SecureList

MARCH 13, 2024

The State of Stalkerware in 2023 (PDF) The annual Kaspersky State of Stalkerware report aims to contribute to awareness and a better understanding of how people around the world are impacted by digital stalking. The data highlights of 2023 In 2023, a total of 31,031 unique users were affected by stalkerware, an increase on 2022 (29,312).

Mobile 108

Mobile Passwords Surveillance Technology 108

Security Affairs

JANUARY 31, 2025

This week, Italys Data Protection Authority Garante asked the AI firm DeepSeek to clarify its data collection, sources, purposes, legal basis, and storage, citing potential risks to user data. In addition to imposing the data processing restriction, the Authority has also launched an investigation.”

Artificial Intelligence 61

Artificial Intelligence Data collection DDOS Risk 61

eSecurity Planet

MAY 19, 2023

These tools play a vital role in ensuring the security, integrity, and confidentiality of sensitive information, such as personal data and financial records. It offers scanning and assessment of web applications to identify vulnerabilities and potential security risks, with detailed reports and remediation.

Software 104

Software Risk Encryption Marketing 104

BH Consulting

MARCH 26, 2025

To put this into context, GenAI use in business was just 5 per cent in 2023, the research company said. This rapid transformation creates a challenge for boards tasked with balancing emerging risks and strategic opportunities. How should boards approach digital risks? However, AI governance remains a challenge.

Government 52

Government Artificial Intelligence Risk Digital transformation 52

Security Affairs

NOVEMBER 6, 2024

The government is taking action to address the specific national security risks related to ByteDance Ltd.’s The decision was based on the information and evidence collected over the course of the review and on the advice of Canada’s security and intelligence community and other government partners.”

Government 118

Government Mobile Media Technology 118

Security Affairs

SEPTEMBER 26, 2023

The BORN funded by the government of Ontario disclosed a data breach that impacts some 3.4 The Clop ransomware gang (aka Lace Tempest ) was credited by Microsoft for the campaign that exploited a zero-day vulnerability, tracked as CVE-2023-34362 , in the MOVEit Transfer platform. million people.

Data breaches 131

Data breaches Healthcare Ransomware Hacking 131

Security Boulevard

AUGUST 3, 2023

Summary The BloodHound code-convergence project brings some significant and long-desired feature enhancements to BloodHound Enterprise (BHE): Cypher search, including pre-built queries for AD and Azure Built-in support for offline data collection (i.e., Existing customers can reach out to their TAM with questions.

Data collection 98

Data collection Engineering Risk 98

eSecurity Planet

APRIL 14, 2023

By implementing bot protection, website owners and online service providers can reduce the risk of cyber attacks, protect sensitive data, and ensure a good experience for their users. By combining rate limiting and other techniques, the effectiveness of the bot protection solution is increased, which minimizes the risk of bot attacks.

Software 109

Software DDOS Accountability Firewall 109

SecureWorld News

JUNE 21, 2023

These compromised accounts pose a serious risk to businesses, especially in the Asia-Pacific region, which has experienced the highest concentration of ChatGPT credentials for sale. Info stealers are also indiscriminate, infecting as many computers as possible to maximize the amount of data collected.

Accountability 130

Accountability Data collection Cyber threats Risk 130

Malwarebytes

AUGUST 6, 2023

How to protect your child's identity Hey, are you REALLY ready to go on vacation? (No, Malwarebytes EDR and MDR removes all remnants of ransomware and prevents you from getting reinfected.

Data collection 91

Data collection Ransomware Phishing Advertising 91

Malwarebytes

JULY 29, 2024

At Malwarebytes, we reported how a team of researchers at Mozilla who reviewed the privacy and data collection policies of various product categories for several years now, named “Privacy Not Included,” found cars to be the worst product category they ever reviewed for privacy. But at least those vulnerabilities are not intentional.

Insurance 115

Insurance Data collection Data breaches Manufacturing 115

Malwarebytes

JANUARY 19, 2024

It mitigates the risk of a spouse, roommate, or anyone on a public computer spying on your browsing habits. Arising in the Northern District of California, the lawsuit accused Google of continuing to “track, collect, and identify [users’] browsing data in real time” even when they had opened a new Incognito window.

Data collection 143

Data collection VPN Risk 143

Security Affairs

AUGUST 3, 2024

The social network giant exposed millions of children under 13 to extensive data collection, interactions with adult users, and adult content by violating COPPA. The Irish data regulators discovered that the popular video-sharing app allowed adults to send direct messages to certain teenagers who have no family connection with them.

