Security Affairs

DECEMBER 2, 2023

Businesses employ MongoDB to organize and store large swaths of document-oriented information. While WeMystic has since closed the database, researchers said that the data was accessible for at least five days. One of the data collections in the exposed instance, named “users,” contained a whopping 13.3

Data collection 123

Data collection Risk Hacking Information Security 123

Security Affairs

DECEMBER 31, 2023

. “Judge Rogers had rejected Google’s bid to have the case dismissed earlier this year, saying she could not agree that users consented to allowing Google to collect information on their browsing activity.”

Data collection 120

Data collection Advertising Hacking Technology 120

Security Affairs

OCTOBER 4, 2023

The data collected paints a vivid picture, revealing 1,736 ransomware claims, with 53 incidents specifically targeting Italy. Geographical data and affected sectors provide crucial insights into emerging trends and threats. Wrapping up: The second quarter of 2023 reflects a concerning surge in ransomware attacks globally.

Ransomware 107

Ransomware Data collection Cyber threats Hacking 107

Security Affairs

DECEMBER 12, 2023

Re-fingerprinting the infected systems indicates the data collected by Lazarus via NineRAT may be shared by other APT groups and essentially resides in a different repository from the fingerprint data collected initially by Lazarus during their initial access and implant deployment phase.”

Malware 101

Malware Data collection Manufacturing Healthcare 101

The Last Watchdog

JANUARY 9, 2023

A DPIA requires a thorough review of any personal data collected and stored, including who specifically controls the data and who has access at any given time.

Data privacy 210

Data privacy Small Business Data collection Cyber Risk 210

Security Affairs

OCTOBER 23, 2023

Teodoro ordered “to refrain from using AI photo generator applications and practice vigilance in sharing information online” At this time, it remains unclear whether the order was issued in response to a specific event or to address potential attacks aimed at exploiting the data collected by these applications.

Identity Theft 119

Identity Theft Social Engineering Data collection Risk 119

Security Affairs

DECEMBER 23, 2023

Our investigation indicates that certain information associated with your account was impacted.” ” reads the data breach notification email sent to the impacted customers. “Mint’s data collection policy is one of the most important ways in which we ensure the privacy and security of our subscribers.

Mobile 111

Mobile Data breaches Wireless Data collection 111

CyberSecurity Insiders

JANUARY 4, 2022

Second, if the Chinese data processor feels that the company’s data collection from users could affect national security, they can carry on with their business objective of filing for an IPO after a review certification gets completed.

Data collection 104

Data collection Government Advertising Network Security 104

SecureWorld News

JANUARY 4, 2024

When and why companies implement UAM solutions UAM tools are often employed when a company's HR or information security departments identify specific issues that cannot be resolved by other means. On the flip side, employees often lack access to the data collected by UAM solutions.

Data collection 103

Data collection Artificial Intelligence Surveillance Risk 103

Security Affairs

NOVEMBER 24, 2020

The code found in both apps allowed to gather device data, including model, MAC address, carrier information, and IMSI (International Mobile Subscriber Identity) number. The data collection code was found in the Baidu Push SDK, used to show real-time notifications inside both apps.

Data collection 109

Data collection Mobile Spyware Surveillance 109

Security Affairs

FEBRUARY 13, 2024

The data collected unearthed a total of 1771 ransomware claims, with 55 recorded incidents in Italy. Throughout this period, the platform diligently tracked 185 criminal groups operating worldwide, meticulously tracing 342 servers employed for ransomware activities.

Ransomware 105

Ransomware Data collection Hacking Cybersecurity 105

Security Affairs

OCTOBER 30, 2023

. “The Chief Information Officer of Canada determined that WeChat and Kaspersky suite of applications present an unacceptable level of risk to privacy and security. On a mobile device, the WeChat and Kaspersky applications data collection methods provide considerable access to the device’s contents.”

Mobile 119

Mobile Government Data collection Antivirus 119

The Last Watchdog

NOVEMBER 21, 2018

International regulations have also played a significant role in the privacy discussion, specifically following enforcement of the GDPR (General Data Privacy Regulation) in the European Union (EU). He has over 10 years of experience with Information Security, Cyber Security, and Risk Management. . If the U.S.

