Security Affairs

FEBRUARY 20, 2022

The Threat Report Portugal: Q4 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q4, of 2021. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 98

Threat Reports Phishing Malware Banking 98

Security Affairs

DECEMBER 5, 2024

Automating Repetitive Tasks AI can also automate many of the tasks that make being a SOC analyst so mind-numbing, including data collection, cross-referencing information, and running queries. He graduated with a degree in Journalism in 2021 and has a background in cybersecurity PR. We can only hope that they do.

Artificial Intelligence 138

Artificial Intelligence Data collection Cybersecurity Risk 138

Schneier on Security

MAY 19, 2022

Many of the sites seemingly do not intend to conduct the data-logging but incorporate third-party marketing and analytics services that cause the behavior. “If there’s a Submit button on a form, the reasonable expectation is that it does something — that it will submit your data when you click it,” says Güne?

Passwords 356

Passwords Marketing Data collection 356

Security Boulevard

JANUARY 11, 2022

In 2021, malware downloads originating from cloud apps increased to 66% of all malware downloads when compared to traditional websites, up from 46% at the beginning of 2020. These were among the findings of Netskope’s latest cloud security report, which is based on anonymized data collected.

Malware 136

Malware Data collection Security Awareness Mobile 136

Krebs on Security

MARCH 20, 2023

A new breach involving data from nine million AT&T customers is a fresh reminder that your mobile provider likely collects and shares a great deal of information about where you go and what you do with your mobile device — unless and until you affirmatively opt out of this data collection.

Mobile 314

Mobile Wireless Advertising Accountability 314

SecureList

NOVEMBER 25, 2022

Certain tech giants recently started adding tools to their ecosystems that are meant to improve the data collection transparency. This report will look at companies that collect, analyze, store user data, and share it with partners, as reported by DNT. Statistics collection principles.

Internet 100

Internet Internet Advertising Marketing 100

SecureList

JANUARY 28, 2021

How are governments and enterprises going to react to this in 2021? Smart health device vendors are going to collect increasingly diverse data – and use it in increasingly diverse ways. Public awareness of the perils of unfettered data collection is growing, and the free market is taking notice.

Marketing 95

Marketing Data collection Government Encryption 95

Security Boulevard

SEPTEMBER 21, 2021

LAS VEGAS -- AUGUST 04, 2021--. Morphisec , a leader in cloud-delivered endpoint and server security solutions, today released the 2021 edition of the Morphisec Labs Threat Report at Black Hat USA. The post Morphisec Releases 2021 Threat Report for Black Hat USA appeared first on Security Boulevard.

Threat Reports 64

Threat Reports Data collection Education 64

Security Boulevard

MAY 5, 2021

Every company can accelerate compliance and streamline data collection for SOC 2, improving security for a cloud-first world Seattle, Wash – May 5, 2021 – Shujinko, the pioneer in automated enterprise compliance, today announced that it is offering its SOC 2 compliance automation solution for free.

Data collection 111

Data collection 111

eSecurity Planet

SEPTEMBER 13, 2021

Collections repository. ThreatConnect’s platform enables automated data collection from all sources and presents it to users in context. The post Top Threat Intelligence Platforms for 2021 appeared first on eSecurityPlanet. Threat Indicator Confidence scoring tool. See our in-depth look at LookingGlass Cyber Solutions.

Threat Detection 125

Threat Detection Risk Firewall Cybersecurity 125

Security Affairs

MARCH 24, 2021

On March 2nd, Microsoft released emergency out-of-band security updates that address four zero-day issues collectively tracked as ProxyLogon (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported Microsoft Exchange versions that are actively exploited in the wild.

Data collection 136

Data collection Antivirus Internet Internet 136

Security Affairs

DECEMBER 12, 2023

Operation Blacksmith involved the exploitation of CVE-2021-44228 , also known as Log4Shell. “This particular attack observed by Talos involves the successful exploitation of CVE-2021-44228 , also known as Log4Shell, on publicly facing VMWare Horizon servers, as a means of initial access to vulnerable public-facing servers.”

Malware 133

Malware Data collection Manufacturing Healthcare 133

Krebs on Security

MAY 18, 2022

for “deceptive statements” the company and its founder allegedly made over how they handle facial recognition data collected on behalf of the Internal Revenue Service , which until recently required anyone seeking a new IRS account online to provide a live video selfie to ID.me. ” But several days after a Jan.

