2014, Data collection and Technology - Cyber Security Informer

Privacy Roundup: Week 3 of Year 2025

Security Boulevard

JANUARY 20, 2025

Specifically, stories and news items where public and/or private organizations have leveraged their capabilities to encroach on user privacy; for example, data brokers using underhanded means to harvest user location data without user knowledge or public organizations using technology without regard for user privacy.

Surveillance

Surveillance Malware Data breaches Scams

The Role of Differential Privacy in Protecting Sensitive Information in the Era of Artificial Intelligence

Security Affairs

MARCH 7, 2025

According to Erlingsson (2014), Google’s RAPPOR system collects user data while maintaining anonymity. Similarly, Abowd(2018) examined its integration with a census data collection framework, ensuring confidentiality. More recent research has focused on applying differential privacy in various domains.

Artificial Intelligence

Artificial Intelligence Healthcare Data privacy Banking

Cloud Atlas seen using a new tool in its attacks

SecureList

DECEMBER 23, 2024

Introduction Known since 2014, Cloud Atlas targets Eastern Europe and Central Asia. All data collected this way is saved in a TMP alternate data stream and forwarded to the C2 server by the VBShower::Backdoor component. We’re shedding light on a previously undocumented toolset, which the group used heavily in 2024.

Encryption

Encryption Penetration Testing Malware Phishing

Operation North Star – North-Korea hackers targeted US defense and aerospace companies

Security Affairs

JULY 30, 2020

The Techniques, Tactics, and Procedures (TTPs) of the Operation North Star operations are very similar to those observed in 2017 and 2019 campaigns that targeted key military and defense technologies. “Our analysis indicates that one of the purposes of the activity in 2020 was to install data gathering implants on victims’ machines.

Data collection

Data collection Advertising Malware Phishing

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

Krebs on Security

SEPTEMBER 4, 2018

Less than a week ago, security researcher Nitish Shah directed KrebsOnSecurity to an open database on the Web that allowed anyone to query up-to-the-minute mSpy records for both customer transactions at mSpy’s site and for mobile phone data collected by mSpy’s software. In September 2014, U.S.

Spyware

Spyware Mobile Advertising Software

Russia-Linked Turla APT group Hijacked C2 of the Iranian OilRig

Security Affairs

JUNE 21, 2019

” Turla attackers used many other tools and malware in the latest campaigns, such as a custom dropper to deliver the Neptun backdoor, a USB data collecting tool, a hacking tool that combines four NSA tools ( EternalBlue , EternalRomance , DoublePulsar , SMBTouch ). Pierluigi Paganini. SecurityAffairs – Turla, hacking).

Government

Government Hacking Advertising Data collection

Android Apps containing Clicker Trojan installed on over 100M devices

Security Affairs

AUGUST 10, 2019

Data collected by the malware include manufacturer and model, OS version, country of residence of the user, the default language of the system, user agent identifier, name of mobile operator, type of internet connection, screen options, time zone, and information about the tainted application containing the Trojan. Pierluigi Paganini.

Mobile

Mobile Advertising Malware Data collection

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Internal Revenue Service website for months: Anyone seeking to create an account to view their tax records online would soon be required to provide biometric data to a private company in Virginia — ID.me. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

As a leading VC, BVP offers budding companies plenty to consider, with a set of roadmaps and tools for today’s technologies and market complexities. PagerDuty Operations performance 2014 NYSE: PD Auth0 Identity management 2014 Acquired: Okta. Also read : Addressing Remote Desktop Attacks and Security. EEP Investments.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

Google Chronicle announced Backstory to protect businesses

Security Affairs

MARCH 5, 2019

Organizations will store their petabytes of “internal security telemetry” on Google cloud platform and use Google machine learning and data analytics technologies to analyze it and scan for malicious activities. Companies could use this data to quickly detect malicious activities. Pierluigi Paganini.

DNS

DNS Cyber threats Advertising Data collection

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

Security Affairs

SEPTEMBER 18, 2020

CERT-GIB’s report is based on data collected and analyzed by the Threat Detection System (TDS) Polygon as part of operations to prevent and detect threats distributed online in H1 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Opened email lets spy in. About Group-IB. Pierluigi Paganini.

Phishing

Phishing Ransomware Spyware Banking

NEW TECH: CyberGRX seeks to streamline morass of third-party cyber risk assessments

The Last Watchdog

MARCH 14, 2019

When Target fired both its CEO and CIO in 2014, it was a wake-up call for senior management. The firings came as a result of a massive data breach which routed through an HVAC contractor’s compromised account. C-suite execs across the land suddenly realized something similar could happen to them.

