Cyber Security Informer

China Surveillance Company Hacked

Schneier on Security

FEBRUARY 27, 2024

Last week, someone posted something like 570 files, images and chat logs from a Chinese company called I-Soon. These aren’t details about the tools or techniques, more the inner workings of the company. I-Soon sells hacking and espionage services to Chinese national and local government. Lots of details in the news articles.

Surveillance

Surveillance Hacking Government

CEO of data privacy company Onerep.com founded dozens of people-search firms

Krebs on Security

MARCH 14, 2024

The data privacy company Onerep.com bills itself as a Virginia-based service for helping people remove their personal information from almost 200 people-search websites. However, an investigation into the history of onerep.com finds this company is operating out of Belarus and…

Data privacy

New York Increases Cybersecurity Rules for Financial Companies

Schneier on Security

NOVEMBER 3, 2023

In a new addition, companies now face significant requirements related to ransom payments. Directors must sign off on cybersecurity programs, and ensure that any security program has “sufficient resources” to function. Regulated firms must now report any payment made to hackers within 24 hours of that payment.

Cybersecurity

Cybersecurity Government Risk Banking

Pokemon Company resets some users’ passwords

Security Affairs

MARCH 20, 2024

The Pokemon Company resets some users’ passwords in response to hacking attempts against some of its users. The Pokemon Company announced it had reset the passwords for some accounts after it had detected hacking attempts, Techcrunch first reported. The company was likely the target of credential stuffing attacks.

Passwords

Passwords Accountability Authentication Hacking

5 Key Findings From the 2023 FBI Internet Crime Report

The losses companies suffered in 2023 ransomware attacks increased by 74% compared to those of the previous year, according to new data from the Federal Bureau of Investigation (FBI). The true figure is likely to be even higher, though, as many identity theft and phishing attacks go unreported.

Identity Theft

Demystifying Cybersecurity’s Public Companies

Security Boulevard

JANUARY 19, 2024

It's a lot harder to come up with a list of public cybersecurity companies than you'd think. The post Demystifying Cybersecurity’s Public Companies appeared first on Security Boulevard. Here are the reasons why, plus an honest attempt to get the list right.

Cybersecurity

Russian Software Company Pretending to Be American

Schneier on Security

NOVEMBER 16, 2022

Computer code developed by a company called Pushwoosh is in about 8,000 Apple and Google smartphone apps. The company pretends to be American when it is actually Russian. Russian authorities, however, have compelled local companies to hand over user data to domestic security agencies. mln) last year. What does the code do?

Software

Software Media Government

SHARED INTEL: Poll shows companies pursuing ‘Digital Trust’ reap benefits as laggards fall behind

The Last Watchdog

FEBRUARY 21, 2024

According to DigiCert’s 2024 State of Digital Trust Survey results, released today , companies proactively pursuing digital trust are seeing boosts in revenue, innovation and productivity. Trzupek In such an environment, companies have a terrific opportunity to set themselves apart as being trustworthy, Trzupek argues.

Energy and Utilities

Energy and Utilities IoT Healthcare Manufacturing

Warning: Scammers Are Now PERFECTLY Impersonating Utility Companies

Joseph Steinberg

JANUARY 19, 2024

Several hours ago , I received a phone call; the caller ID displayed the accurate name and phone number of my local utility company. The post Warning: Scammers Are Now PERFECTLY Impersonating Utility Companies appeared first on Joseph Steinberg: CyberSecurity Expert Witness, Privacy, Artificial Intelligence (AI) Advisor.

Scams

Scams Artificial Intelligence Accountability Data breaches

Monetization Monitor: Monetization Models and Pricing 2020

Advertiser: Revenera

across varied companies and industries demands rapid adaptation. Tech companies must focus on how to take products to market, through effective pricing, delivery, and monetization. Fast innovation (SaaS, IoT, etc.) The need to grow revenue by helping customers be successful with their solutions is as strong as ever.

