Cyber Security News

19 May 2024 11:44

Christie’s Website Breached Right Before Huge Sales Day

Even though Christie’s has provided contact details, the incident could still pose challenges for the auction house.

Besides, it’s still not clear whether the hackers had gained access to sensitive information held by Christie’s.

Cyber_Security_Channel

Cyber Security News

18 May 2024 06:52

Dell Hacker Claims They Had Access To Systems For Nearly Three Weeks

Dell disclosed the breach on 9 May, notifying customers that their names, addresses, and Dell customer info were exposed, warning them to watch out for social engineering attacks impersonating the technology giant.

Cyber_Security_Channel

Cyber Security News

16 May 2024 18:27

IntelBroker Allegedly Breaches Europol, Exposing Classified Data

Among the agencies within Europol affected by the breach are the Cybercrime Center (EC3), specifically the Cryptocurrencies and Space units, the Europol Platform for Experts, the Law Enforcement Forum, and the SIRIUS system.

Cyber_Security_Channel

Cyber Security News

15 May 2024 09:39

Hunters Announces Full Adoption of OCSF and Introduces OCSF-Native Search

The adoption of OCSF provides a unified, standardized language across cybersecurity tools and platforms, simplifying data integration and analysis workflows.

The adoption fosters frictionless interoperability and enables enhanced collaboration among cybersecurity professionals, promoting flexibility and innovation by eliminating constraints imposed by proprietary data formats.

Cyber_Security_Channel

Cyber Security News

13 May 2024 20:37

What is 'Hackbot as a Service' and are Malicious LLMs a Risk?

Hackers have already been using LLMs to refine social engineering attacks, matching the tone and style of an executive for phishing or using deepfake attacks to circumvent identity systems.

Cyber_Security_Channel

Cyber Security News

12 May 2024 11:34

Human Errors Still a Leading Cause of Cyber Incidents, Says Kaspersky

This trend can be attributed to the commoditization of attacks through the widespread adoption of existing tools, originally designed for conducting targeted campaigns which, due to deliberate or accidental leaks, have become common.

Cyber_Security_Channel

Cyber Security News

11 May 2024 10:11

Hackers Compromised Dropbox eSignature Service

Even users who only received or signed a document through Sign without creating an account had names and email addresses compromised.

However, there is no indication that payment information or customers’ files (signed documents and agreements) were accessed.

Cyber_Security_Channel

Cyber Security News

10 May 2024 09:36

Why Your VPN May Not Be As Secure As It Claims

VPNs work by creating a virtual network interface that serves as an encrypted tunnel for communications.

But researchers at Leviathan Security say they’ve discovered it’s possible to abuse an obscure feature built into the DHCP standard so that other users on the local network are forced to connect to a rogue DHCP server.

Cyber_Security_Channel

Cyber Security News

09 May 2024 13:56

Don't Have a Modern Antivirus? Learn Why You Shouldn't Be Taking This Risk!

If the modern-day threats bother you and make you worried about safeguarding yourself against online threats then You need not!

Quick Heal Total Security offers a robust defense against modern threats.

Cyber_Security_Channel

Cyber Security News

08 May 2024 09:29

Prompt Hacking, Private GPTs, Zero-Day Exploits and Deepfakes: Report Reveals the Impact of AI on Cyber Security Landscape

Pascal Geenens, Radware’s director of threat intelligence and the report’s editor, told TechRepublic in an email, “The most severe impact of AI on the threat landscape will be the significant increase in sophisticated threats.

AI will not be behind the most sophisticated attack this year, but it will drive up the number of sophisticated threats.

Cyber_Security_Channel

Cyber Security News

07 May 2024 00:08

Mastercard Takes AI-Driven Fraud Defense to Next Level

Mastercard is launching Scam Protect with a two-pronged product approach.

Mastercard Identity verifies an individual’s authenticity from the moment an account-to-account or card-based payment is initiated.

Mastercard is also collaborating with organizations in other verticals to “tackle scams, mitigate their impact, and educate consumers.

It will collaborate with Verizon on new solutions to protect consumers from scams across multichannel attack vectors.