Data privacy 133

Data privacy Data collection Big data Government 133

Security Affairs

JANUARY 9, 2023

All data collected by the dashboard can be exported in different formats and can be analyzed using useful graphics. . “The strength of this OSINT Italian project , quite unique in its kind, is the chance of following it with a standard, worldwide and easy RSS feed.” ” explained the development team.

Ransomware 89

Ransomware Data collection Hacking Cybersecurity 89

The Last Watchdog

DECEMBER 7, 2021

A digital twin is a virtual duplicate of a physical entity or a process — created by extrapolating data collected from live settings. Digital twins enable simulations to be run without risking harm to the physical entity; they help inform efficiency gains made in factories and assure the reliability of jet engines, for instance.

Engineering 244

Engineering Data collection Artificial Intelligence Technology 244

Security Affairs

AUGUST 29, 2022

FTC sued US data broker Kochava for selling sensitive and precise geolocation data collected from hundreds of millions of mobile devices. ” reads the complaint.

Mobile 89

Mobile Data collection Hacking Information Security 89

Security Affairs

FEBRUARY 22, 2024

FTC says despite its promises to protect consumers from online tracking, Avast sold consumers' browsing data to third parties /2 — FTC (@FTC) February 22, 2024 Data collected by Avast could allow third parties to profile users and their habits, the cybersecurity firm could have combined this type of information with persistent identifiers (..)

Advertising 104

Advertising Antivirus Data collection Mobile 104

Hot for Security

FEBRUARY 16, 2021

Seismic monitoring devices linked to the internet are vulnerable to cyberattacks that could disrupt data collection and processing, according to Michael Samios of the National Observatory of Athens and his fellow colleagues who put together a new study published in Seismological Research Letters. .

IoT 128

IoT InfoSec Data collection Encryption 128

Security Affairs

DECEMBER 29, 2023

Under Christmas tree you can find great gifts such as significant improvements of user interface (panel), modal windows on loading and expansion of data collection objects. The New Year’s Update Before the New Year 2024, the Meduza team decided to please customers with an update.

Password Management 126

Password Management Cryptocurrency Passwords Authentication 126

Security Affairs

FEBRUARY 28, 2020

Network data collected by the NetBlocks internet observatory confirm that Turkey has blocked access to social media as Idlib military crisis escalates.

Media 103

Media Data collection Internet Internet 103

Security Affairs

FEBRUARY 18, 2022

It will introduce new solutions that operate without cross-app identifiers – including Advertising ID – and limit data sharing with third parties.” Google is also committed tp fighting and reducing covert data collection. ” reads the announcement.

Data collection 100

Data collection Advertising Mobile Technology 100

Security Affairs

NOVEMBER 23, 2022

Researchers discovered that analytics data associated with iPhone include Directory Services Identifier (DSID) that could allow identifying users. Researchers at software company Mysk discovered that analytics data collected by iPhone include the Directory Services Identifier (DSID), which could allow identifying users.

Data collection 136

Data collection Accountability Hacking Software 136

Security Affairs

AUGUST 11, 2023

” reads the report published by Data collected related to multiple incidents analyzed by Kaspersky suggest the attack was conducted by the Russian-speaking RaaS cybercrime Pistachio Tempest or FIN12. And, a Darkside affiliate hit Electrobras and Copel energy companies in Brazil in 2021.”

Malware 85

Malware Data collection Healthcare Cybercrime 85

Security Affairs

JULY 12, 2021

For the third time in the past four months, LinkedIn seems to have experienced another massive data scrape conducted by a malicious actor. Once again, an archive of data collected from hundreds of millions of LinkedIn user profiles surfaced on a hacker forum, where it’s currently being sold for an undisclosed sum.

Social Engineering 139

Social Engineering Data collection Media Passwords 139

Security Affairs

OCTOBER 17, 2023

Authentication data collected by POEMGATE can be used for lateral movement and other malicious activities on the compromised networks. Poseidon is a Linux backdoor that supports a full range of remote computer control tools.

