Data privacy, Risk, Security Awareness and Social Engineering

The Business Value of the Social-Engineer Phishing Service

Security Boulevard

JUNE 18, 2021

The post The Business Value of the Social-Engineer Phishing Service appeared first on Security Boulevard. Phishing attacks continue to plague organizations across the globe with great success, but why? Cybercriminals are targeting the human element of organizations. Additionally, they are developing techniques to use an.

Social Engineering

Social Engineering Engineering Phishing Penetration Testing

Sisense Hacked: CISA Warns Customers at Risk

Security Boulevard

APRIL 12, 2024

The post Sisense Hacked: CISA Warns Customers at Risk appeared first on Security Boulevard. A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.”

Risk

Risk Hacking Government Digital transformation

Security Roundup August 2023

BH Consulting

AUGUST 16, 2023

This could include malware that antivirus and security solutions can’t detect; a secure internet connection to prevent tracing; initial access to victim companies’ networks or mailboxes (which is also key to many ransomware infections); effective social engineering content; fraudulent content hosting, and more.

Social Engineering

Social Engineering Cybercrime Data privacy Engineering

The Necessity of Security Best Practices When Implementing Generative AI

Security Boulevard

NOVEMBER 28, 2023

Generative AI can help maintain a competitive advantage, but organizations should be mindful of the security and data privacy challenges of a new deployment. The post The Necessity of Security Best Practices When Implementing Generative AI appeared first on Security Boulevard.

Data privacy

Data privacy Social Engineering Security Awareness Engineering

ADPPA US Privacy Law: Coming Soon in Wake of Roe v. Wade Redo

Security Boulevard

JUNE 27, 2022

But the American Data Privacy and Protection Act wasn’t the only privacy related issue on Capitol Hill last week. The post ADPPA US Privacy Law: Coming Soon in Wake of Roe v. Wade Redo appeared first on Security Boulevard. We could soon have a federal GDPR.

Data privacy

Data privacy Social Engineering Security Awareness Engineering

Security Roundup May 2023

BH Consulting

MAY 23, 2023

Say it again, I double dare you Anyone familiar with phishing and social engineering will know scammers often use psychological tricks to get victims to divulge personal data. Repetition can lead people to over-disclose information, that could then put them at risk of identity theft and cybercrime.

Artificial Intelligence

Artificial Intelligence Identity Theft Social Engineering InfoSec

How can small businesses ensure Cybersecurity?

CyberSecurity Insiders

JUNE 7, 2023

Also, small businesses are vulnerable to malware, brute-force attacks, ransomware, and social attacks and may not survive one incident. The influx of remote working culture has added new challenges and cybersecurity risks for small businesses. A cyber-attack resulting in valuable data loss ultimately triggers regulatory penalties.

Small Business

Small Business Cybersecurity Cyber Attacks Data breaches

Colorado’s new law ups need for privacy awareness training

SC Magazine

JULY 12, 2021

We often hear about security awareness training’s role in maintaining proper cyber hygiene, but what about privacy awareness programs? As a significant portion of privacy incidents happen from human error, training is critical to mitigating privacy risk within an organization,” said Berry.

Education

Education Security Awareness Data privacy Social Engineering

South Korean iPhone Ban: MDM DMZ PDQ

Security Boulevard

APRIL 29, 2024

The post South Korean iPhone Ban: MDM DMZ PDQ appeared first on Security Boulevard. MDM Hindered: Android phones are still OK; this is Samsung’s home, after all.

Social Engineering

Social Engineering Data privacy Engineering IoT

SIM Swappers Try Bribing T-Mobile and Verizon Staff $300

Security Boulevard

APRIL 16, 2024

The post SIM Swappers Try Bribing T-Mobile and Verizon Staff $300 appeared first on Security Boulevard. Not OK: SMS 2FA — Widespread spam targets carrier employees, as scrotes try harder to evade two-factor authentication.

Mobile

Mobile Authentication Social Engineering Wireless

Hackers Intercept USPS Workers' Paychecks in Direct Deposit Scam

SecureWorld News

MAY 22, 2023

It was an old-school use of mirrored websites and social engineering to get USPS employees to enter their information into a fraudulent website. Without the budget for additional technology, or the headcount to investigate and respond to alerts, user awareness training can help users recognize phishing emails and spoofed websites."

Scams

Scams Password Management Passwords Authentication

House Passes Privacy-Preserving Bill, but Biden Blasts it

Security Boulevard

APRIL 18, 2024

It says the bill “threatens national security.” The post House Passes Privacy-Preserving Bill, but Biden Blasts it appeared first on Security Boulevard. Are you a FANFSA fan? The White House isn’t.