Accountability 129

Accountability Data collection Risk Hacking 129

SecureWorld News

JANUARY 16, 2024

July 1st brings two key CCPA deadlines : organizations must clearly explain how consumers can opt out of data sharing using standardized mechanisms, and they must obtain fresh consent for processing any sensitive data collected before July 1, 2023.

Cybersecurity 109

Cybersecurity Data privacy Data collection Penetration Testing 109

Malwarebytes

MARCH 14, 2024

Speaking at a US Senate hearing in March 2023, the general said “one third of Americans get their news from TikTok”, adding “one sixth of American youth say they’re constantly on TikTok. The EFF argues that the bill will not stop the sharing of data but it will reduce online rights in a way that is unconstitutional.

Identity Theft 123

Identity Theft Government Media Data collection 123

CyberSecurity Insiders

MAY 2, 2023

It amends the 2018 California Consumer Privacy Act (CCPA) introduced in response to rising consumer data privacy concerns. It has significantly impacted data collection and handling practices, giving consumers more control over how businesses handle their data. How does CPRA impact business operations?

Data collection 52

Data collection Data breaches Password Management Data privacy 52

CyberSecurity Insiders

MARCH 22, 2023

Let’s talk about how to manage vulnerabilities with automation and why it’s so important moving into 2023. Next, each vulnerability needs to be evaluated and prioritized according to its risk to the system and the organization. Identifying and remediating IT risks consumes a lot of time and energy.

Data breaches 139

Data breaches Cyber threats Government Risk 139

Security Affairs

JUNE 9, 2024

New York Times source code compromised via exposed GitHub token SolarWinds fixed multiple flaws in Serv-U and SolarWinds Platform Pandabuy was extorted twice by the same threat actor UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces Chinese threat actor exploits old ThinkPHP flaws since October 2023 A new Linux (..)

Data breaches 127

Data breaches Banking Hacking Malware 127

Centraleyes

DECEMBER 1, 2024

The Shift Toward Revenue-Positive Compliance A 2023 study by Todd Haugh and Suneal Bedi from Indiana University’s Kelley School of Business offers groundbreaking insights into how compliance can create positive value beyond traditional risk management. Ensure Multi-Industry Compliance Compliance isn’t a one-size-fits-all situation.

Risk 52

Risk B2B Data privacy B2C 52

Centraleyes

DECEMBER 10, 2023

SOC 2 is primarily used by software companies but is intended for any service provider, or SaaS company, who stores their customers data in the cloud, or within their software. Many companies find the SOC 2 report a fundamental component of their vendor risk assessment when onboarding a new vendor. Automation.

Risk 59

Risk Data breaches Software Information Security 59

Malwarebytes

FEBRUARY 13, 2024

The publications described the bug as “extremely easy to exploit, and grants unfettered remote access to all of the data collected from a victim’s Android device.” We don’t just report on phone security—we provide it Cybersecurity risks should never spread beyond a headline. Sadly, this is no surprise.

Spyware 140

Spyware Data collection Malware Hacking 140

Malwarebytes

MAY 22, 2024

On Monday, the computing giant unveiled a new line of PCs that integrate Artificial Intelligence (AI) technology to promise faster speeds, enhanced productivity, and a powerful data collection and search tool that screenshots a device’s activity—including password entry—every few seconds.

Artificial Intelligence 111

Artificial Intelligence Passwords Accountability Media 111

Identity IQ

OCTOBER 26, 2023

Hermann’s deep expertise in identity theft protection, credit and financial education and leveraging data to implement scalable business solutions will immediately benefit Entryway as the organization works to create efficiencies through data collection to serve a greater number of at-risk individuals and families across all of its program markets.

Identity Theft 124

Identity Theft Education Marketing Financial Services 124

Security Affairs

MARCH 1, 2023

The app “presents an unacceptable level of risk to privacy and security,” explained Canada’s chief information officer. TikTok is also under the scrutiny of Canadian privacy regulators that are investigating whether the company obtains valid and meaningful consent from users when collecting their personal information.

Mobile 98

Mobile Government Data collection Data privacy 98

SecureList

NOVEMBER 14, 2023

In this article, we will review the past year’s trends to see which of our 2023 predictions have come true, and try to predict what is to come in 2024. The US Cybersecurity and Infrastructure Security Agency (CISA) provided additional IoCs associated with exploitation of CVE-2023-2868. A review of last year’s predictions 1.