IoT

Top 10 Cybersecurity Assessment Companies in 2024

Security Boulevard

MARCH 15, 2024

In 2024, several companies are standing out for their innovative solutions in different security domains. Utilizing cyber security assessments is crucial for maintaining the security of assets, and this blog […] The post Top 10 Cybersecurity Assessment Companies in 2024 appeared first on Kratikal Blogs.

Cybersecurity

Cybersecurity Marketing

Navigating Public Company Cybersecurity Disclosures

Security Boulevard

DECEMBER 7, 2023

Transparency in the disclosure of cybersecurity incidents for public companies is no longer good practice – it’s now a regulatory necessity. The imminent requirement for public companies to disclose current material cybersecurity incidents is set to reshape the disclosure landscape for public companies.

Cybersecurity

Cybersecurity Information Security Government

TA547 Phishing Attack: German Companies Hit With Infostealer

Security Boulevard

APRIL 22, 2024

Researchers at Proofpoint have found out that the TA547 phishing attack campaigns have been targeting different German companies. Identified as TA547, the threat actor has been using an information stealer called Rhadamanthys to get its hand on important financial data of companies.

Phishing

Phishing Cybersecurity

Ransomware attacks are decreasing, but companies remain vulnerable

Tech Republic Security

JANUARY 10, 2023

Only 25% of the organizations surveyed by Delinea were hit by ransomware attacks in 2022, but fewer companies are taking proactive steps to prevent such attacks. The post Ransomware attacks are decreasing, but companies remain vulnerable appeared first on TechRepublic.

Ransomware

ERM Program Fundamentals for Success in the Banking Industry

Speaker: William Hord, Senior VP of Risk & Professional Services

Does our bank understand and support the importance of a strong ERM program to continue to position our company for growth? Are we leveraging risk velocity and vulnerability to obtain more granular residual risk results?

Banking

New DarkGate Malware Campaign Hits Companies Via Microsoft Teams

Tech Republic Security

SEPTEMBER 14, 2023

Get technical details about how this new attack campaign is delivered via Microsoft Teams and how to protect your company from this loader malware.

Malware

Malware Phishing Software Cybersecurity

Are You Ready to Protect Your Company From Insider Threats? Probably Not

Security Boulevard

MARCH 8, 2024

The worse news is that most companies are unprepared to meet the moment. The post Are You Ready to Protect Your Company From Insider Threats? The bad news is insider threats are on the rise. Probably Not appeared first on Security Boulevard.

Risk

Risk Government Cybersecurity

QEMU Emulator Exploited as Tunneling Tool to Breach Company Network

The Hacker News

MARCH 7, 2024

Threat actors have been observed leveraging the QEMU open-source hardware emulator as tunneling software during a cyber attack targeting an unnamed "large company" to connect to their infrastructure.

Cyber Attacks

Cyber Attacks Software

Report: Terrible employee passwords at world’s largest companies

Tech Republic Security

MARCH 30, 2023

The post Report: Terrible employee passwords at world’s largest companies appeared first on TechRepublic. Find out the most commonly used weak passwords by industry and country, according to NordPass. Plus, get tips on creating strong passwords.

Passwords

From Complexity to Clarity: Strategies for Effective Compliance and Security Measures

Speaker: Erika R. Bales, Esq.

When we talk about “compliance and security," most companies want to ensure that steps are being taken to protect what they value most – people, data, real or personal property, intellectual property, digital assets, or any other number of other things - and it’s more important than ever that safeguards are in place.

Spearphishing report: 50% of companies were impacted in 2022

Tech Republic Security

MAY 24, 2023

The post Spearphishing report: 50% of companies were impacted in 2022 appeared first on TechRepublic. Barracuda Networks found that spearphishing exploits last year worked to great effect and took days to detect.

