-
Morgan Stanley Fined $35m By SEC For Data Security Lapse
PRIVACY PRIVACY The improper data disposal reportedly started in 2016 and exposed 15 million customers’ data Read More
-
Russia-Based Hackers FIN11 Impersonate Zoom to Conduct Phishing Campaigns
PRIVACY PRIVACY Cyfirma said the motive behind the attacks may be financial in nature Read More
-
How to have fun negotiating with a ransomware gang
PRIVACY PRIVACY Can negotiating your firm’s ransomware payment actually be fun? Well, if it’s a game rather than the real thing then yes! The inventive bods at the Financial Times have created an imaginative ransomware negotiation simulator which lets you imagine you’re in the hot seat at a hacked company, trying to stop cybercriminals from…
-
SATAn Targets Air-Gapped Computers with Data Theft, Spying
PRIVACY PRIVACY Malicious actors can use a “SATAn” attack involving the SATA interface to target air-gapped computers with data theft and extortion. Read More
-
Smashing Security podcast #290: Uber, Rockstar, and crystal balls
PRIVACY PRIVACY Researchers reveal how your eyeglasses could be leaking secrets when you’re on video conferencing calls, we take a look at the recent data breaches involving Uber and Grand Theft Auto 6, and we cast an eye at what threats may be around the corner… All this and much much more is discussed in…
-
$1 Billion State and Local Cybersecurity Grant Program Now Open for Applicants
PRIVACY PRIVACY As threats continue to evolve, state and local governments benefit from federal grant funding to bolster their cybersecurity posture. When a state, local, tribal and territorial (SLTT) government falls victim to a cyberattack, it impacts its digital networks and infrastructure. It also puts sensitive databases, personal identifiable information (PII) and constituents’ trust at…
-
Prompt Injection/Extraction Attacks against AI Systems
PRIVACY PRIVACY This is an interesting attack I had not previously considered. The variants are interesting, and I think we’re just starting to understand their implications. Read More
-
Twitter Password Reset Bug Exposed User Accounts
PRIVACY PRIVACY Social media firm fixes issue that left sessions open Read More
-
Authorized Push Payments Surge to 75% of Banking Fraud
PRIVACY PRIVACY Social engineering tactics bear fruit for digital scammers Read More
-
D&O insurance not yet a priority despite criminal trial of Uber’s former CISO
PRIVACY PRIVACY The trial of former Uber CISO Joe Sullivan marks the first time a cybersecurity chief has faced potential criminal liability. Sullivan is charged with trying to conceal from federal investigators the details of a 2016 hack at Uber that exposed the email addresses and phone numbers of 57 million drivers and passengers. The…