Cyber Risk

Cyber Risk Risk Digital transformation Accountability

Scott Hermann, CEO of IDIQ, Joins Entryway’s National Board of Directors

Identity IQ

OCTOBER 26, 2023

Hermann’s deep expertise in identity theft protection, credit and financial education and leveraging data to implement scalable business solutions will immediately benefit Entryway as the organization works to create efficiencies through data collection to serve a greater number of at-risk individuals and families across all of its program markets.

Identity Theft

Identity Theft Marketing Education Financial Services

Online market for counterfeit goods in Russia has reached $1,5 billion

Security Affairs

OCTOBER 15, 2018

In addition to technological ways of attracting traffic by using bots that target opinion leaders, scammers do not shy away from the classic tactic of mass email blasts purporting to be from popular brands, with 20% of users opening emails that contain content that is characteristic of malware or phishing. Pierluigi Paganini.

Marketing

Marketing Phishing Media Cybercrime

Google to Pay a record $391M fine for misleading users about the collection of location data

Security Affairs

NOVEMBER 15, 2022

The authorities started the investigation into Google collection practice following a 2018 Associated Press article that revealed Google “records your movements even when you explicitly tell it not to.”. However, location data can be used to expose a person’s identity and routines, and even infer personal details. not hidden); and.

Consumer Protection

Consumer Protection Accountability Data collection Advertising

New set of Pakistani banks’ card dumps goes on sale on the dark web

Security Affairs

NOVEMBER 17, 2018

GIB Threat Intelligence cyber threats data collection system has been named one of the best in class by Gartner, Forrester, and IDC. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Banking

Banking Cybercrime Advertising Data collection

Google will pay $29.5M to settle two lawsuits over its location tracking practices

Security Affairs

JANUARY 2, 2023

Given the vast level of tracking and surveillance that technology companies can embed into their widely used products, it is only fair that consumers be informed of how important user data, including information about their every move, is gathered, tracked, and utilized by these companies. The IT giant will pay $9.5 million to D.C.

Consumer Protection

Consumer Protection Surveillance Data collection Accountability

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Security Affairs

NOVEMBER 15, 2018

GIB Threat Intelligence cyber threats data collection system has been named one of the best in class by Gartner, Forrester, and IDC. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Banking

Banking Computers and Electronics Phishing Cybercrime

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

Enacted in 2002 and updated by the Federal Information Security Modernization Act (FISMA) of 2014, FISMA requires agencies to implement a risk-based approach to security. HIPAA also requires organizations to conduct regular risk assessments and report data breaches.

Cybersecurity

Cybersecurity Computers and Electronics Cyber threats Healthcare

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Security Affairs

OCTOBER 10, 2018

They were helped in one of their attacks by members of the group Anunak , which had not conducted at attack of this kind since 2014. GIB Threat Intelligence cyber threats data collection system has been named one of the best in class by Gartner, Forrester, and IDC. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Banking Phishing Cyber threats

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Security Affairs

NOVEMBER 16, 2018

GIB Threat Intelligence cyber threats data collection system has been named one of the best in class by Gartner, Forrester, and IDC. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Cybercrime

Cybercrime Hacking Banking Phishing

Operation Night Fury: Group-IB helps take down a cybergang behind the infection of hundreds of websites all over the world

Security Affairs

JANUARY 27, 2020

This successful operation is just one example of how law enforcement are working with industry partners, adapting and applying new technologies to aid investigations and ultimately reduce the global impact of cybercrime,» concluded Mr Jones.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cybercrime

Cybercrime Marketing eCommerce Advertising

Prilex: the pricey prickle credit card complex

SecureList

SEPTEMBER 28, 2022

Active since 2014, in 2016, the group decided to give up ATM malware and focus all of their attacks on PoS systems, targeting the core of the payment industry. This knowledge has enabled the criminals to upgrade their toolset, allowing them to create their own cards featuring this new technology and keeping them “in the business.”

Malware

Malware Banking Software Encryption

Understanding Changing Software Delivery Trends and Key Strategies for Growth

Thales Cloud Protection & Licensing

JANUARY 18, 2022

In the year ahead, successful companies will focus on integrating new technologies and addressing long-standing challenges. In early 2014, when we commissioned one of our early reports about the state of software monetization, connectivity was already assumed and cloud computing was just beginning to dominate the industry.

Software

Software Digital transformation Mobile Data collection

Best DevSecOps Tools

eSecurity Planet

MARCH 17, 2022

Sonar’s technology is available as a self-managed (SonarQube) or SaaS-based (SonarCloud) solution, and clients can choose between Developer, Enterprise, and Data Center plans. Synopsys is a longtime vendor in design, verification, and intellectual property for silicon and entered the application security testing (AST) market in 2014.

