Apr 23, 2024NewsroomCounterintelligence / National Security German authorities said they have issued arrest warrants against three citizens on suspicion of spying for China. The full names of the defendants were not disclosed by the Office of the Federal Prosecutor (aka Generalbundesanwalt), but it includes Herwig F., Ina F., and Thomas R. “The suspects are strongly […]
Breach Notification , Healthcare , HIPAA/HITECH HHS OCR Says the Company Has Not Yet Filed HIPAA Breach Reports to the Agency Marianne Kolbasuk McGee (HealthInfoSec) • April 22, 2024 Image: Getty The Department of Health and Human Services has not yet received HIPAA breach reports from Change Healthcare or parent company UnitedHealth Group […]
Similar to a recently reported issue in GitHub, users can abuse the “comments” feature in GitLab to upload malware to any repository without the repository owner’s knowledge.
Cloud Console Cartographer is an open-source tool that maps noisy log activity into highly consolidated, succinct events to help security practitioners cut through the noise and understand console behavior in their environment. “Infrastructure as code has replaced a lot of the need for console access for many organizations, but there are still plenty of instances […]
A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft repositories, making the files appear trustworthy.
What is GNOME (GNU Network Object Model Environment)? GNOME (GNU Network Object Model Environment) is a graphical user interface (GUI) and set of computer desktop applications for Linux operating system (OS) users. It’s intended to make a Linux OS easy to use for nonprogrammers. GNOME generally corresponds to the Windows desktop interface and its most […]
Dive Brief: Almost two-thirds of organizations across the globe have either fully or partially implemented zero-trust strategies, according to a report released Monday by Gartner based on a survey of 303 security leaders. Of organizations that have fully or partially implemented zero trust, 4 in 5 have strategic metrics to measure their success. Of those, […]
Most compliance leaders tend to focus on building an ethical culture in their organizations to improve employee behavior, but it has a limited impact on addressing uncertainty about how to be compliant, according to a survey by Gartner. Three primary situations that lead to noncompliance There are three primary situations that lead to noncompliance: Situations […]
Researchers at US-Israeli infosec outfit SafeBreach recently discussed flaws in Microsoft and Kaspersky endpoint security products that can potentially allow the remote deletion of files.