And remember, given the current state of technology, prompt injection attacks are impossible to prevent in general. Simon Willison has been playing with the video processing capabilities of the new Gemini Pro 1.5 model from Google, and it’s really impressive. Which means a lot of scary new video prompt injection attacks.

Technology

Technology Artificial Intelligence

The CrowdStrike Outage and Market-Driven Brittleness

Schneier on Security

JULY 25, 2024

In information technology, brittleness also results from the fact that hundreds of companies, none of which you;ve heard of, each perform a small but essential role in keeping the internet running. We have built a society based on complex technology that we’re utterly dependent on, with no reliable way to manage that technology.

Marketing

Marketing Software Internet Internet

3CX Breach Was a Double Supply Chain Compromise

Krebs on Security

APRIL 20, 2023

3CX hired incident response firm Mandiant , which released a report on Wednesday that said the compromise began in 2022 when a 3CX employee installed a malware-laced software package distributed via an earlier software supply chain compromise that began with a tampered installer for X_TRADER , a software package provided by Trading Technologies.

Malware

Malware Software Technology Accountability

From Dreams to Reality: The Magic of 3D Printing, with Elle Hunt

Troy Hunt

SEPTEMBER 17, 2024

I was in my mid-30s before I felt comfortable standing up in front of an audience and talking about technology. Come to think of it, "comfortable" isn't really the right word, as, frankly, it was nerve-racking.

Technology

Cybersecurity Predictions for 2024

Attackers have taken advantage of the rapid shift to remote work and new technologies. Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Add to that hacktivism due to global conflicts and U.S. We’ve recently looked back at what happened within cybersecurity in 2023.

Cybersecurity

San Francisco Police Illegally Spying on Protesters

Schneier on Security

JANUARY 20, 2022

The SFPD also violated San Francisco’s new Surveillance Technology Ordinance. It prohibits city agencies like the SFPD from acquiring, borrowing, or using surveillance technology, without prior approval from the city’s Board of Supervisors, following an open process that includes public participation.

Surveillance

Surveillance Technology

On the Catastrophic Risk of AI

Schneier on Security

JUNE 1, 2023

Talking about those systems, I said: Now, add into this mix the risks that arise from new and dangerous technologies such as the internet or AI or synthetic biology. AI and intelligent robotics are the culmination of several precursor technologies, like machine learning algorithms, automation, and autonomy.

Risk

Risk Artificial Intelligence Technology Internet

Artificial Intelligence and CyberSecurity Expert Joseph Steinberg To Keynote Pennsylvania Summit

Joseph Steinberg

OCTOBER 4, 2023

The summit, sponsored by Avail Technology Solutions, will allow participants to learn about the latest advancements and trends in cloud technology, cybersecurity practices, and the exciting world of Artificial Intelligence (AI) — topics that Steinberg will cover in his keynote.

Artificial Intelligence

Artificial Intelligence Cybersecurity Technology

Facial Scanning by Burger King in Brazil

Schneier on Security

JANUARY 10, 2024

“BK presents Hangover Whopper, a technology that scans your hangover level and offers a discount on the ideal combo to help combat it.” ” The stunt runs until January 2nd.

Marketing

Marketing Technology

Software Composition Analysis: The New Armor for Your Cybersecurity

Speaker: Blackberry, OSS Consultants, & Revenera

Today’s technology leaders play a more strategic role in establishing cybersecurity strategy for their organizations. Software is complex, which makes threats to the software supply chain more real every day. In the U.S. alone, cyber losses totaled $10.3 billion in 2022.

Cybersecurity

Ten Ways AI Will Change Democracy

Schneier on Security

NOVEMBER 13, 2023

Some items on my list are still speculative, but none require science-fictional levels of technological advance. When reading about the successes and failures of AI systems, it’s important to differentiate between the fundamental limitations of AI as a technology, and the practical limitations of AI systems in the fall of 2023.

