Authentication, Data privacy, Government and Security Awareness

SIM Swappers Try Bribing T-Mobile and Verizon Staff $300

Security Boulevard

APRIL 16, 2024

Not OK: SMS 2FA — Widespread spam targets carrier employees, as scrotes try harder to evade two-factor authentication. The post SIM Swappers Try Bribing T-Mobile and Verizon Staff $300 appeared first on Security Boulevard.

Mobile

Mobile Authentication Social Engineering Wireless

Hackers Intercept USPS Workers' Paychecks in Direct Deposit Scam

SecureWorld News

MAY 22, 2023

On June 8, she will lead a panel discussion on "The Future of Privacy and Cyber: AI, Quantum and Mind Readers," joined by Monique Ferraro, Cyber Counsel, HSB Insurance; Karen Painter Randall, Partner and Chair, Cybersecurity Data Privacy and Incident Response, Connell Foley LLP; and Violet Sullivan, VP of Client Engagement, Redpoint Cyber.

Scams

Scams Password Management Passwords Authentication

In Pursuit of a Passwordless Future

Security Boulevard

DECEMBER 7, 2023

The passwordless future feels close because we have the technology to do it, but progress will be slow as applications are migrated to adopt passwordless authentication. The post In Pursuit of a Passwordless Future appeared first on Security Boulevard.

Authentication

Authentication Technology Data privacy Passwords

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Key Developments in IoT Security

Thales Cloud Protection & Licensing

JULY 15, 2021

Secure firmware flashing is also a way to enhance assurance of device security, allowing for audit capabilities and controls around these devices. There are also data privacy implications with IoT. Ellen's experience with medical clients gives her a more critical view of the need for data privacy with IoT devices.

IoT

IoT Data privacy Technology Risk

Cybersecurity Awareness Month Focuses on People

SecureWorld News

SEPTEMBER 29, 2022

Cybersecurity Awareness Month was first declared by President George W. Bush and Congress in 2004 to help individuals protect themselves online as threats to technology and data privacy became more commonplace. CISA and NCA are focusing on four key areas this October: Enabling multi-factor authentication (MFA).

Cybersecurity

Cybersecurity Education Security Awareness Password Management

Data Laundering Poses Privacy, Security Risks

Security Boulevard

AUGUST 3, 2021

Data laundering, like money laundering, is the act of acquiring data through an illegal means—whether that’s the dark web or a hacked/stolen database—and then taking that data and running it through a legitimate business or process in order to make the data seem authentic.

Risk

Risk Authentication Technology Hacking

What Is a SaaS Security Checklist? Tips & Free Template

eSecurity Planet

APRIL 9, 2024

Data Security & Threat Detection Framework The data security and threat detection framework serves as the foundation for data protection plans, protecting intellectual property, customer data, and employee information. Is data encrypted in transit and at rest?

Risk

Risk Threat Detection Data breaches Encryption

Dell Hell Redux — More Personal Info Stolen by ‘Menelik’

Security Boulevard

MAY 15, 2024

The post Dell Hell Redux — More Personal Info Stolen by ‘Menelik’ appeared first on Security Boulevard. Phish Ahoy! Hacker took advantage of Dell’s lack of anti-scraping defense.

Phishing

Phishing Social Engineering Data privacy Authentication

Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones

Security Boulevard

MARCH 28, 2024

The post Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones appeared first on Security Boulevard. Rethink different: First, fatigue frightened users with multiple modal nighttime notifications. Next, call and pretend to be Apple support.

Accountability

Accountability Social Engineering Authentication Data privacy

Telegram Privacy Nightmare: Don’t Opt In to P2PL

Security Boulevard

MARCH 26, 2024

Scary SMS shenanigans: Avoid Telegram’s new “Peer-To-Peer Login” program if you value your privacy or your cellular service. The post Telegram Privacy Nightmare: Don’t Opt In to P2PL appeared first on Security Boulevard.

Social Engineering

Social Engineering Authentication Data privacy Security Awareness

Do cyber regulations actually make K–12 schools safer? Navigating compliance while securing school and student data

Malwarebytes

APRIL 5, 2023

In fact, an October 2022 Government Accountability Office (GAO) report found that loss of learning following a cyberattack ranged from three days to three weeks, with recovery time taking anywhere from two to nine months. Secure data storage is also a requirement of FERPA.

