Day: October 15, 2021

Zimperium partners with PCI SSC to help secure payment data on mobile apps and devices

Zimperium announced it has joined the PCI Security Standards Council (PCI SSC) as a new Participating Organization. Zimperium will work with the PCI SSC to help secure payment data worldwide on mobile apps and devices. It will also leverage its threat research and technology to help evolve requirements and drive the adoption of PCI Security …

Zimperium partners with PCI SSC to help secure payment data on mobile apps and devices Read More »

A rough week for Missouri teachers who are notified of not one, but two separate incidents

The Public School and Education Employee Retirement Systems of Missouri has notified 349,246 employees and retirees of a security incident that occurred on September 11. According to their notification letter, an employee’s email account was accessed by an unauthorized individual for less than one hour on that date before IT disabled the account after being …

A rough week for Missouri teachers who are notified of not one, but two separate incidents Read More »

El futuro de las mesas de servicio según Info-Tech

Una reciente investigación de Info-Tech presenta las principales tendencias que moldearán el futuro de las mesas de servicio, partiendo de elementos como la automatización y el uso de herramientas de inteligencia artificial. La investigación de Info-Tech muestra que las … The post El futuro de las mesas de servicio según Info-Tech appeared first on ManageEngine …

El futuro de las mesas de servicio según Info-Tech Read More »

Amazon textbook rental service scammed for $1.5m

A 36-year-old man from Portage, Michigan, was arrested on Thursday for allegedly renting thousands of textbooks from Amazon and selling them rather than returning them. Andrew Birge, US Attorney for the Western District of Michigan, said Geoffrey Mark Hays Talsma has been indicted on charges of mail and wire fraud, transporting stolen property across state …

Amazon textbook rental service scammed for $1.5m Read More »

Alation acquires Lyngo Analytics to help organizations drive data culture

Alation announced the acquisition of Lyngo Analytics, a Los Altos, Calif.-based data insights company. The acquisition will elevate the business user experience within the data catalog, scale data intelligence, and help organizations drive data culture. Lyngo Analytics CEO and co-founder Jennifer Wu and CTO and co-founder Joachim Rahmfeld will join the company. Lyngo Analytics uses …

Alation acquires Lyngo Analytics to help organizations drive data culture Read More »

What To Do in the Case of Brand Reputation Impersonation

Recently, AttackIQ was notified that an Iranian threat actor had created a fake domain and fraudulent website (attackiq[.]ir) impersonating AttackIQ and abusing the company brand. This blog is an account of what happened and how AttackIQ responded, and it aims to provide insights to help organizations prepare to deal with similar Brand Reputation Abuse situations. …

What To Do in the Case of Brand Reputation Impersonation Read More »

Quebec’s Bill 64 Introduces Unique Cyber Incident Reporting Obligations

Charles S. Morgan, Ellen Yifan Chen, and Philippe April of McCarthy Tétrault LLP write: The Act to Modernize Legislative Provisions respecting the Protection of Personal Information (“Bill 64” or the “Bill”)[1] received royal assent on September 22, 2021, introducing new obligations for private sector businesses in Québec phased over the course of three years. […] it is important …

Quebec’s Bill 64 Introduces Unique Cyber Incident Reporting Obligations Read More »

Thales: 1

Here you can download the mentioned files using various methods. We have listed the original source, from the author’s page. However, after time these links ‘break’, for example: either the files are moved, they have reached their maximum bandwidth limit, or, their hosting/domain has expired. For these reasons, we have been in touch with each …

Thales: 1 Read More »

Ex-FTC Chair To Aid Maryland AG With Privacy, Antitrust Work

By Allison Grande (October 15, 2021, 10:55 PM EDT) — A former head of the Federal Trade Commission is joining the Maryland attorney general’s office to help boost the enforcer’s growing efforts to manage emerging data privacy, technology and antitrust issues, the office said Thursday. Jon Leibowitz, a Democrat who served as chairman of the …

Ex-FTC Chair To Aid Maryland AG With Privacy, Antitrust Work Read More »

Qatar University Cyber Week 2021 – Free to join Online

Qatar University Cyber Week Cyber Week, organized by KINDI Research Center, is an annual event that aims to raise cyber-security awareness in Qatar through numerous activities. Furthermore, it aims to discuss current challenges and future trends related to security and privacy in the region. This event intends to bring together cyber-security and artificial intelligence experts …

Qatar University Cyber Week 2021 – Free to join Online Read More »

China’s Hackers Crack Devices at Tianfu Cup for $1.5M in Prizes

Competitions such as Pwn2Own gives talented hackers the opportunity to crack products from some of the world’s largest technology companies. This weekend is China’s equivalent hacking competition, the Tianfu Cup in Chengdu, China. The Tianfu Cup is modeled after Pwn2Own in that hackers try to break into the latest devices and systems using original, never-before-seen …