Artificial Intelligence

Artificial Intelligence Technology Government Education

Cybersecurity Tabletop Exercises: How Far Should You Go?

Lohrman on Security

MARCH 31, 2024

With global cyber threats and other international tensions growing, what scenarios should state and local governments consider when conducting exercises to test their people, processes and technology?

Cyber threats

Cyber threats Cybersecurity Government Technology

RSAC Fireside Chat: IRONSCALES utilizes LLM, superior intel to stay a step ahead of Deep Fakes

The Last Watchdog

MAY 21, 2024

I had the chance to sit down with Eyal Benishti , IRONSCALES founder and CEO, to get a breakdown of how their new Generative Adversarial Network (GAN) technology utilizes a specialized LLM to reinforce anti-phishing mitigation services. One promising example of the latter comes from messaging security vendor IRONSCALES.

Phishing

Phishing Banking Technology Internet

On Robots Killing People

Schneier on Security

SEPTEMBER 11, 2023

Fatalities in the first decades of aviation forced regulation, which required new developments in both law and technology. Today, every airline crash is closely examined, motivating new technologies and procedures. Any regulation of industrial robots stems from existing industrial regulation, which has been evolving for many decades.

Artificial Intelligence

Artificial Intelligence Technology Risk Government

How Preparation and Strategy Can Be Used to Fight and Defeat Any Ransomware Attack

Speaker: Karl Camilleri, Cloud Services Product Manager at phoenixNAP

As a result, data protection needs to be a concern for most banks, businesses, and information technology specialists. million attacks, the threat marked a 148% increase compared to 2020 and was the most expensive year on record! It’s mindboggling, but right now for 49% of respondents, cybersecurity is their primary business concern.

Ransomware

LW ROUNDTABLE: CrowdStrike outage reveals long road ahead to achieve digital resiliency

The Last Watchdog

JULY 25, 2024

With this in mind, Last Watchdog sought commentary from technology thought leaders about what the CrowdStrike outage says about the state of digital resiliency. Implementing zero trust across the entirety of the technology stack would go a long way toward increasing resilience against events like this.

Technology

Technology Ransomware Software Cyber Attacks

Hacking Automobile Keyless Entry Systems

Schneier on Security

OCTOBER 17, 2022

Suspected members of a European car-theft ring have been arrested : The criminals targeted vehicles with keyless entry and start systems, exploiting the technology to get into the car and drive away. As a result of a coordinated action carried out on 10 October in the three countries involved, 31 suspects were arrested.

Hacking

Hacking Manufacturing Marketing Software

The Evolving Cyber Landscape: Insights from 2024 Reports

Lohrman on Security

JUNE 9, 2024

Over the past month, the Verizon Data Breach Investigation Report and the Watchguard Technologies Internet Security Report were released. Here are some highlights.

Data breaches

Data breaches Internet Internet Technology

How Criminals Are Using Generative AI

Schneier on Security

MAY 9, 2024

There’s a new report on how criminals are using generative AI tools: Key Takeaways: Adoption rates of AI technologies among criminals lag behind the rates of their industry counterparts because of the evolving nature of cybercrime.

Financial Services

Financial Services Cybercrime Technology Artificial Intelligence

More Details on Israel Sabotaging Hezbollah Pagers and Walkie-Talkies

Schneier on Security

OCTOBER 15, 2024

Technology alone has no ethics: the difference between a patch and an exploit is the method in which a technology is disclosed. Turning everyday objects into fragmentation grenades should be a crime, as it blurs the line between civilian and military technologies.

Marketing

Marketing Technology IoT Engineering

Seeing Like a Data Structure

Schneier on Security

JUNE 3, 2024

Technology was once simply a tool—and a small one at that—used to amplify human intent and capacity. That was the story of the industrial revolution: we could control nature and build large, complex human societies, and the more we employed and mastered technology, the better things got.