Government 294

Government Accountability Surveillance Data collection 294

CyberSecurity Insiders

AUGUST 20, 2021

According to a media update released by the Cyberspace Administration of China (CAC) the new law called the Personal Information Protection Law(PIPL) will come into force from October 26th,2021 and will aim to standardize solutions pertaining to data security risks in automobile sector.

Manufacturing 142

Manufacturing Data collection Media Risk 142

The Last Watchdog

JUNE 20, 2022

Data collections released after ransomware attacks. For example, a hospital that suffered a ransomware attack in 2021, had credentials to its VPN offered for sale in an underground market eight days prior to the attack. Databases with critical IP and/or PII. Chatter about the best methods to attack your business.

Ransomware 260

Ransomware Marketing Data collection VPN 260

Thales Cloud Protection & Licensing

MARCH 7, 2021

International Women’s Day 2021: Celebrating Diversity and Inclusiveness. Mon, 03/08/2021 - 06:53. Q2: Data discrimination and algorithmic bias can perpetuate gender stereotypes and inequalities. Given the growing complexity of algorithms and vast amount of data collection, tackling algorithmic bias is very important.

Engineering 96

Engineering Encryption Technology Data collection 96

CyberSecurity Insiders

OCTOBER 5, 2021

Cybersecurity Awareness Program by Interpol will start on October 4th, 2021 and will end on October 22nd, 2021, and will only be driven through social media.

Cybersecurity 125

Cybersecurity Data collection Scams Cybercrime 125

CyberSecurity Insiders

NOVEMBER 16, 2021

Bugcrowd’s Inside the Mind of a Hacker report compiled from the data collected in between May 1st, 2020 to August 31st, 2021 states that security vulnerabilities have increased since the start of COVID-19 pandemic, as most companies opted for work from home operations.

Data collection 135

Data collection Scams Hacking Malware 135

SecureList

NOVEMBER 29, 2024

CloudSorcerer is a sophisticated cyber-espionage tool used for stealth monitoring, data collection and exfiltration via Microsoft, Yandex and Dropbox cloud infrastructures. One of these was an implant called GrewApacha, used by APT31 since at least 2021. CloudSorcerer also employs GitHub as its initial C2 server.

Energy and Utilities 106

Energy and Utilities Ransomware Malware Government 106

CyberSecurity Insiders

MARCH 25, 2021

This regulation requires that IoT devices sold in California are fitted with “reasonable security features”, which protect the device and the data it contains. #6 6 Decide early on the types of data collection, transmission and processing. sound, text, images) the method by which it is transmitted can also differ (e.g.

IoT 100

IoT Authentication Passwords Data collection 100

Security Affairs

DECEMBER 23, 2023

” reads the data breach notification email sent to the impacted customers. “Mint’s data collection policy is one of the most important ways in which we ensure the privacy and security of our subscribers. Our investigation indicates that certain information associated with your account was impacted.”

Data breaches 138

Data breaches Mobile Wireless Data collection 138

CyberSecurity Insiders

AUGUST 26, 2021

Factually speaking, an Information Commissioner plays a vital role in regurgitating data flow between companies and their customers, respectively. It helps in protecting the rights of citizens and offers a plan to companies on what to do and what not to do when it comes to data collection and its security.

Information Security 112

Information Security Data privacy Data collection Media 112

SecureList

SEPTEMBER 6, 2022

The report contains anonymized data collected by the Kaspersky Global Emergency Response Team (GERT), which is our main incident response and digital forensics unit. In 2021, 98% or our incident response services were provided remotely. 2021 in numbers. It includes following information: Review of 2021 trends.

Data collection 103

Data collection Encryption Ransomware 103

Security Affairs

AUGUST 7, 2024

A previously unknown Android Spyware, dubbed LianSpy, has been targeting Russian users since at least 2021. The malware has been active since July 2021, it is designed to capture screencasts, exfiltrate user files, and harvest call logs and app lists. If found, the file is downloaded to the application’s internal data directory.

Spyware 143

Spyware Malware Encryption Data collection 143

eSecurity Planet

JUNE 4, 2021

Integrates with a variety of vulnerability scanners to collect data for IT resources both on-premises and in the cloud. The post Top Patch Management Software for 2021 appeared first on eSecurityPlanet. Works with BMC Discovery for blind spot detection and change automation with BMC ITSM.

