π ICO Releases New Data Protection Audit Framework π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The UKs ICO said the framework is designed to help businesses build trust and encourage a positive data protection culture.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
ICO Releases New Data Protection Audit Framework
The UKβs ICO said the framework is designed to help businesses build trust and encourage a positive data protection culture
π EU Urged to Harmonize Incident Reporting Requirements π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Risk managers association FERMA has warned that new EU cyber legislation means there is an inconsistent approach to incident reporting requirements.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
EU Urged to Harmonize Incident Reporting Requirements
Risk managers association FERMA has warned that new EU cyber legislation means there is an inconsistent approach to incident reporting requirements
π Tech Professionals Highlight Critical AI Security Skills Gap π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A new OReilly survey showed a shortage of AI security skills, while AIenabled security tools become tech professionals top priority for the coming year.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Tech Professionals Highlight Critical AI Security Skills Gap
A new OβReilly survey showed a shortage of AI security skills, while AI-enabled security tools become tech professionalsβ top priority for the coming year
π Fraud Repayment Rules Could Leave Victims Struggling, CTSI Claims π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The Chartered Trading Standards Institute is concerned a new cap on fraud reimbursement is too low.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Fraud Repayment Rules Could Leave Victims Struggling, CTSI Claims
The Chartered Trading Standards Institute is concerned a new cap on fraud reimbursement is too low
π Project Coordinator π
π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
The post Project Coordinator appeared first on UnderDefense.π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
UnderDefense
Project Manager - UnderDefense
π Board-CISO Mismatch on Cyber Responsibility, NCSC Research Finds π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The UK NCSC found that there is a lot of confusion between board members and security leaders of who is responsible for cybersecurity within their organizations.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Board-CISO Mismatch on Cyber Responsibility, NCSC Research Finds
The UK NCSC found that there is a lot of confusion between board members and security leaders of who is responsible for cybersecurity within their organizations
π Universal Music Group Admits Data Breach π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
UMG, a major music corporation, reported a July 2024 data breach affecting 680 US residents.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Universal Music Group Admits Data Breach
UMG, a major music corporation, reported a July 2024 data breach affecting 680 US residents
π Advanced Threat Group GoldenJackal Exploits Air-Gapped Systems π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
GoldenJackal targeted airgapped government systems from May 2022 to March 2024, ESET found.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Advanced Threat Group GoldenJackal Exploits Air-Gapped Systems
GoldenJackal targeted air-gapped government systems from May 2022 to March 2024, ESET found
π’ Modern enterprise cybersecurity π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Cultivating resilience with reduced detection and response times.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Modern enterprise cybersecurity
Cultivating resilience with reduced detection and response times
π΅οΈββοΈ Mideast, Turkey Cyber Threats Spike, Prompting Defense Changes π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The vast majority of organizations in the region saw more attacks in the past year, but most don't feel prepared for future incidents.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Middle East, Turkey See Cyber Threats Rise
Organizations in the region saw more attacks in the past year, but most don't feel prepared for future incidents.
π΅οΈββοΈ GorillaBot Goes Ape With 300K Cyberattacks Worldwide π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Among those affected by all this monkeying around with DDoS in September were some 4,000 organizations in the US.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
GorillaBot Goes Ape With 300K Cyberattacks Worldwide
Among those affected by all this monkeying around with DDoS in September were some 4,000 organizations in the US.
π΅οΈββοΈ Salt Typhoon APT Subverts Law Enforcement Wiretapping: Report π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The Chinese statesponsored cyberattack threat managed to infiltrate the "lawful intercept" network connections that police use in criminal investigations.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Sat Typhoon APT Subverts Law Enforcement Wiretapping
The Chinese state-sponsored cyberattack threat managed to infiltrate the "lawful intercept" network connections that police use in criminal investigations.
π΅οΈββοΈ CISO Paychecks: Worth the Growing Security Headaches? π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
CISOs' cash compensation tops 400,000 now, but with the high pay comes struggles, rapidly changing responsibilities, and tight budgets.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
CISO Paychecks: Worth the Growing Security Headaches?
CISOs' cash compensation tops $400,000 now, but the high pay comes with struggles, rapidly changing responsibilities, and tight budgets.
π΅οΈββοΈ Malicious Chrome Extensions Skate Past Google's Updated Security π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Google's Manifest V3 offers better privacy and security controls for browser extensions than the previous M2, but too many lax permissions and gaps remain.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Malicious Chrome Add-ons Evade Google's Updated Security
Google's Manifest V3 offers better privacy and security controls for browser extensions than the previous M2, but too many lax permissions and gaps remain.
π¦Ώ Timeline: 15 Notable Cyberattacks and Data Breaches π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
These 15 cyber attacks or data breaches impacted large swaths of users across the United States and changed what was possible in cybersecurity.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Timeline: 15 Notable Cyberattacks and Data Breaches
These cyber attacks or data breaches impacted large swaths of users across the United States and changed what was possible in cybersecurity.
ποΈ Pro-Ukrainian Hackers Strike Russian State TV on Putin's Birthday ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Ukraine has claimed responsibility for a cyber attack that targeted Russia state media company VGTRK and disrupted its operations, according to reports from Bloomberg and Reuters. The incident took place on the night of October 7, VGTRK confirmed, describing it as an "unprecedented hacker attack." However, it said "no significant damage" was caused and that everything was working normally.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Qualcomm Urges OEMs to Patch Critical DSP and WLAN Flaws Amid Active Exploits ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Qualcomm has rolled out security updates to address nearly two dozen flaws spanning proprietary and opensource components, including one that has come under active exploitation in the wild. The highseverity vulnerability, tracked as CVE202443047 CVSS score 7.8, has been described as a userafterfree bug in the Digital Signal Processor DSP Service that could lead to "memory corruption.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π MoneyGram Reveals Data Breach After Incident Downed Services π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
MoneyGram has issued a data breach notification to customers following a security incident.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
MoneyGram Reveals Data Breach After Incident Downed Services
MoneyGram has issued a data breach notification to customers following a security incident
π¦
CISA Flags Multiple Critical Vulnerabilities Exposed Across Major Platforms π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
The Cybersecurity and Infrastructure Security Agency CISA has added multiple vulnerabilities to its known Exploited Vulnerabilities KEV catalog. A total of six vulnerabilities have been identified across various products, including Zimbra Collaboration, Ivanti, DLink, DrayTek, GPAC, and SAP. Notably, these vulnerabilities span a range of severity levels, from critical to medium, demanding immediate attention. One of the most interesting entries is CVE202445519, associated with Zimbra Collaboration. This critical vulnerability has been assigned a CVSS score of 9.8, indicating its severe nature. The issue arises from the postjournal service in specific versions of Zimbra, which may permit unauthenticated users to execute commands. This vulnerability was first analyzed by researche...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
CISA Warns Of Critical Vulnerabilities In Major Platforms
CISA flags six critical vulnerabilities across Zimbra, Ivanti, D-Link, and more, urging immediate action to mitigate risks and safeguard systems.
π Global Police Track Human Traffickers in Online Crackdown π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Europol claims its EMPACT operation has revealed dozens of human trafficking victims and suspects.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
ποΈ GoldenJackal Target Embassies and Air-Gapped Systems Using Malware Toolsets ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A littleknown threat actor tracked as GoldenJackal has been linked to a series of cyber attacks targeting embassies and governmental organizations with an aim to infiltrate airgapped systems using two disparate bespoke toolsets. Victims included a South Asian embassy in Belarus and a European Union government E.U. organization, Slovak cybersecurity company ESET said. "The ultimate goal of.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity