The Danish data protection authority has issued an injunction regarding the transfer of student data to Google through the use of Chromebooks and Google Workspace services in schools.
Fraud Management & Cybercrime , Ransomware Ongoing Innovation and Sophistication Drive Unparalleled Profits Mathew J. Schwartz (euroinfosec) • February 7, 2024 Happy days are here again – if you’re a ransomware hacker. (Image: Shutterstock) Unwelcome news from the ransomware frontlines: Attackers are continuing to innovate and have launched more sophisticated attacks, collectively storming […]
Google fixed an Android critical remote code execution flaw Pierluigi Paganini February 06, 2024 Google released Android ’s February 2024 security patches to address 46 vulnerabilities, including a critical remote code execution issue. Google released Android February 2024 security patches to address 46 vulnerabilities, including a critical remote code execution flaw tracked as CVE-2024-0031. The […]
A containerized data center, also known as a modular data center, is a data center within a container. For companies that need to increase IT capacity quickly, affordably and temporarily, containerized data centers are a great option, and customized modular data centers can more permanently scale services and support. The “container” can vary, including a […]
The vulnerabilities impact devices with default configurations and can lead to system configuration modifications, creation of privileged accounts, and denial of service conditions.
Feb 08, 2024NewsroomCyber Espionage / Malware The North Korea-linked nation-state actor known as Kimsuky is suspected of using a previously undocumented Golang-based information stealer called Troll Stealer. The malware steals “SSH, FileZilla, C drive files/directories, browsers, system information, [and] screen captures” from infected systems, South Korean cybersecurity company S2W said in a new technical report. […]
Feb 08, 2024NewsroomCyber Threat / Network Security Cisco, Fortinet, and VMware have released security fixes for multiple security vulnerabilities, including critical weaknesses that could be exploited to perform arbitrary actions on affected devices. The first set from Cisco consists of three flaws – CVE-2024-20252 and CVE-2024-20254 (CVSS score: 9.6) and CVE-2024-20255 (CVSS score: 8.2) – […]
Malware-as-a-Service (MaaS) infections were the biggest threat to organizations in the second half of 2023, according to a new Darktrace report. The 2023 End of Year Threat Report highlighted the cross-functional adaption of many of the malware strains. This includes malware loaders like remote access trojans (RATs) being combined with information-stealing malware. Through reverse engineering […]
Governance & Risk Management , Healthcare , Industry Specific HHS OCR Says a Malicious Worker Stole and Sold Patient Information in 2013 Marianne Kolbasuk McGee (HealthInfoSec) • February 6, 2024 Montefiore Medical Center in New York is paying HHS OCR $4.75 million to settle a HIPAA breach investigation. (Image: Montefiore) Federal regulators fined […]