Cybersecurity
Category Added in a WPeMatico Campaign
The fundraising software company Blackbaud agreed Thursday to pay $49.5 million to settle claims brought by the attorneys general of 49 states and Washington, D.C., related to a 2020 data breach that exposed sensitive information from 13,000 nonprofits. Health information, Social Security numbers and the financial information of donors or clients of the nonprofits, universities, […]
Dive Brief: Builders Mutual Insurance Co., a commercial construction underwriter based in Raleigh, North Carolina, was the target of a hack that affected the personal information of 64,761 customers, current employees and former workers, according to a filing with the Maine Attorney General’s office on Sept. 29. The insurer noticed suspicious activity on Dec. 14, […]
Dive Brief: The Cybersecurity and Infrastructure Security Agency is sharply focused on threat activity tied to the People’s Republic of China as that country has become the top nation-state cyber adversary to the U.S. China is actively targeting more critical infrastructure, CISA Director Jen Easterly said Wednesday at the Secureworks Threat Intelligence Summit. China-linked threat […]
A complaint filed with the Federal Trade Commission (FTC) Wednesday urges the agency to investigate the LGBTQ+ dating app Grindr for potentially illegally storing and disclosing users’ sensitive data, including HIV and vaccination status. The Electronic Privacy Information Center’s (EPIC) complaint lays out Grindr’s history of compromising users’ privacy and safety, pointing most recently to […]
The leaked data from a misconfigured web server includes names, email addresses, and subject lines of individuals who sought information from Lorenz, spanning from June 2021 to September 2023.
Ensuring sensitive data remains confidential, protected from unauthorized access, and compliant with data privacy regulations is paramount. Data breaches result in financial and reputational damage but also lead to legal consequences. Therefore, robust data access security measures are essential to safeguard an organization’s assets, maintain customer trust, and meet regulatory requirements. A comprehensive Data Security […]
Companies are challenged with the growing need to connect everything in their business while maintaining control over their security, productivity, and competitive growth, according to Cloudflare. “Today, the big clouds have built business models on capturing your data, making it hard to move your data. These captivity clouds will lure you in with one product, […]
Oct 06, 2023NewsroomProgramming / Software Security GitHub has announced an improvement to its secret scanning feature that extends validity checks to popular services such as Amazon Web Services (AWS), Microsoft, Google, and Slack. Validity checks, introduced by the Microsoft subsidiary earlier this year, alert users whether exposed tokens found by secret scanning are active, thereby […]
Oct 06, 2023NewsroomServer Security / Vulnerability Multiple security vulnerabilities have been disclosed in the Intelligent Platform Management Interface (IPMI) firmware for Supermicro baseboard management controllers (BMCs) that could result in privilege escalation and execution of malicious code on affected systems. The seven flaws, tracked from CVE-2023-40284 through CVE-2023-40290, vary in severity from High to Critical, […]