Software 88

Software Antivirus Backups Risk 88

The Last Watchdog

OCTOBER 17, 2022

billion apps in 2021 alone, up more than 47 percent since 2018. This increased demand for apps also raises the need for improved data protection measures, which Google took steps to address with the new data safety section they launched in July 2022. Greediest data harvesters. In fact, Google Play users downloaded 111.3

Data privacy 192

Data privacy Media Data collection Data breaches 192

Security Affairs

JANUARY 6, 2022

In June 2021, the CNIL carried out an online investigation on these websites and found that, while they offer a button allowing immediate acceptance of cookies, the sites do not implement an equivalent solution (button or other) enabling the user to refuse the deposit of cookies equally easily. . and youtube.com.

Data privacy 115

Data privacy Data collection Advertising Hacking 115

CyberSecurity Insiders

JULY 7, 2021

The Xi Jinping led nation states Didi was sharing its user data with US authorities, a direct breach of the prevailing data privacy laws set by the Cyberspace Association of China (CAC) on July 2nd, 2021.

Data collection 133

Data collection Data privacy Advertising Technology 133

Security Affairs

APRIL 14, 2021

FireEye published its M-Trend 2021 report based on the data collected during the investigation, 650 new threat groups were tracked in 2020. FireEye published its annual report, titled M-Trend 2021, which is based on the data collected during the investigation on security incidents it managed.

Data collection 98

Data collection Malware Hacking Ransomware 98

Security Affairs

JULY 12, 2021

For the third time in the past four months, LinkedIn seems to have experienced another massive data scrape conducted by a malicious actor. Once again, an archive of data collected from hundreds of millions of LinkedIn user profiles surfaced on a hacker forum, where it’s currently being sold for an undisclosed sum.

Social Engineering 145

Social Engineering Media Data collection Passwords 145

SC Magazine

APRIL 19, 2021

The researchers observed the following incidents over the past several months: One threat actor in January 2021 offered real-time data for casino gaming, lottery and stocks on a popular forum used by Chinese cybercriminals. The data allegedly originated from big data sources of the two most popular mobile network operators in China.

Big data 100

Big data Data collection Mobile Risk 100

CyberSecurity Insiders

APRIL 27, 2022

In May 2021, Google announced it will launch a new data safety section on its play store to benefit customers. Going deep into the details, the Alphabet Inc’s subsidiary will make it mandatory for developers to stay transparent with their users regarding overall data collection.

Mobile 113

Mobile Data collection Cybersecurity 113

CyberSecurity Insiders

SEPTEMBER 11, 2021

Analysts find dealing with data collected from numerous hosts within an enterprise to be a daunting task. The time necessary to acquire security data, the rigidity around how the data can be analyzed, and the speed at which data can be processed make these tools less useful than they should be.

Threat Detection 126

Threat Detection Data collection Software Engineering 126

Thales Cloud Protection & Licensing

MAY 23, 2022

In September 2021, the FBI’s Cyber Division released a summary of five major attacks against the industry in the prior year , including JBS, a global food processor and meat supplier that paid an $11 million ransom to REvil. In August 2021, a ransomware attack on Scripps Health in California resulted in over $113 million in losses.

Healthcare 126

Healthcare Ransomware Authentication Threat Reports 126

CyberSecurity Insiders

DECEMBER 30, 2022

As Microsoft Ireland was operating in Europe, it received the penalty order and has been asked to rectify the data collection flaws that were against the prevailing data laws. In the 3Q of 2021, Google and Facebook were imposed penalties of €150m and €73m, respectively.

Data collection 103

Data collection Software Cybersecurity 103

eSecurity Planet

DECEMBER 1, 2021

Businesses that have spent the past three-plus years adapting to the European Union’s far-reaching data privacy law now have to decide how they will respond to a similar law in China that has been criticized as being more vague in its wording and harsher in its penalties. Also read: Top GRC Tools & Software for 2021.

Data privacy 131

Data privacy Data collection Accountability Software 131

SecureList

DECEMBER 9, 2021

The resulting data and conclusions could be used to improve mechanisms for re-scanning pages which have ended up in anti-phishing databases, to determine the response time to new cases of phishing, and for other purposes. Data retrieval method. We obtained the date of the domain creation from the WHOIS public data. No content.

Phishing 144

Phishing Hacking Engineering Scams 144