Education

Education Ransomware Cybersecurity Risk

Okta Screws Up (Yet Again) — ALL Customers’ Data Hacked, not just 1%

Security Boulevard

NOVEMBER 29, 2023

The post Okta Screws Up (Yet Again) — ALL Customers’ Data Hacked, not just 1% appeared first on Security Boulevard. You had one job: Last month’s sheer incompetence descends this week into UTTER FARCE.

Hacking

Hacking Social Engineering Authentication Architecture

Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy

Security Boulevard

JANUARY 18, 2024

The post Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy appeared first on Security Boulevard. Have I been pwned? Yes, you probably have. Stop reusing passwords, already. Here’s what else you should do.

Passwords

Passwords Social Engineering Data privacy Authentication

Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old

Security Boulevard

JANUARY 2, 2024

The post Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old appeared first on Security Boulevard. What a Mickey Mouse operation: Infostealer scrotes having a field day with unpatched vulnerability.

Social Engineering

Social Engineering Accountability Account Security Data privacy

AI’s Role in Cybersecurity for Attackers and Defenders in 2024

Security Boulevard

JANUARY 17, 2024

The post AI’s Role in Cybersecurity for Attackers and Defenders in 2024 appeared first on Security Boulevard. As AI becomes available and robust, malicious actors have already used it to develop more advanced attack methods; defenders must also leverage AI in 2024.

Cybersecurity

Cybersecurity Artificial Intelligence Threat Detection Data privacy

‘PrintListener’ Attack on Fingerprint Readers — Can You Trust Biometrics??

Security Boulevard

FEBRUARY 21, 2024

appeared first on Security Boulevard. Mic Check: Researchers reconstruct your fingerprint by listening to you swipe. The post ‘PrintListener’ Attack on Fingerprint Readers — Can You Trust Biometrics??

Social Engineering

Social Engineering Authentication Data privacy Engineering

FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure

Security Boulevard

FEBRUARY 28, 2024

The post FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure appeared first on Security Boulevard. GRU APT28 is back again: Fancy Bear still hacking ubiquitous gear, despite patch availability.

Hacking

Hacking Social Engineering Data privacy Authentication

FCC’s Got New Rules for SIM-Swap and Port-Out Fraud

Security Boulevard

NOVEMBER 20, 2023

The post FCC’s Got New Rules for SIM-Swap and Port-Out Fraud appeared first on Security Boulevard. Too many times: Federal Communications Commission shuts stable door after horse bolted. But chairwoman Jessica Rosenworcel (pictured) was hoping it would save us.

Social Engineering

Social Engineering Authentication Scams Data privacy

SSH FAIL: Terrapin Attack Smashes ‘Secure’ Shell Spec

Security Boulevard

DECEMBER 20, 2023

The post SSH FAIL: Terrapin Attack Smashes ‘Secure’ Shell Spec appeared first on Security Boulevard. Testy Testudine: Lurking vuln in SSH spec means EVERY implementation must build patches.

Digital transformation

Digital transformation Social Engineering Data privacy Authentication

Cyber Security Informer

SIM Swappers Try Bribing T-Mobile and Verizon Staff $300

Hackers Intercept USPS Workers' Paychecks in Direct Deposit Scam

Webinars

Trending Sources

In Pursuit of a Passwordless Future

Webinars

Key Developments in IoT Security

Cybersecurity Awareness Month Focuses on People

Data Laundering Poses Privacy, Security Risks

What Is a SaaS Security Checklist? Tips & Free Template

Dell Hell Redux — More Personal Info Stolen by ‘Menelik’

Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones

Telegram Privacy Nightmare: Don’t Opt In to P2PL

Do cyber regulations actually make K–12 schools safer? Navigating compliance while securing school and student data

Okta Screws Up (Yet Again) — ALL Customers’ Data Hacked, not just 1%

Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy

Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old

AI’s Role in Cybersecurity for Attackers and Defenders in 2024

‘PrintListener’ Attack on Fingerprint Readers — Can You Trust Biometrics??

FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure

FCC’s Got New Rules for SIM-Swap and Port-Out Fraud

SSH FAIL: Terrapin Attack Smashes ‘Secure’ Shell Spec

Stay Connected