Artificial Intelligence

Artificial Intelligence Phishing Cybersecurity

StrelaStealer Malware Returns in 2024 with Stealthier Campaign Targeting EU and US Companies

Penetration Testing

MARCH 24, 2024

Targeting organizations across the European Union and the United States, this wave arrives after multiple... The post StrelaStealer Malware Returns in 2024 with Stealthier Campaign Targeting EU and US Companies appeared first on Penetration Testing.

Penetration Testing

Penetration Testing Malware

FTC Warns AI Companies About Changing Policies to Leverage User Data

Security Boulevard

FEBRUARY 15, 2024

The Federal Trade Commission is warning AI companies against secretly changing their security and privacy policies in hopes of leveraging the data they collect from customers to feed models they use to develop their products and services.

Data privacy

Data privacy Security Awareness Mobile Cybersecurity

Ransomware Attack Targets Major North American Water Company

Security Boulevard

JANUARY 24, 2024

The post Ransomware Attack Targets Major North American Water Company appeared first on Security Boulevard. Veolia officials said in a note this week that the attack affected software and systems in their North America Municipal Water division. They also wrote.

Ransomware

Ransomware Cybercrime Software IoT

Back to the Office: Privacy and Security Solutions to Compliance Issues for 2021 and Beyond

Speaker: Mike Cramer, Director of HIPAA & Data Security at The Word & Brown Companies

Now that companies are slowly allowing employees to return to work at the office, it's time to re-evaluate your company’s posture towards privacy and security. using company equipment from home, or are still working remotely. This is especially vital if your workers were (and still are!)

Data privacy

3 Ways Insider Threats Put Your Company at Risk in 2024

Security Boulevard

FEBRUARY 14, 2024

Employees are often heralded as a company's most valuable asset, but these insiders can also be an organization's biggest risk. The post 3 Ways Insider Threats Put Your Company at Risk in 2024 appeared first on Security Boulevard.

Risk

Risk Data breaches Security Awareness Government

Mental health company Cerebral failed to protect sensitive personal data, must pay $7 million

Malwarebytes

APRIL 18, 2024

The Federal Trade Commission (FTC) has reached a settlement with online mental health services company Cerebral after the company was charged with failing to secure and protect sensitive health data. Many organizations are unclear about how much information the social media companies behind the tracking pixels can gather.

Data breaches

Data breaches Passwords Phishing Password Management

Google Warns: Android Zero-Day Flaws in Pixel Phones Exploited by Forensic Companies

The Hacker News

APRIL 3, 2024

Google has disclosed that two Android security flaws impacting its Pixel smartphones have been exploited in the wild by forensic companies.

Firmware

Crooks stole €15 Million from European retail company Pepco

Security Affairs

MARCH 1, 2024

million from the European variety retail and discount company Pepco through a phishing attack. ” reads the press release published by the company. ” reads the press release published by the company. Crooks stole €15.5 “The attack has resulted in a loss of approximately €15.5

Retail

Retail Banking Phishing Cyber Attacks

Monetization Monitor: Software Usage Analytics 2020

Advertiser: Revenera

Revenera’s 2020 Software Monetization and Pricing survey gathers input from leading software companies and provides you with key insights. 100% of SaaS companies are either already collecting or planning to collect usage data in the next two years. Download the report now and see how your company compares.

Software

Sweden’s liquor supply severely impacted by ransomware attack on logistics company

Security Affairs

APRIL 25, 2024

A ransomware attack on a Swedish logistics company Skanlog severely impacted the country’s liquor supply. Due to the cyber attack’s impact on the logistics company, the media reported it may be difficult to get hold of alcoholic beverages this weekend. alcohol by volume.

Ransomware

Ransomware Retail Cyber Attacks Backups

IDIQ MAKES INC. 5000 LIST OF THE PACIFIC REGION’S FASTEST-GROWING PRIVATE COMPANIES

Identity IQ

FEBRUARY 27, 2024

5000 LIST OF THE PACIFIC REGION’S FASTEST-GROWING PRIVATE COMPANIES IdentityIQ – IDIQ earns its third spot on the prestigious Inc. 27, 2024 – IDIQ ®, a financial intelligence company that protects and strengthens consumers’ long-term financial health, has earned the rank of No.136 IDIQ MAKES INC. 136 on Inc. IDIQ MAKES INC.