Cyber_Security_Channel

Cyber Security News

05 May 2024 20:57

5 Hard Truths About the State of Cloud Security 2024

The problem is that while hyperscale cloud providers may be very good at protecting infrastructure, the control and responsibility they have over their customers' security posture is very limited.

Cyber_Security_Channel

Cyber Security News

04 May 2024 18:37

Zero Trust Takes Over: 63% of Orgs Implementing Globally

These practices potentially can make the transition to zero trust more successful and beneficial to organizations.

While 35% of organizations reported failures that interrupted their implementation of zero-trust strategies, Watts added that "organizations should have a zero-trust strategic plan outlining operational metrics and measure the effectiveness of zero-trust policies in order to minimize delays."

Cyber_Security_Channel

Cyber Security News

03 May 2024 17:55

MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days

Following the discovery of the breach, MITRE took the NERVE environment offline and launched an investigation.

The organization determined that the attack involved exploitation of two Ivanti Connect Secure VPN device vulnerabilities for initial access.

Cyber_Security_Channel

Cyber Security News

02 May 2024 11:25

Personal Information of Parents, Staff at 127 Schools Accessed in Data Security Breach

Mobile Guardian is a device management app (DMA) installed on personal learning devices used by students, like iPads and Google Chromebooks.

The app enables parents to manage students’ device usage by restricting applications or websites and screen time.

Cyber_Security_Channel

Cyber Security News

18 May 2024 21:03

⚡️900k Impacted by Data Breach at Mississippi Healthcare Provider

Additionally, SRHS is providing the impacted individuals with 12 months of free credit monitoring services, as well as with guidance on how to protect against identity theft and fraud.

Cyber_Security_Channel

Cyber Security News

17 May 2024 19:44

The Future of Information Warfare: LLMs and the Fight for Truth

CopyCop employed a sophisticated strategy to manipulate news narratives.

By using prompt engineering, they tailored content to specific audiences and political biases, effectively amplifying existing divisions and spreading misleading information.

Cyber_Security_Channel

Cyber Security News

16 May 2024 08:33

LLMs & Malicious Code Injections: 'We Have to Assume It's Coming'

One area in which many companies have embraced AI is incident response and threat analytics.

"Security information and event management is definitely getting disrupted with the use of this stuff," Swarnam says.

"It actually eliminates triaging at level one, and in a lot of cases at level two as well."

Cyber_Security_Channel

Cyber Security News

14 May 2024 12:22

ℹ️ New Course Offers In-Depth Training on Latest PCI DSS v4.0 Standard

The "PCI DSS - Foundation to Mastery" course is now updated to include the latest PCI DSS v4.0, the standard for protecting cardholder data.

It is designed for both beginners and experienced professionals who want to learn more about this important security measure.

The course is taught by an expert who has spent over ten years implementing PCI DSS around the world.

The updated course material covers everything from basic principles to advanced implementation techniques and includes the latest changes and requirements.

With data breaches on the rise, understanding and applying PCI DSS is crucial for any organization.

This course helps prepare participants to meet these challenges and stay ahead in the field of cybersecurity.

Click here to learn more about the material.

-----

@Cyber_Security_Channel

Cyber Security News

13 May 2024 07:51

10 Hot New Cybersecurity Tools Announced At RSAC 2024

Threat intelligence firm Recorded Future is among the cybersecurity vendors that debuted new GenAI-powered product capabilities Monday in connection with RSAC.

“I think RSA continues to be one of the best events to showcase the innovation and the impact that we have with our customers,” said Colin Mahony, president of Recorded Future, in an interview with CRN.

Cyber_Security_Channel

Cyber Security News

11 May 2024 19:12

State’s Cyber Squad Investigating Byron Council Data Breach

Speaking to The Echo on Monday, Mr Baker said it was a member of the public who first notified the council of the data leak, five days after the upgrade.

The internal documents were reportedly removed on 29 April.