Penetration Testing

Penetration Testing Software Risk Firewall

Best Network Monitoring Tools for 2022

eSecurity Planet

JANUARY 26, 2022

AES-256 encryption for data at rest and TLS v1.2 Assembled by Broadcom subsidiary CA Technologies, DX NetOps offers network visibility and actionable intelligence for monitoring digital user experiences. The youngest of companies picked for this year’s list, Kentik has been a budding networking monitoring vendor since 2014.

Marketing

Marketing DDOS Threat Detection DNS

Understanding Changing Software Delivery Trends and Key Strategies for Growth

Thales Cloud Protection & Licensing

JANUARY 18, 2022

In the year ahead, successful companies will focus on integrating new technologies and addressing long-standing challenges. In early 2014, when we commissioned one of our early reports about the state of software monetization, connectivity was already assumed and cloud computing was just beginning to dominate the industry.

Software

Software Digital transformation Mobile Data collection

10 of the Riskiest Mobile Apps You Probably Downloaded

Spinone

FEBRUARY 7, 2018

authentication (the technology that allows you to log into an app via your Google or Facebook account) can introduce many security flaws as apps using this type of authentication are granted access permissions to user account actions and data on install. What Makes an App Risky? Poorly implemented OAuth 2.0

Mobile

Mobile Data breaches Accountability Risk

Norway suspends its COVID-19 contact tracing app due to privacy concerns

Security Affairs

JUNE 16, 2020

Contact tracing technologies played an essential role in the containment of the pandemic in several countries, including South Korea, Singapore, Israel, and other nations. The contact tracing app used a centralized data storage, a design solution that was already adopted in the UK and France. Pierluigi Paganini.

Data collection

Data collection Advertising Government Technology

Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data

Krebs on Security

MAY 2, 2023

The leaked records indicate the network’s chief technology officer in Pakistan has been hacked for the past year, and that the entire operation was created by the principals of a Tennessee-based telemarketing firm that has promoted USPS employment websites since 2016. org back in 2014. com , and postalhiringreviewboard[.]org

Marketing

Marketing Advertising Scams Telecommunications

FinSpy: unseen findings

SecureList

SEPTEMBER 28, 2021

While the MBR infection has been known since at least 2014, details on the UEFI bootkit are publicly revealed in this article for the first time. Based on the data collected by the Post-Validator, it is most likely that: The Post-Validator is deployed to ensure that the infected victim is the intended one.

Encryption

Encryption Malware Spyware Architecture

The Hacker Mind Podcast: Crimeware As A Service

ForAllSecure

OCTOBER 25, 2022

Vamosi: So ransomware started with like individuals being compromised and their data collected and $300 in Bitcoin and then it became commercialized to industries and so first ransomware. And I think it actually gets more complicated the more technologies we throw out. It's from a technical level. There's always been problems.

Ransomware

Ransomware Encryption Cybercrime Government

Cyber Security Informer

Privacy Roundup: Week 3 of Year 2025

The Role of Differential Privacy in Protecting Sensitive Information in the Era of Artificial Intelligence

Trending Sources

Cloud Atlas seen using a new tool in its attacks

Operation North Star – North-Korea hackers targeted US defense and aerospace companies

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

Russia-Linked Turla APT group Hijacked C2 of the Iranian OilRig

Android Apps containing Clicker Trojan installed on over 100M devices

Happy 13th Birthday, KrebsOnSecurity!

Top VC Firms in Cybersecurity of 2022

Google Chronicle announced Backstory to protect businesses

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

NEW TECH: CyberGRX seeks to streamline morass of third-party cyber risk assessments

Scott Hermann, CEO of IDIQ, Joins Entryway’s National Board of Directors

Online market for counterfeit goods in Russia has reached $1,5 billion

Google to Pay a record $391M fine for misleading users about the collection of location data

New set of Pakistani banks’ card dumps goes on sale on the dark web

Google will pay $29.5M to settle two lawsuits over its location tracking practices

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

2024 Cybersecurity Laws & Regulations

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Operation Night Fury: Group-IB helps take down a cybergang behind the infection of hundreds of websites all over the world

Prilex: the pricey prickle credit card complex

Understanding Changing Software Delivery Trends and Key Strategies for Growth

Best DevSecOps Tools

Best Network Monitoring Tools for 2022

Understanding Changing Software Delivery Trends and Key Strategies for Growth

10 of the Riskiest Mobile Apps You Probably Downloaded

Norway suspends its COVID-19 contact tracing app due to privacy concerns

Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data

FinSpy: unseen findings

The Hacker Mind Podcast: Crimeware As A Service

Stay Connected