B2B

B2B Education Scams Media

Companies slow to “mask up” with zero trust cybersecurity protocols

Tech Republic Security

JANUARY 24, 2023

A new study by Gartner predicts that by 2026 just 10% of companies will have zero-trust protocols in place against cybersecurity exploits. The post Companies slow to “mask up” with zero trust cybersecurity protocols appeared first on TechRepublic.

Cybersecurity

Cybersecurity Malware

Australia plans to mandate file scanning for all tech companies

Tech Republic Security

JUNE 21, 2023

In an effort to target online child sexual abuse and pro-terror content, Australia may cause global changes in how tech companies handle data. The post Australia plans to mandate file scanning for all tech companies appeared first on TechRepublic.

Big data

Big data Government Cybersecurity

Everything You Need to Know About Crypto

Speaker: Ryan McInerny, CAMS, FRM, MSBA - Principal, Product Strategy

Join this exclusive webinar with Ryan McInerny to learn: Cryptocurrency asset market trends How to manage risk and compliance to serve customers safely Best practices for identifying crypto transactions and companies Revenue opportunities with custody arrangements, brokerage fees, account maintenance fees, and lending The roadmap needed for successful (..)

Cryptocurrency

Company that launched 2FA is pioneering AI for digital identity

Tech Republic Security

APRIL 7, 2023

Joe Burton, CEO of digital identity company Telesign, talks to TechRepublic about how the “fuzzy” realm between statistical analysis and AI can fuel global, fast, accurate identity. The post Company that launched 2FA is pioneering AI for digital identity appeared first on TechRepublic.

Artificial Intelligence

Artificial Intelligence Authentication

Cyber Attack on Telecommunications Company

Security Boulevard

JANUARY 15, 2024

The region which includes […] The post Cyber Attack on Telecommunications Company appeared first on Kratikal Blogs. The post Cyber Attack on Telecommunications Company appeared first on Security Boulevard.

Telecommunications

Telecommunications Cyber Attacks Internet Internet

Some of the Most Popular Websites Share Your Data With Over 1,500 Companies

WIRED Threat Level

MARCH 20, 2024

Here's how many of these third-party companies may get your data from some of the most popular sites online. Cookie pop-ups now show the number of “partners” that websites may share data with.

2022 State of the Threat: Ransomware is still hitting companies hard

Tech Republic Security

OCTOBER 7, 2022

The post 2022 State of the Threat: Ransomware is still hitting companies hard appeared first on TechRepublic. SecureWorks found that business email compromise still generates huge revenues for cybercriminals, while cyberespionage activities tend not to change so much.

Ransomware

Ransomware Malware Cybersecurity

Software Composition Analysis: The New Armor for Your Cybersecurity

Speaker: Blackberry, OSS Consultants, & Revenera

Without establishing Software Composition Analysis best practices and the ability to produce a Software Bill of Materials, companies are most likely leaving a gaping hole in their software supply chain for bad actors to slip in and take advantage of vulnerabilities.

Cybersecurity

List of victimized companies of MOVEit Cyber Attack

CyberSecurity Insiders

JUNE 21, 2023

The post List of victimized companies of MOVEit Cyber Attack appeared first on Cybersecurity Insiders. Going forward, let us list out the victims who have been impacted by the attack after the hack-ers gained control of Moveit file transfer software worldwide, a business unit of Progress Software.

Cyber Attacks

Cyber Attacks Retail Insurance Healthcare

FTC charged Avast with selling users’ browsing data to advertising companies

Security Affairs

FEBRUARY 22, 2024

The antivirus firm is accused of selling the data to advertising companies without user consent. The company claimed their software would “block[] annoying tracking cookies that collect data on your browsing activities” and “[p]rotect your privacy by preventing. ” re ads the FTC’s complaint.