Cyber_Security_Channel

Cyber Security News

10 May 2024 22:32

Why Remote Desktop Tools are Facing an Onslaught of Cyber Threats

Over 99% of the attack attempts leveraging VNC were aimed at HTTP ports, and the other 1% targeted the transfer control protocol (TCP).

Tanner suggested this is probably due to the fact that HTTP does not require specific authentication, unlike TCP.

Cyber_Security_Channel

Cyber Security News

09 May 2024 22:09

City of Wichita Shuts Down Network Following Ransomware Attack

It is unclear whether personal information was compromised in the attack, but Wichita said details on the matter will be provided as the investigation into the incident advances.

Cyber_Security_Channel

Cyber Security News

08 May 2024 21:06

Mastercard Takes AI-Driven Fraud Defense to Next Level

Mastercard is launching Scam Protect with a two-pronged product approach.

Mastercard Identity verifies an individual’s authenticity from the moment an account-to-account or card-based payment is initiated.

Cyber_Security_Channel

Cyber Security News

07 May 2024 17:16

AI Ethics Officer and Cybersecurity Analyst Lead Job Market

An AI Ethics Officer is a professional attending to the issues of ethical undercurrents in the process of developing, applying, and utilizing artificial intelligence (AI) technologies in the organization as a whole.

The role primarily dabbles with promoting responsible AI practices, identifying and rectifying ethical risks and biases, and establishing transparency, fairness, answerability, and inclusivity in AI systems and procedures.

Their role would be to train and oversee the AI work, which will be used as a powerful impetus for social and economic development.

The job market in both the fields of AI ethics officer and cybersecurity analyst reflects the growing demand for ethical governance and cybersecurity.

Both the tech roles offer promising career opportunities.

Cyber_Security_Channel

Cyber Security News

06 May 2024 13:15

25 Cybersecurity AI Stats You Should Know

This is what the key points look like:

1. Security pros are cautiously optimistic about AI.

2. AI abuse and misinformation campaigns threaten financial institutions.

3. Enterprises increasingly block AI transactions over security concerns.

4. Scammers exploit tax season anxiety with AI tools.

5. Advanced AI, analytics, and automation are vital to tackle tech stack complexity.

6. Today’s biggest AI security challenges.

7. AI tools put companies at risk of data exfiltration.

Read further in the following article — find the remainder of the list here.

Cyber_Security_Channel

Cyber Security News

05 May 2024 09:22

A Thorn in Attackers’ Sides: How Darktrace Uncovered a CACTUS Ransomware Infection

In November 2023, Darktrace observed malicious actors leveraging the aforementioned method of exploiting Qlik to gain access to the network of a customer in the US, more than a week before the vulnerability was reported by external researchers.

Cyber_Security_Channel

Cyber Security News

04 May 2024 03:29

Where Hackers Find Your Weak Spots

So how do attackers gather data about their targets?

There are five sources of intelligence cybercriminals can use to gather and analyze information about their targets.

Read about them in the above article.

Cyber_Security_Channel

Cyber Security News

02 May 2024 23:03

ARTIFICIAL INTELLIGENCEUS-China Competition to Field Military Drone Swarms Could Fuel Global Arms Race

The world’s only AI superpowers are engaged in an arms race for swarming drones that is reminiscent of the Cold War, except drone technology will be far more difficult to contain than nuclear weapons.

Because software drives the drones’ swarming abilities, it could be relatively easy and cheap for rogue nations and militants to acquire their own fleets of killer robots.

The Pentagon is pushing urgent development of inexpensive, expendable drones as a deterrent against China acting on its territorial claim on Taiwan.

Washington says it has no choice but to keep pace with Beijing. Chinese officials say AI-enabled weapons are inevitable so they, too, must have them.

Cyber_Security_Channel

Cyber Security News

01 May 2024 18:11

‘Meta is out of options’: EU Regulators Reject its Privacy Fee for Facebook and Instagram

Meta has tried using various legal justifications for scooping up and processing European users’ personal data over the years since the General Data Protection Regulation (GDPR) came into force in 2018 — with each being successively shot down by regulators as being an unacceptable reading of the privacy law.

Cyber_Security_Channel