Social Engineering

Social Engineering Advertising Data privacy Engineering

FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

Security Boulevard

APRIL 5, 2024

appeared first on Security Boulevard. Fast enough for government work: The Federal Communications Commission is finally minded to do something about decades-old vulnerabilities. The post FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

Government

Government Digital transformation Social Engineering Telecommunications

Watch This? Patch This! LG Fixes Smart TV Vulns

Security Boulevard

APRIL 10, 2024

LG Fixes Smart TV Vulns appeared first on Security Boulevard. 4×CVE=RCE or Merely CE? Update your LG TV now, or let hackers root it. But is Bitdefender overhyping the issue? The post Watch This? Patch This!

Social Engineering

Social Engineering IoT Data privacy Engineering

PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found

Security Boulevard

MARCH 29, 2024

The post PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found appeared first on Security Boulevard. Emergency stop button: The Python Package Index was drowning in malicious code again, so they had to shut down registration for cleanup.

Malware

Malware Digital transformation Social Engineering Data privacy

Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data

Security Boulevard

MARCH 27, 2024

The post Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data appeared first on Security Boulevard. Meta MITM IAAP SSL bump: Zuck ordered “Project Ghostbusters”—with criminal consequences, says class action lawsuit.

Social Engineering

Social Engineering VPN Data privacy Engineering

Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones

Security Boulevard

MARCH 28, 2024

The post Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones appeared first on Security Boulevard. Rethink different: First, fatigue frightened users with multiple modal nighttime notifications. Next, call and pretend to be Apple support.

Accountability

Accountability Social Engineering Authentication Data privacy

GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL

Security Boulevard

FEBRUARY 29, 2024

The post GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL appeared first on Security Boulevard. Forking hell: Scrotebots clone thousands of projects, injecting malware millions of times.

Software

Software Malware Social Engineering Data privacy

Apple M-Series FAIL: GoFetch Flaw Finds Crypto Keys

Security Boulevard

MARCH 22, 2024

The post Apple M-Series FAIL: GoFetch Flaw Finds Crypto Keys appeared first on Security Boulevard. GoFAIL: Researchers worm their way into broken cache-filling microcode in most Macs and iPads.

Social Engineering

Social Engineering Data privacy Engineering Security Awareness

PRC State Hacking: ‘Chinese Edward Snowden’ Spills I?Soon Secrets in Huge Dump of TTPs

Security Boulevard

FEBRUARY 22, 2024

The post PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs appeared first on Security Boulevard. Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures.

Hacking

Hacking Government Digital transformation Social Engineering

DoD Email Breach: Pentagon Tells Victims 12 Months Late

Security Boulevard

FEBRUARY 16, 2024

The post DoD Email Breach: Pentagon Tells Victims 12 Months Late appeared first on Security Boulevard. 3TB Email FAIL: Personal info of tens of thousands leaks. Microsoft cloud email server was missing a password.

Passwords

Passwords Digital transformation Social Engineering Data privacy

TikTok Ban Incoming — but ByteDance Fights Back

Security Boulevard

MARCH 8, 2024

The post TikTok Ban Incoming — but ByteDance Fights Back appeared first on Security Boulevard. Hilltop BillTok: ByteDance mobilizing addicted user base, as U.S. TikTok ban steamrolls through Capitol Hill after unanimous committee vote.

Mobile

Mobile Social Engineering Spyware Media

‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing

Security Boulevard

FEBRUARY 7, 2024

The post ‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing appeared first on Security Boulevard. PR FAIL: Were 3 million toothbrushes hacked into a botnet? Or does a Fortinet spokeschild have egg on his face?

Hacking

Hacking Social Engineering DDOS Internet

Cheap Video Doorbell Cams: Tools of Stalkers and Thieves

Security Boulevard

MARCH 1, 2024

EKEN IoT FAIL: Amazon, Sears and Shein still sell security swerving stuff. The post Cheap Video Doorbell Cams: Tools of Stalkers and Thieves appeared first on Security Boulevard.

IoT

IoT Social Engineering Internet Internet

Linux Vendors Squawk: PATCH NOW — CVSS 9.8 Bootkit Bug in shim.efi

Security Boulevard

FEBRUARY 8, 2024

Bootkit Bug in shim.efi appeared first on Security Boulevard. Snow joke: A Microsoft researcher found it—and it’s somehow Microsoft’s fault. The post Linux Vendors Squawk: PATCH NOW — CVSS 9.8

Social Engineering

Social Engineering Data privacy Engineering IoT

US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

Security Boulevard

FEBRUARY 27, 2024

appeared first on Security Boulevard. Pay no attention to that man: State Dept. Global Engagement Centre chief James Rubin (pictured) follows the yellow brick road. The post US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

Hacking

Hacking Social Engineering Data privacy Engineering

Telegram Privacy Nightmare: Don’t Opt In to P2PL

Security Boulevard

MARCH 26, 2024

Scary SMS shenanigans: Avoid Telegram’s new “Peer-To-Peer Login” program if you value your privacy or your cellular service. The post Telegram Privacy Nightmare: Don’t Opt In to P2PL appeared first on Security Boulevard.

