Top

Category: Security


Application security, Security

API sprawl: navigating the web of connectivity and security challenges

March 11, 2024

Via: TechRadar

In today’s fast evolving digital space, the proliferation of application programming interfaces (APIs) has been nothing short of explosive. One forecast predicts there will be nearly 1.7 billion active APIs by 2030 which ushers in unparalleled opportunities for innovation and […]


Privacy protection, Security

Keeping one step ahead of cyber security threats

March 1, 2024

Via: The Register

Dealing with cyber security incidents is an expensive business. Each data breach costs an estimated $4.35 million on average and it’s not as if the volume of cyber attacks is falling – last year, they rose by 38 percent according […]


Privacy protection, Security

Chinese ‘connected’ cars are a national security threat, says Biden

February 29, 2024

Via: The Register

Concerned over the chance that Chinese-made cars could pose a future threat to national security, Biden’s administration is proposing plans to probe potential threats posed by “connected” vehicles made in the Middle Kingdom. In a statement this morning, the US […]


Privacy protection, Security

Meta’s pay-or-consent model hides ‘massive illegal data processing ops’: lawsuit

February 29, 2024

Via: The Register

Consumer groups are filing legal complaints in the EU in a coordinated attempt to use data protection law to stop Meta from giving local users a “fake choice” between paying up and consenting to being profiled and tracked via data […]


Email security, Security

Unmasking 2024’s Email Security Landscape

February 28, 2024

Via: Security Affairs

In the ever-shifting digital arena, staying ahead of evolving threat trends is paramount for organizations aiming to safeguard their assets. Amidst this dynamic landscape, email stands as a primary battleground for cyber defense. VIPRE Security Group’s latest report, “Email Security […]


Network security, Security

NIST updates Cybersecurity Framework after a decade of lessons

February 27, 2024

Via: The Register

After ten years operating under the original model, and two years working to revise it, the National Institute of Standards and Technology (NIST) has released version 2.0 of its Cybersecurity Framework (CSF). Unlike the original, which was designed with critical […]


Network security, Security

Broadcom builds a better SASE out of VMware VeloCloud and Symantec

February 27, 2024

Via: The Register

Broadcom has delivered on its 2023 teaser of integration between VMware’s SD-WAN and Symantec’s Security Service Edge, by today debuting the “VMware VeloCloud SASE, Secured by Symantec” at Mobile World Congress in Barcelona. The Symantec Security Service Edge is already […]


Cloud security, Security

Russia-linked APT29 switched to targeting cloud services

February 27, 2024

Via: Security Affairs

A joint advisory issued by cybersecurity agencies of Five Eyes (US, UK, Australia, Canada and New Zealand) warns that Russia-linked APT29 threat actors (aka SVR group, Cozy Bear, Nobelium, BlueBravo, Midnight Blizzard, and The Dukes) have switched to targeting cloud […]


Access control, Security

Data watchdog tells off outsourcing giant for scanning staff biometrics despite ‘power imbalance’

February 26, 2024

Via: The Register

A data protection watchdog in the UK has issued an enforcement notice to stop Serco from using facial recognition tech and fingerprint scanning to monitor staff at 38 leisure centers it runs. During an investigation, the Information Commissioner’s Office, Britain’s […]


Privacy protection, Security

Bitdefender Cryptomining Protection detects malicious cryptojacking attempts

February 26, 2024

Via: Help Net Security

Bitdefender announced Cryptomining Protection, a cryptomining management feature that allows users to both protect against malicious cryptojacking and manage their own legitimate cyptomining initiatives on their Windows PCs. According to a 2023 report, cryptojacking attacks have increased nearly 400% year […]


Network security, Security

AT&T Says the Outage to Its US Cellphone Network Was Not Caused by a Cyberattack

February 23, 2024

Via: Security Week

The outage knocked out cellphone service for thousands of its users across the U.S. starting early Thursday before it was restored. AT&T blamed the incident on an error in coding, without elaborating. “Based on our initial review, we believe that […]


Application security, Security

Apple Strengthens iMessage Security with Post-Quantum Encryption

February 22, 2024

Via: SecureWorld

Apple announced this week that it is implementing post-quantum cryptography in its iMessage platform to protect against potential future attacks powered by quantum computers. The new encryption protocol, called PQ3, will roll out later this year. According to an Apple […]


Network security, Security

A common goal for European cyber security

February 21, 2024

Via: The Register

It was growing threat levels and an increase in reported cybersecurity attacks since digitalization which pushed the European Union to introduce the original Network and Information Security (NIS) Directive in 2016. The rules at the time went some way towards […]


Cloud security, Security

Harness the power of security automation

February 21, 2024

Via: The Register

The complexity facing businesses as they make the necessary transition to cloud-native applications and multi-cloud architectures keeps cloud teams firmly on the frontline when it comes to implementing security policies. The constant risks of misconfiguration and malicious attack demand that […]


Application security, Security

OpenAI, Microsoft Disrupt Nation-State Actors’ Malicious Use of AI

February 20, 2024

Via: SecureWorld

OpenAI and Microsoft recently collaborated to identify and disrupt several nation-state actors who were attempting to use AI services for malicious cyber activities. According to Microsoft, the disrupted threat actors were affiliated with China, Iran, North Korea, and Russia. Their […]


Access control, Security

The double-edged sword of zero trust

February 19, 2024

Via: Help Net Security

In an era defined by relentless cyber threats and evolving attack vectors, traditional security models are proving increasingly inadequate to safeguard sensitive information. Unlike conventional systems that often rely on perimeter defenses, zero trust adopts a more discerning philosophy, treating […]


Network security, Security

Chrome is getting a big privacy and security boost from Google to help safeguard your home network

February 19, 2024

Via: TechRadar

Google Chrome is getting an upgrade that will help safeguard devices connected to a private or home network. Google outlined its plans in a post on its Chrome Platform Status page, explaining that the new feature will behave as a […]


Application security, Security

Mitigating AI security risks

February 15, 2024

Via: The Register

It has become possible to swiftly and inexpensively train, validate and deploy AI models and applications, yet while we embrace innovation, are we aware of the security risks? Because it’s not just the good guys who use AI – bad […]


Network security, Security

OpenAI shuts down China, Russia, Iran, N Korea accounts caught doing naughty things

February 14, 2024

Via: The Register

OpenAI has shut down five accounts it asserts were used by government agents to generate phishing emails and malicious software scripts as well as research ways to evade malware detection. Specifically, China, Iran, Russia, and North Korea were apparently “querying […]


Data loss, Network security, Threats & Malware

Jet engine dealer to major airlines discloses ‘unauthorized activity’

February 12, 2024

Via: The Register

Willis Lease Finance Corporation has admitted to US regulators that it fell prey to a “cybersecurity incident” after data purportedly stolen from the biz was posted to the Black Basta ransomware group’s leak blog. The form 8-K filed with the […]