Identity theft is a growing problem in today’s digital world. With more of our personal information available online, it can be difficult to protect ourselves from malicious actors who may use our data for malicious purposes. While it might seem…
Policy Brief – U.S. Cyber Threat Intelligence, Part 1: Introduction & Background
By Aaron Weathersby, CISSP. Aaron is the Chief Information Officer for Charles R. Drew University of Medicine and Science and holds a Doctor of Science in Cyber Security from Marymount University. He is an Information Technology professional with over 18…
Tripwire Patch Priority Index for December 2022
Tripwire’s December 2022 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft. First on the patch priority list this month are patches for Microsoft Edge, which resolve over 25 issues including use-after-free, type confusion, insufficient data validation, insufficient policy…
Mitigate the LastPass Attack Surface in Your Environment with this Free Tool
The latest breach announced by LastPass is a major cause for concern to security stakeholders. As often occurs, we are at a security limbo – on the one hand, as LastPass has noted, users who followed LastPass best practices would…
SpyNote Strikes Again: Android Spyware Targeting Financial Institutions
Financial institutions are being targeted by a new version of Android malware called SpyNote at least since October 2022. “The reason behind this increase is that the developer of the spyware, who was previously selling it to other actors, made the source…
235 Million Twitter Users Leaked In Biggest Data Leak
A well-known hacker site allegedly dumped a database containing the email addresses of over 235 million Twitter users and is being sold for roughly $200,000. According to a cyber intelligence company, this data leak has the potential to rank among…
Meta Fined $414 Million by Irish Regulators for Using Personal Data for Advertising
In what might be a severe blow to its ad-fueled business model, the Irish Data Protection Commission (DPC) has fined Facebook’s parent company Meta $414 million for its management of user data for distributing personalized ads. Privacy regulators ordered Meta…
200 Million Twitter Profiles Database Giveaway on Hacker Forum
Threat actors offer over 200 million Twitter users` profile data on the Breached hacker forum, asking no more than $2 for the whole database. Cyber researchers say this is the cleaned-up version of the 400 million profiles database spilled in…
Arnold Clark Auto Retail Giant Was Victim of a Cyberattack on Christmas Eve
Arnold Clark, the Scottish automotive retail giant, announced that it suffered a cyberattack. An external cybersecurity firm identified abnormal activity on the company’s network on Christmas Eve. What Damage Has Been Done As a precaution, after the attack, Arnold Clark…
How Can AI Understand Your Business Needs and Stop Threats?
AI in threat detection In the current complicated cybersecurity scenario, threat detection is just a needle in the haystack. We have seen malicious actors exploiting everything they can get their hands on, from AI tools, to open-source code to multi-factor…
UAE’s Sincere Efforts to Combat Cybercrime
The Abu Dhabi Judicial Department (ADJD) held an awareness-raising lecture on “Cybercrime and its Dangers to Society” in conjunction with “Majalis” Abu Dhabi at the Citizens and Community Affairs Office of the Presidential Court as part of its initiatives…
Apple Security and Privacy in 2022: The Year in Review
There was no shortage of Apple security and privacy news in 2022. Let us take a trip down memory lane and rediscover some pivotal moments in the privacy and security of the Mac and other products in the Apple ecosystem.…
LastPass, TikTok, Phishing, and the Year in Apple Security and Privacy – Intego Mac Podcast Episode 273
Password manager LastPass had a data breach, and users’ vaults are at risk; TikTok spied on US journalists; and two new phishing attempts showing how complex techniques are used to try to fool people. And we begin our look at…
Meta to Appeal €390m GDPR Fine
Social media giant says legal basis for data processing was sound This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Meta to Appeal €390m GDPR Fine
Cops Catch Serial Child Abuser After Tech Breakthrough
UK’s National Crime Agency ends 13-year hunt for man This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Cops Catch Serial Child Abuser After Tech Breakthrough
The Evolving Tactics of Vidar Stealer: From Phishing Emails to Social Media
The notorious information-stealer known as Vidar is continuing to leverage popular social media services such as TikTok, Telegram, Steam, and Mastodon as an intermediate command-and-control (C2) server. “When a user creates an account on an online platform, a unique account page that…
CircleCI Urges Customers to Rotate Secrets Following Security Incident
DevOps platform CircleCI on Wednesday urged its customers to rotate all their secrets following an unspecified security incident. The company said an investigation is currently ongoing, but emphasized that “there are no unauthorized actors active in our systems.” Additional details…
Rail Tech Giant Wabtec Discloses Global Data Breach
Incident thought to stem from 2022 ransomware attack This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Rail Tech Giant Wabtec Discloses Global Data Breach
Fortinet and Zoho Urge Customers to Patch Enterprise Software Vulnerabilities
Fortinet has warned of a high-severity flaw affecting multiple versions of FortiADC application delivery controller that could lead to the execution of arbitrary code. “An improper neutralization of special elements used in an OS command vulnerability in FortiADC may allow…
Do you know what your supply chain is and if it is secure?
Five Guys Breached: Burger Franchise Suffers Data Compromise
Five Guys Enterprises LLC, a chain of burger restaurants, has reported a data breach that led to the loss of personally identifiable information from job applications. The information was provided in a form letter dated December 29 that was submitted…
AI Robot lawyer to assist clients in UK Court Cases
The next time you are about to hear a court hearing in the UK, you better be aware that a company is offering a service for free where an Artificial Intelligence robot can guide you in what to say in…
Twitter data dump of 235 million users available on web
Adding more embarrassment to last year’s Twitter Data Breach, a new finding on the web has discovered a new database dump exposed on an online hacking forum. It appears to be a big data leak as information related to about…
Things to know and do before you switch from VPN to ZTNA
Will your organization fall apart if you don’t switch from a VPN to a zero trust network access (ZTNA) solution in the near future? I’m here to tell you it won’t. The reality of VPN vs. ZTNA For a while…
Volvo Cars Suffered A New Data Breach? Data Published On Hacking Forum
According to a post on a well-known hacker forum, Volvo Cars has experienced a new data breach, with stolen information allegedly being made available for sale. Anis Haboubi, a French cybersecurity expert, was the first to discover that a threat…
New ranking member could shake up a key Senate oversight committee
The libertarian-leaning Sen. Rand Paul (R-Ky.) has often butted heads with his own party and the opposing one, denounced federal spending and questioned agency authorities. This article has been indexed from FCW – All Content Read the original article: New…
Irish Regulators Fine Facebook $414 Million for Forcing Users to Accept Targeted Ads
The Irish Data Protection Commission (DPC) has fined Meta Platforms €390 million (roughly $414 million) over its handling of user data for serving personalized ads in what could be a major blow to its ad-fueled business model. To that end, the privacy…