Pension providers reported a staggering quadruple-digit percentage increase in data breaches to the UK regulator last year, according to new data compiled by professional services firm RPC. The London-based practice analyzed reports to the Information Commissioner’s Office (ICO) in the year to June 30 2023. It found that the pension sector suffered just six cyber-attacks […]
KNP Logistics, described by its administrators as one of the United Kingdom’s largest privately owned logistics groups, declared itself insolvent on Monday, blaming a ransomware attack back in June. Approximately 730 employees will be made redundant as a result of the administration process, although one of the group’s key entities has been sold, saving about […]
Fear, ignorance and forgetfulness are some of the reasons for widespread shortcomings in reporting cyber-attacks and breaches, both internally and externally, according to a new global survey conducted by Keeper Security. The study, Cybersecurity Disasters Survey Incident Reporting & Disclosure, was published on September 26, 2023. It found that, despite cyber-attacks being top of mind […]
Artificial Intelligence & Machine Learning , General Data Protection Regulation (GDPR) , Next-Generation Technologies & Secure Development Agency Is the Latest in a String of European Regulators to Scrutinize the LLM Akshaya Asokan (asokan_akshaya) • September 25, 2023 Image: Shutterstock The Polish data regulator launched a probe into OpenAI’s ChatGPT for potential privacy […]
Sep 27, 2023THNMalware / Cyber Threat A new malware strain called ZenRAT has emerged in the wild that’s distributed via bogus installation packages of the Bitwarden password manager. “The malware is specifically targeting Windows users and will redirect people using other hosts to a benign web page,” enterprise security firm Proofpoint said in a technical […]
A new tech consortium launched today with a mission to drive adoption of post-quantum cryptography (PQC). The PQC Coalition features Microsoft, IBM Quantum, MITRE, PQShield, SandboxAQ and the University of Waterloo among its founding members. The goal will be to improve uptake of PQC in commercial and open source technologies. Quantum computing represents an existential threat […]
Sony has launched an investigation after a cybercrime group claimed to have compromised the company’s systems, offering to sell stolen data. A representative of the Japanese electronics and entertainment giant told SecurityWeek that it’s currently investigating the situation and has no further comments at this time. The probe was launched after a relatively new ransomware […]
Identity & Access Management , Multi-factor & Risk-based Authentication , Security Operations Windows 11 Now Offers Passwordless Authentication, Config Refresh, Policy Control Michael Novinson (MichaelNovinson) • September 26, 2023 Image: Shutterstock Microsoft updated Windows 11 on Tuesday to simplify passwordless adoption, protect against malicious code and have the ability to refresh configuration in […]
Sep 27, 2023THNZero Day / Vulnerability Google has assigned a new CVE identifier for a critical security flaw in the libwebp image library for rendering images in the WebP format that has come under active exploitation in the wild. Tracked as CVE-2023-5129, the issue has been given the maximum severity score of 10.0 on the […]