Telecommunications 106

Telecommunications Authentication Data collection Passwords 106

Security Affairs

SEPTEMBER 1, 2023

“In one case, we observed a SapphireStealer sample where the data collected using the previously described process was exfiltrated using the Discord webhook API, a method we previously highlighted here.” ” continues the report.

Malware 104

Malware Data collection Architecture Hacking 104

Security Affairs

DECEMBER 19, 2022

” The analysis of the changes between the versions of the malicious module revealed that threat actors modified it to improve the data collection algorithm and make it work on multiple platforms. . “The code likewise performs a directory listing of the root directory.”

Malware 107

Malware Data collection Software Hacking 107

Centraleyes

APRIL 18, 2024

Documentary Evidence: Tangible and straightforward, documentary evidence encompasses policies, procedures, and documentation related to information security controls. The audit ensures that the organization has implemented a robust ISMS and is committed to managing information security risks effectively.

Risk 52

Risk Penetration Testing Encryption Cybersecurity 52

CyberSecurity Insiders

OCTOBER 19, 2022

The need for open communication about personal health information is why Gartner recommends healthcare organizations develop “strategies for notification, communication and minimizing the amount of data collected and retained.”. Data’s Lifetime Impact. Security Threats.

Healthcare 120

Healthcare Data collection Data privacy Technology 120

Security Affairs

MAY 12, 2021

Most of them relate to safeguarding data from misuse and reassuring that all procedures abide by the active regulations. Data Storage: Evaluates the risks around the vendor’s data storage and data retention capabilities to understand how effective they are in keeping sensitive data safe and secure.

Data collection 84

Data collection Data breaches VPN Risk 84

Security Affairs

AUGUST 28, 2021

. “As a result, our investigation focuses on just 7 days’ worth of data and any players exposed in that short window. This is an enormous amount of data collected from a few small, not well-known mobile games.” However, despite only covering 7 days, the server still contained over 360 million records from players.

Data breaches 123

Data breaches Mobile Data collection Hacking 123

Security Boulevard

MAY 15, 2024

As such, these apps appear to operate in a legal "gray area," but that doesn't mean their data practices are ethical or even follow proper basic information security principles for safeguarding data.

Advertising 52

Advertising Insurance Accountability Data Analyst 52

Security Affairs

MARCH 24, 2021

” According to data collected by RiskIQ , the number of unpatched systems is less than 30,000, Microsoft also announced that 92% of worldwide Exchange IPs are now patched or mitigated. pic.twitter.com/YhgpnMdlOX — Security Response (@msftsecresponse) March 22, 2021. 43% improvement worldwide in the last week.

Data collection 119

Data collection Antivirus Internet Internet 119

Security Affairs

AUGUST 7, 2023

The update will be effective as of July 27, and accepting the ToS users will give Zoom the right to utilize some aspects of customer data for training its AI models. Zoom can use customer information on product usage, telemetry and diagnostic data and similar content or data collected by the company to train its AI.

Artificial Intelligence 95

Artificial Intelligence Data collection Software Marketing 95

Security Affairs

SEPTEMBER 26, 2023

. “The personal health information that was copied was collected from a large network of mostly Ontario health care facilities and providers regarding fertility, pregnancy, newborn and child health care offered between January 2010 and May 2023.”

Data breaches 93

Data breaches Healthcare Ransomware Hacking 93

Security Affairs

DECEMBER 30, 2020

T-Mobile discovered that the attackers had access to the CPNI (Customer Proprietary Network Information). Customer proprietary network information (CPNI) is the data collected by telecommunications companies about a consumer’s telephone calls.

Data breaches 134

Data breaches Mobile Telecommunications Wireless 134

Security Affairs

APRIL 15, 2023

The collected data is sent to the C2 server every two days, but the cycle depends on the remote configuration. The level of data collection depends on the permissions granted to the app using the malicious library.

Data collection 94

Data collection Mobile Malware Education 94