Technology

Technology Government Engineering Internet

Ted Chiang on the Risks of AI

Schneier on Security

MAY 12, 2023

as a broad set of technologies being marketed to companies to help them cut their costs, the question becomes: how do we keep those technologies from working as “capital’s willing executioners”? The question is worth considering across different meanings of the term “A.I.” If you think of A.I. Alternatively, if you imagine A.I.

Risk

Risk Software Technology Marketing

Report: Missouri Governor’s Office Responsible for Teacher Data Leak

Krebs on Security

FEBRUARY 22, 2022

McGowin also said the DESE’s website was developed and maintained by the Office of Administration’s Information Technology Services Division (ITSD) — which the governor’s office controls directly. She stated in 2009, policy was changed to move all information technology services to the Office of Administration.”

Education

Education Technology Hacking Media

Surveillance by the US Postal Service

Schneier on Security

DECEMBER 13, 2023

This is not about mass surveillance of mail , this is about sorts of targeted surveillance the US Postal Inspection Service uses to catch mail thieves : To track down an alleged mail thief, a US postal inspector used license plate reader technology, GPS data collected by a rental car company, and, most damning of all, hid a camera inside one of the (..)

Surveillance

Surveillance Data collection Technology

FBI Raids Chinese Point-of-Sale Giant PAX Technology

On Technologies for Automatic Facial Recognition

Trending Sources

RSAC Fireside Chat: Qwiet AI leverages graph-database technology to reduce AppSec noise

ManageEngine: Australian SMEs Aim to Reduce IT Costs Amid Growing Technology Complexity

Enhance Innovation and Governance Through the Cloud Development Maturity Model

Why Technology Interoperability is the Key to a Safer Internet of Things (IoT)

Facial Recognition Systems in the US

ChatGPT: Hopes, Dreams, Cheating and Cybersecurity

Secret Service Tracking People’s Locations without Warrant

Monetization Monitor: Monetization Models and Pricing 2020

Magic Security Dust

On the Dangers of Cryptocurrencies and the Uselessness of Blockchain

Existential Risk and the Fermi Paradox

Cryptocurrency Startup Loses Encryption Key for Electronic Wallet

Beware of Pixels & Trackers on U.S. Healthcare Websites

Obligatory ChatGPT Post

Another Event-Related Spyware App

GUEST ESSAY: The timing is ripe to instill trust in the open Internet — and why this must get done

CyberSecurity Expert Joseph Steinberg To Lecture At Columbia University

Making Software Pirates Pay: An E-Commerce Playbook

New Image/Video Prompt Injection Attacks

The CrowdStrike Outage and Market-Driven Brittleness

3CX Breach Was a Double Supply Chain Compromise

From Dreams to Reality: The Magic of 3D Printing, with Elle Hunt

Cybersecurity Predictions for 2024

San Francisco Police Illegally Spying on Protesters

On the Catastrophic Risk of AI

Artificial Intelligence and CyberSecurity Expert Joseph Steinberg To Keynote Pennsylvania Summit

Facial Scanning by Burger King in Brazil

Software Composition Analysis: The New Armor for Your Cybersecurity

Ten Ways AI Will Change Democracy

Cybersecurity Tabletop Exercises: How Far Should You Go?

RSAC Fireside Chat: IRONSCALES utilizes LLM, superior intel to stay a step ahead of Deep Fakes

On Robots Killing People

How Preparation and Strategy Can Be Used to Fight and Defeat Any Ransomware Attack

LW ROUNDTABLE: CrowdStrike outage reveals long road ahead to achieve digital resiliency

Hacking Automobile Keyless Entry Systems

The Evolving Cyber Landscape: Insights from 2024 Reports

How Criminals Are Using Generative AI

More Details on Israel Sabotaging Hezbollah Pagers and Walkie-Talkies

Seeing Like a Data Structure

Ted Chiang on the Risks of AI

Report: Missouri Governor’s Office Responsible for Teacher Data Leak

Surveillance by the US Postal Service

Stay Connected