China’s Hackers Crack Devices at Tianfu Cup for $1.5M in Prizes Read More »

Appeal Sought Over Chancery's Facebook Class Counsel Pick

By Jeff Montgomery (October 15, 2021, 10:14 PM EDT) — Block & Leviton LLP and Heyman Enerio Gattuso & Hirzel LLP sought a mid-case appeal Friday over a ruling granting class counsel leadership for Delaware stockholder litigation over Facebook security lapses, arguing that the Chancery’s choice was both faulty and potentially overbroad. In their motion …

Appeal Sought Over Chancery's Facebook Class Counsel Pick Read More »

Twitch says no passwords or login credentials leaked in massive breach

Twitch has come out with a new statement denying the severity of the breach that drew headlines earlier this month.  The gaming platform reiterated that the incident was caused by a “server configuration change that allowed improper access by an unauthorized third party.” They claimed Twitch passwords were not exposed in the breach and said …

Twitch says no passwords or login credentials leaked in massive breach Read More »

US Agencies to Water Facilities: You May Be Next Target

FBI, CISA, EPA & NSA Advisory Says Threats to Critical Infrastructure RisingU.S. federal agencies issued a joint advisory around potential cyber threats to the nation’s water facilities. They cite “ongoing malicious cyber activity – by both known and unknown actors – targeting the IT and OT technology networks, systems and devices” of U.S. water and …

US Agencies to Water Facilities: You May Be Next Target Read More »

What’s it like working in cyber security?

As part of Cyber Security Awareness Month, explore the career experiences of four Aon’s Cyber Solutions employees helping businesses navigate the ever-evolving cyber threat landscape in North America. Dynamic, rewarding, opportunity, critical, essential…are just some of the words used when four Aon’s Cyber Solutions team members were asked to sum up their career in cyber …

What’s it like working in cyber security? Read More »

New war is old war: Propaganda targeting activists is a norm

A new article makes the strange claim that propaganda networks have “shifted” targeting from drugs to political activism. New war: How the propaganda network shifted from targeting ‘addicts’ to activists. The problem with such “new” analysis, any historian could probably show, is that activists historically have been called things like drug addicts to make them …

New war is old war: Propaganda targeting activists is a norm Read More »

UK: Schools email marketing company told us to go away when we told them of exposed database creds, say infoseccers

Gareth Corfield reports: An email marketing company claiming to hold details on a million UK teachers and school admin personnel was potentially exposing those to the public internet thanks to a misconfigured error page on its website. Not only that, but the Schools Marketing Company (SMC) seemingly dismissed the findings of the infosec company which …

UK: Schools email marketing company told us to go away when we told them of exposed database creds, say infoseccers Read More »

$5.2 billion in BTC transactions tied to top 10 ransomware variants: US Treasury

More than $5 billion in bitcoin transactions has been tied to the top ten ransomware variants, according to a report released by the US Treasury on Friday.  The department’s Financial Crimes Enforcement Network (FinCen) and Office of Foreign Assets Control (OFAC) released two reports illustrating just how lucrative cybercrime related to ransomware has become for …

$5.2 billion in BTC transactions tied to top 10 ransomware variants: US Treasury Read More »

Threat Roundup for October 8 to October 15

Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between Oct. 8 and Oct. 15. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioral characteristics,… [[ This is only the beginning! Please visit the …

Threat Roundup for October 8 to October 15 Read More »

Twitter suspends two accounts used by DPRK hackers to catfish security researchers

Twitter has suspended today two accounts operated by North Korean government hackers and used as part of a clever plot to attract security researchers to malicious sites and infect their systems with malware. The accounts —@lagal1990 and @shiftrows13— are part of a long-lived DPRK cyber-espionage campaign that began last year and specifically targets members of the cybersecurity …

Twitter suspends two accounts used by DPRK hackers to catfish security researchers Read More »

The Week in Ransomware – October 15th 2021 – Disrupting ransoms

This week, senior officials from over thirty countries held virtual conferences on disrupting ransomware operations and attacks. Russia and China were left out of these talks, even though there are signs that Russia has begun to crack down on cybercriminal activity in its country. Through these talks, senior officials announced that governments will be disrupting ransomware operations …

The Week in Ransomware – October 15th 2021 – Disrupting ransoms Read More »

Crawlergo – A Powerful Browser Crawler For Web Vulnerability Scanners

crawlergo is a browser crawler that uses chrome headless mode for URL collection. It hooks key positions of the whole web page with DOM rendering stage, automatically fills and submits forms, with intelligent JS event triggering, and collects as many entries exposed by the website as possible. The built-in URL de-duplication module filters out a …

Crawlergo – A Powerful Browser Crawler For Web Vulnerability Scanners Read More »