Advertising

Advertising Antivirus Data collection Mobile

Attackers Target Crypto Companies in Retool Data Breach

Security Boulevard

SEPTEMBER 15, 2023

Retool, the six-year-old company whose platform help organizations build business applications, on August 29 notified 27 customers of. The post Attackers Target Crypto Companies in Retool Data Breach appeared first on Security Boulevard.

Data breaches

Data breaches Accountability Software Social Engineering

What hyper-growth companies all have in common: They prioritize cybersecurity

Tech Republic Security

FEBRUARY 24, 2022

Whether the chicken or the egg came first, Beyond Identity’s data suggests that the fastest growing companies are all more likely to take cybersecurity seriously. The post What hyper-growth companies all have in common: They prioritize cybersecurity appeared first on TechRepublic.

Cybersecurity

China Surveillance Company Hacked

CEO of data privacy company Onerep.com founded dozens of people-search firms

Trending Sources

New York Increases Cybersecurity Rules for Financial Companies

Pokemon Company resets some users’ passwords

5 Key Findings From the 2023 FBI Internet Crime Report

Demystifying Cybersecurity’s Public Companies

Russian Software Company Pretending to Be American

SHARED INTEL: Poll shows companies pursuing ‘Digital Trust’ reap benefits as laggards fall behind

Warning: Scammers Are Now PERFECTLY Impersonating Utility Companies

Monetization Monitor: Monetization Models and Pricing 2020

Top 10 Cybersecurity Assessment Companies in 2024

Navigating Public Company Cybersecurity Disclosures

TA547 Phishing Attack: German Companies Hit With Infostealer

Ransomware attacks are decreasing, but companies remain vulnerable

ERM Program Fundamentals for Success in the Banking Industry

New DarkGate Malware Campaign Hits Companies Via Microsoft Teams

Are You Ready to Protect Your Company From Insider Threats? Probably Not

QEMU Emulator Exploited as Tunneling Tool to Breach Company Network

Report: Terrible employee passwords at world’s largest companies

From Complexity to Clarity: Strategies for Effective Compliance and Security Measures

Spearphishing report: 50% of companies were impacted in 2022

StrelaStealer Malware Returns in 2024 with Stealthier Campaign Targeting EU and US Companies

FTC Warns AI Companies About Changing Policies to Leverage User Data

Ransomware Attack Targets Major North American Water Company

Back to the Office: Privacy and Security Solutions to Compliance Issues for 2021 and Beyond

3 Ways Insider Threats Put Your Company at Risk in 2024

Mental health company Cerebral failed to protect sensitive personal data, must pay $7 million

Google Warns: Android Zero-Day Flaws in Pixel Phones Exploited by Forensic Companies

Crooks stole €15 Million from European retail company Pepco

Monetization Monitor: Software Usage Analytics 2020

Sweden’s liquor supply severely impacted by ransomware attack on logistics company

IDIQ MAKES INC. 5000 LIST OF THE PACIFIC REGION’S FASTEST-GROWING PRIVATE COMPANIES

Companies slow to “mask up” with zero trust cybersecurity protocols

Australia plans to mandate file scanning for all tech companies

Everything You Need to Know About Crypto

Company that launched 2FA is pioneering AI for digital identity

Cyber Attack on Telecommunications Company

Some of the Most Popular Websites Share Your Data With Over 1,500 Companies

2022 State of the Threat: Ransomware is still hitting companies hard

Software Composition Analysis: The New Armor for Your Cybersecurity

List of victimized companies of MOVEit Cyber Attack

FTC charged Avast with selling users’ browsing data to advertising companies

Attackers Target Crypto Companies in Retool Data Breach

What hyper-growth companies all have in common: They prioritize cybersecurity

Stay Connected