News
Privacy Commissioner warns the ‘John Smiths’ of the world can acquire ‘digital doppelgangers’
Australia’s privacy commissioner has found that government agencies down under didn’t make enough of an effort to protect data describing “digital doppelgangers” – people who share a name and date of birth and whose government records sometimes contain data describing other people.…
Medical monitoring machines spotted stealing patient data, users warned to pull the plug ASAP
Infosec in brief The United States Food and Drug Administration has told medical facilities and caregivers that monitor patients using Contec equipment to disconnect the devices from the internet ASAP.…
What does it mean to build in security from the ground up?
Systems Approach As my Systems Approach co-author Bruce Davie and I think through what it means to apply the systems lens to security, I find that I keep asking myself what it is, exactly, that’s unique about security as a system requirement?…
Gilmore Girls fans nabbed as Eurocops dismantle two major cybercrime forums
Law enforcement officers across Europe assembled again to collectively disrupt major facilitators of cybercrime, with at least one of those cuffed apparently a fan of the dramedy series The Gilmore Girls.…
The Big Short on Cybersecurity
Partner Content Have you ever watched ? It's one of my all-time favorite movies, not just for the story but for how it handles complexity.…
Another banner year for ransomware gangs despite takedowns by the cops
If the nonstop flood of ransomware attacks doesn't already make every day feel like Groundhog Day, then a look back at 2024 – and predictions for 2025 – definitely will.…
Google to Iran: Yes, we see you using Gemini for phishing and scripting. We're onto you
Google says it's spotted Chinese, Russian, Iranian, and North Korean government agents using its Gemini AI for nefarious purposes, with Tehran by far the most frequent naughty user out of the four.…
Data resilience and data portability
Sponsored Feature Considering it has such a large share of the data protection market, Veeam doesn't talk much about backups in meetings with enterprise customers these days.…
VMware plugs steal-my-credentials holes in Cloud Foundation
Broadcom has fixed five flaws, collectively deemed "high severity," in VMware's IT operations and log management tools within Cloud Foundation, including two information disclosure bugs that could lead to credential leakage under certain conditions.…
Trump admin's purge of US cyber advisory boards was 'foolish,' says ex-Navy admiral
interview Gutting the Cyber Safety Review Board as it was investigating how China's Salt Typhoon breached American government and telecommunications networks was "foolish" and "bad for national security," according to retired US Navy Rear Admiral Mark Montgomery.…
Ransomware attack at New York blood services provider – donors turned away during shortage crisis
New York Blood Center Enterprises (NYBCe) is currently in its fifth day of handling a ransomware attack that has led to system disruption.…
Canvassing apps used by UK political parties riddled with privacy, security issues
The Open Rights Group (ORG) has raised concerns about a number of security issues it found in all three of the canvassing apps developed on behalf of the UK's three major political parties.…
WFH with privacy? 85% of Brit bosses snoop on staff
More than three-quarters of UK employers admit to using some form of surveillance tech to spy on their remote workers' productivity.…
Wacom says crooks probably swiped customer credit cards from its online checkout
Graphics tablet maker Wacom has warned customers their credit card details may well have been stolen by miscreants while they were buying stuff from its website.…
Guess who left a database wide open, exposing chat logs, API keys, and more? Yup, DeepSeek
China-based AI biz DeepSeek may have developed competitive, cost-efficient generative models, but its cybersecurity chops are another story.…
North Koreans clone open source projects to plant backdoors, steal credentials
North Korea's Lazarus Group compromised hundreds of victims across the globe in a massive secret-stealing supply chain attack that was ongoing as of earlier this month, according to security researchers.…
Why is my Mitel phone DDoSing strangers? Oh, it was roped into a new Mirai botnet
A new variant of the Mirai-based malware Aquabot is actively exploiting a vulnerability in Mitel phones to build a remote-controlled botnet, according to Akamai's Security Intelligence and Response Team.…
Transform your approach to data security
Webinar The cybersecurity landscape continues to change at pace, leaving IT professionals constantly battling threats.…
'Bro delete the chat': Feel the panic shortly before cops bust major online fraud ring
In announcing the sentencing of three Brits who ran OTP Agency, an account-takeover business, the National Crime Agency (NCA) revealed how a 2021 report sent the fraudsters into a panicked frenzy.…
Spending watchdog blasts UK govt over sloth-like cyber resilience progress
The UK government is significantly behind on its 2022 target to harden systems against cyberattacks by 2025, with a new report from the spending watchdog suggesting it may not achieve this goal even by 2030.…
Pages