Social Engineering

Social Engineering Authentication Data privacy Security Awareness

Irony of Ironies: CISA Hacked — ‘by China’

Security Boulevard

MARCH 11, 2024

Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti. The post Irony of Ironies: CISA Hacked — ‘by China’ appeared first on Security Boulevard. Free rides and traffic jams: U.S.

Hacking

Hacking Cybersecurity Social Engineering Data privacy

‘Extremely serious’ — Mercedes-Benz Leaks Data on GitHub

Security Boulevard

JANUARY 30, 2024

The post ‘Extremely serious’ — Mercedes-Benz Leaks Data on GitHub appeared first on Security Boulevard. Oh, Lord: My friends all hack Porsches—I must make amends.

Hacking

Hacking Digital transformation Social Engineering Data privacy

Malicious AdTech Spies on People as NatSec Targets

Security Boulevard

JANUARY 25, 2024

The post Malicious AdTech Spies on People as NatSec Targets appeared first on Security Boulevard. Targeted ads target targets: Patternz and Nuviad enable potentially hostile governments to track individuals by misusing ad bidding.

Government

Government Social Engineering Advertising Data privacy

LockBit Takedown by Brits — Time for ‘Operation Cronos’

Security Boulevard

FEBRUARY 20, 2024

The post LockBit Takedown by Brits — Time for ‘Operation Cronos’ appeared first on Security Boulevard. RaaS nicked: 11-nation army led by UK eliminates ransomware-for-hire scrotes’ servers.

Ransomware

Ransomware Social Engineering Data privacy Engineering

CFO Deepfake Fools Staff — Fakers Steal $26M via Video

Security Boulevard

FEBRUARY 5, 2024

The post CFO Deepfake Fools Staff — Fakers Steal $26M via Video appeared first on Security Boulevard. Bad hoax blood: Spearphish pivots to deepfake Zoom call, leads to swift exit of cash.

Digital transformation

Digital transformation Social Engineering Data privacy Engineering

Facebook’s New Privacy Nightmare: ‘Link History’

Security Boulevard

JANUARY 3, 2024

The post Facebook’s New Privacy Nightmare: ‘Link History’ appeared first on Security Boulevard. How stupid does he think we are? You’ll want to turn off this new app setting.

Social Engineering

Social Engineering Advertising Data privacy Engineering

China Cracks Apple Private Protocol — AirDrop Pwned

Security Boulevard

JANUARY 10, 2024

The post China Cracks Apple Private Protocol — AirDrop Pwned appeared first on Security Boulevard. AirDrop hashing is weaksauce: Chinese citizens using peer-to-peer wireless comms “must be identified.”

Wireless

Wireless Social Engineering Firewall Data privacy

Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy

Security Boulevard

JANUARY 18, 2024

The post Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy appeared first on Security Boulevard. Have I been pwned? Yes, you probably have. Stop reusing passwords, already. Here’s what else you should do.

Passwords

Passwords Social Engineering Data privacy Authentication

FBI Warning: China Will Hack US Infra. (via Router Botnet)

Security Boulevard

FEBRUARY 1, 2024

via Router Botnet) appeared first on Security Boulevard. a/k/a BRONZE SILHOUETTE: FBI head Wray won’t tolerate China’s “real-world threat to our physical safety.” The post FBI Warning: China Will Hack US Infra.

Hacking

Hacking Social Engineering Data privacy Engineering

Russia Hacks Ukraine, Ukraine Hacks Russia — Day#658

Security Boulevard

DECEMBER 13, 2023

The post Russia Hacks Ukraine, Ukraine Hacks Russia — Day#658 appeared first on Security Boulevard. When will it end? Russia takes down Kyivstar cellular system, Ukraine destroys Russian tax system.

Hacking

Hacking Digital transformation Social Engineering Data privacy

Self-Replicating AI Malware is Here? #ComPromptMized

Security Boulevard

MARCH 5, 2024

ComPromptMized appeared first on Security Boulevard. Skrik: Researchers worm themselves into your nightmares. The post Self-Replicating AI Malware is Here?

