The tech industry has shaped a series of weak privacy laws nationwide, according to a new report, with half of the 14 states to have passed such laws receiving failing grades and none receiving an “A” on the report’s scorecard. The Electronic Privacy Information Center and U.S. PIRG Education Fund assessed the 14 bills across […]
CVEMap is an open-source command-line interface (CLI) tool that allows you to explore Common Vulnerabilities and Exposures (CVEs). It’s designed to offer a streamlined and user-friendly interface for navigating vulnerability databases. Although CVEs are crucial for pinpointing and discussing security weaknesses, their rapid growth and occasional overstatement of severity often result in misleading information. Security […]
International law enforcement announced Thursday that they detained 31 suspected cybercriminals and identified 1,300 malicious servers that they used to carry out phishing attacks and distribute malware. Interpol’s so-called Operation Synergia, which ran from September to November 2023, “was launched in response to the clear growth, escalation and professionalization of transnational cybercrime and the need […]
Cryptocurrency Fraud , Cybercrime , Fraud Management & Cybercrime Teen Could Serve Extended Prison Terms for Wire Fraud, Aggravated Identity Charges Prajeet Nair (@prajeetspeaks) • January 31, 2024 Noah Michael Urban, 19, faces 10 charges related to SIM swapping to steal cryptocurrency. (Image: Volusia County Sheriff’s Office) U.S. federal prosecutors charged a Florida […]
Russian state-sponsored actors have staged NT LAN Manager (NTLM) v2 hash relay attacks through various methods from April 2022 to November 2023, targeting high-value targets worldwide. The attacks, attributed to an “aggressive” hacking crew called APT28, have set their eyes on organizations dealing with foreign affairs, energy, defense, and transportation, as well as those involved […]
Listen to the article 5 min This audio is auto-generated. Please let us know if you have feedback. The Biden administration came out forcefully this week against a congressional effort to undo the U.S. Securities and Exchange Commission’s recently adopted rule requiring public companies to disclose cybersecurity incidents. President Joe Biden would veto the joint […]
82% of cybersecurity professionals have been working on implementing zero trust last year, and 16% should be on it by the end of this year. The challenges of zero trust implementation You’ve probably heard it before: zero trust is not a single product, but a security strategy that follows the principle of “never trust, always […]
Feb 02, 2024NewsroomCryptojacking / Malware The Computer Emergency Response Team of Ukraine (CERT-UA) has warned that more than 2,000 computers in the country have been infected by a strain of malware called DirtyMoe. The agency attributed the campaign to a threat actor it calls UAC-0027. DirtyMoe, active since at least 2016, is capable of carrying […]
Breach Notification , Governance & Risk Management , Healthcare What Will 2024 Be Like If the Healthcare Sector Doesn’t Step Up? Marianne Kolbasuk McGee (HealthInfoSec) • February 1, 2024 Image: Getty For nearly a decade, no matter how bad things seemed to get each year, 2015 remained the record year for U.S. health […]