Voices in the vulnerability management community warned that the lasting issues of the US National Vulnerability Database (NVD) could lead to a major supply chain security crisis. A group of 50 cybersecurity professionals signed an open letter that was sent on April 12 to the US Secretary of Commerce, Gina Raimondo, and several members of […]
Ivanti has released security updates to fix 27 vulnerabilities in its Avalanche mobile device management (MDM) solution, two of them critical heap overflows that can be exploited for remote command execution.
What is a building management system? A building management system (BMS) is a control system that can be used to monitor and manage the mechanical, electrical and electromechanical systems and services in a facility. Such services include power; heating, ventilation and air conditioning (HVAC); physical access control; fire safety systems; water pumps; elevators; and lights. […]
What is a building management system? A building management system (BMS) is a control system that can be used to monitor and manage the mechanical, electrical and electromechanical systems and services in a facility. Such services include power; heating, ventilation and air conditioning (HVAC); physical access control; fire safety systems; water pumps; elevators; and lights. […]
Fraud Management & Cybercrime , Governance & Risk Management , Healthcare Proposed Action Also Orders Cerebral Inc. to Pay $7M Penalty Marianne Kolbasuk McGee (HealthInfoSec) • April 15, 2024 Image: FTC, Cerebral The Federal Trade Commission has proposed restricting a mental telehealth service firm from sharing consumer data and requiring it to pay […]
Artificial Intelligence & Machine Learning , Fraud Management & Cybercrime , ID Fraud Experts Warn AI Tools Can Now Compromise Voice Password Systems Used by Many Banks Rashmi Ramesh (rashmiramesh_) • April 12, 2024 The voice authenticating a bank account could be real, or could be artificial intelligence. (Image: Shutterstock) At many financial […]
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Government US Cyber Mission Force Led 22 Defensive Cyber Operations in 2023, Commander Says Chris Riotta (@chrisriotta) • April 12, 2024 The Cyber National Mission Force was active in “hunt forward” operations across the globe in 2023. (Image: Shutterstock) A secretive U.S. cyber […]
The public draft – titled Incident Response Recommendations and Considerations for Cybersecurity Risk Management: A CSF 2.0 Community Profile, was published by NIST on April 3. The agency is seeking public comments on the draft through May 20.
CISOs and other management level cybersecurity executives are gaining more influence and importance as companies have begun to recognize the need for strong cyber governance and oversight, according to a report from Moody’s Ratings. About 90% of cybersecurity managers now report to a top level company executive, compared with 62% in 2021. A higher percentage […]