Malware

Malware Artificial Intelligence Social Engineering Data privacy

Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old

Security Boulevard

JANUARY 2, 2024

The post Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old appeared first on Security Boulevard. What a Mickey Mouse operation: Infostealer scrotes having a field day with unpatched vulnerability.

Social Engineering

Social Engineering Accountability Account Security Data privacy

Meta Sued for Ignoring its Underage Kids Problem (Because Money)

Security Boulevard

NOVEMBER 27, 2023

The post Meta Sued for Ignoring its Underage Kids Problem (Because Money) appeared first on Security Boulevard. Don’t be square: Newly-unsealed COPPA suit says Zuck’s mob knows full well there are loads of users under the age of 13, but did nothing.

Social Engineering

Social Engineering Identity Theft Data privacy Engineering

iPhone/iPad Warning: Update Now to Avoid Zero-Day Pain

Security Boulevard

OCTOBER 6, 2023

The post iPhone/iPad Warning: Update Now to Avoid Zero-Day Pain appeared first on Security Boulevard. Apple’s embarrassing regression: iOS 17.0.3 fixes yet more nasty zero-days (and the overheating bug).

Social Engineering

Social Engineering Data privacy Engineering Security Awareness

TikTok ‘Ban’ — ByteDance CEO and EFF are BFFs

Security Boulevard

MARCH 18, 2024

The post TikTok ‘Ban’ — ByteDance CEO and EFF are BFFs appeared first on Security Boulevard. 7521 momentum builds: Shou Zi Chew plays for time, while Electronic Frontier Foundation says TikTok-kill bill is DOA.

Social Engineering

Social Engineering Spyware Media Data privacy

More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator

Security Boulevard

SEPTEMBER 25, 2023

The post More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator appeared first on Security Boulevard. Apple Scrambled to Fix 3 More CVEs: Egyptian opposition presidential candidate Ahmed Eltantawy targeted “by the government.

Spyware

Spyware Government Social Engineering Data privacy

FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure

Security Boulevard

FEBRUARY 28, 2024

The post FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure appeared first on Security Boulevard. GRU APT28 is back again: Fancy Bear still hacking ubiquitous gear, despite patch availability.

Hacking

Hacking Social Engineering Data privacy Authentication

The Business Value of the Social-Engineer Phishing Service

Sisense Hacked: CISA Warns Customers at Risk

Trending Sources

Security Roundup August 2023

The Necessity of Security Best Practices When Implementing Generative AI

ADPPA US Privacy Law: Coming Soon in Wake of Roe v. Wade Redo

Security Roundup May 2023

How can small businesses ensure Cybersecurity?

Colorado’s new law ups need for privacy awareness training

South Korean iPhone Ban: MDM DMZ PDQ

SIM Swappers Try Bribing T-Mobile and Verizon Staff $300

Hackers Intercept USPS Workers' Paychecks in Direct Deposit Scam

House Passes Privacy-Preserving Bill, but Biden Blasts it

FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

Watch This? Patch This! LG Fixes Smart TV Vulns

PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found

Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data

Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones

GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL

Apple M-Series FAIL: GoFetch Flaw Finds Crypto Keys

PRC State Hacking: ‘Chinese Edward Snowden’ Spills I?Soon Secrets in Huge Dump of TTPs

DoD Email Breach: Pentagon Tells Victims 12 Months Late

TikTok Ban Incoming — but ByteDance Fights Back

‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing

Cheap Video Doorbell Cams: Tools of Stalkers and Thieves

Linux Vendors Squawk: PATCH NOW — CVSS 9.8 Bootkit Bug in shim.efi

US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

Telegram Privacy Nightmare: Don’t Opt In to P2PL

Irony of Ironies: CISA Hacked — ‘by China’

‘Extremely serious’ — Mercedes-Benz Leaks Data on GitHub

Malicious AdTech Spies on People as NatSec Targets

LockBit Takedown by Brits — Time for ‘Operation Cronos’

CFO Deepfake Fools Staff — Fakers Steal $26M via Video

Facebook’s New Privacy Nightmare: ‘Link History’

China Cracks Apple Private Protocol — AirDrop Pwned

Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy

FBI Warning: China Will Hack US Infra. (via Router Botnet)

Russia Hacks Ukraine, Ukraine Hacks Russia — Day#658

Self-Replicating AI Malware is Here? #ComPromptMized

Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old

Meta Sued for Ignoring its Underage Kids Problem (Because Money)

iPhone/iPad Warning: Update Now to Avoid Zero-Day Pain

TikTok ‘Ban’ — ByteDance CEO and EFF are BFFs

More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator

FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure

Stay Connected