Hacking 141

Hacking Energy and Utilities Malware Media 141

Security Boulevard

JANUARY 18, 2024

How do we gauge how risky it is and how do we ensure that future APIs are not putting the enterprise at risk? This can not be done without major risk unless organizations have created and mandated corporate standards on what a "good" API actually is from a security standpoint. Defining and sharing what good means.

Risk 59

Risk Government Threat Detection Engineering 59

SecureWorld News

JUNE 24, 2024

In addition, the risks of monetary and operational damage render it mission critical for enterprises to envision and enact the appropriate People, Process, and Technology safeguards to assure data protection and privacy. Gain real-time visibility to data security posture. Enable automated full-scale data classification scanning.

IoT 109

IoT InfoSec Artificial Intelligence Risk 109

Thales Cloud Protection & Licensing

NOVEMBER 5, 2024

from 2023 to between $5.23 Vendors’ attention is increasingly fragmented across various data-collecting and transactional platforms. Retailers are very familiar with the risks and consequences of data breaches, with attacks occurring as far back as a decade ago and continuing to target retailers to this day.

Retail 71

Retail Data breaches Digital transformation Risk 71

Centraleyes

NOVEMBER 7, 2024

The Oregon Consumer Privacy Act (OCPA) is a state privacy law that sets guidelines for how businesses should collect, use, and protect the personal data of Oregon residents. to ensure that organizations handle data ethically and transparently. The act aligns with broader privacy frameworks across the U.S.

Data collection 52

Data collection Data breaches Data privacy Risk 52

Centraleyes

MARCH 27, 2024

The standard provides guidelines for governing and managing AI technologies, ensuring accountability, transparency, and data privacy throughout the AI lifecycle. ISO/IEC 42001:2023 is an international standard focusing on Artificial Intelligence (AI) Management Systems. What are the requirements for ISO 42001 (AI)?

Artificial Intelligence 52

Artificial Intelligence Risk Data collection Technology 52

Malwarebytes

DECEMBER 5, 2022

The act, which amended and expanded California's consumer privacy law that was built on the California Consumer Privacy Act (CCPA) of 2018 , is set to take effect on January 1, 2023. The CPRA is sometimes called the " CCPA 2.0 " and will affect the personal data of Californians collected from January 1, 2022 onwards.

Data collection 71

Data collection Mobile Risk Cybersecurity 71

Thales Cloud Protection & Licensing

MARCH 12, 2024

Ransomware Attacks: The Constant and Evolving Cybersecurity Threat madhav Tue, 03/12/2024 - 13:00 Enterprise data collection is skyrocketing, driven by factors like connected devices, cloud computing, personal data collection and digital transactions. It accounts for 25% of all data breaches.

Ransomware 62

Ransomware Cybersecurity Encryption Data collection 62

Zero Day

JUNE 20, 2025

Here are the facts and how to protect yourself Wondering if your information is posted online from a data breach? Here's how to check if your accounts are at risk and what to do next. PT Moor Studio/Getty With so much news about data breaches, you have to be careful not to panic each time you hear of a new one.

Passwords 91

Passwords Data breaches Password Management Identity Theft 91

Security Boulevard

NOVEMBER 5, 2024

from 2023 to between $5.23 Vendors’ attention is increasingly fragmented across various data-collecting and transactional platforms. Retailers are very familiar with the risks and consequences of data breaches, with attacks occurring as far back as a decade ago and continuing to target retailers to this day.

Retail 64

Retail Data breaches Digital transformation Risk 64

SecureWorld News

JANUARY 8, 2024

Surveillance and monitoring risks: The integration of AI into everyday computing could lead to increased surveillance capabilities. Voice and audio data vulnerability: If the AI assistant processes voice commands or audio inputs, there's a risk of capturing private conversations or background sounds.

Artificial Intelligence 100

Artificial Intelligence Surveillance Technology Risk 100

Malwarebytes

MAY 13, 2024

In 2023, Reuters reported that a San Francisco woman sued her husband in 2020 for allegations of “assault and sexual battery.” We don’t just report on threats—we remove them Cybersecurity risks should never spread beyond a headline. There was no button she could press to take away the app’s connection to the vehicle.”

Manufacturing 116

Manufacturing Mobile Wireless Data collection 116

SecureList

NOVEMBER 19, 2024

over 2023 by the end of this year. This report continues the series of annual analyses we’vewe published on Securelist in 2023 , 2022 and 2021 , which track the evolving landscape of shopping-related cybersecurity threats. This report draws on data collected from January through October 2024.

Banking 102

Banking Phishing Scams Retail 102