Data privacy, Security Awareness and Software

Data Privacy Week 2022: The Security Awareness Canary in the Coalmine

Webroot

JANUARY 24, 2022

As consumers and businesses are becoming increasingly more concerned about their data privacy, understanding how to protect that information becomes vital. This week, the global community is rallying together to raise awareness about online privacy through Data Privacy Week. What is Data Privacy Week?

Data privacy

Data privacy Security Awareness Antivirus Backups

Hackers Attack PowerSchool, Expose K-12 Teacher and Student Data

Security Boulevard

JANUARY 10, 2025

Giant education software provider PowerSchool reported that hackers using compromised credentials access a database and stole student and teacher data in an attack that the company said was not ransomware, though a ransom apparently was paid. Affected K-12 school districts are scrambling to alert parents and staffs.

Education

Education Ransomware Software Data privacy

GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL

Security Boulevard

FEBRUARY 29, 2024

The post GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL appeared first on Security Boulevard. Forking hell: Scrotebots clone thousands of projects, injecting malware millions of times.

Software

Software Malware Social Engineering Data privacy

Patagonia Sued for Using AI-Based Software to Analyze Customer Calls

Security Boulevard

JULY 16, 2024

A class-action lawsuit claims that outdoor clothing retailer Patagonia violated plaintiffs' privacy rights by letting Talkdesk's AI-based call center products record, store, and analyze customer conversations without their knowledge or consent.

Software

Software Retail Data privacy Security Awareness

Survey Surfaces Widespread Mishandling of Sensitive Data

Security Boulevard

AUGUST 20, 2024

Perforce Software today published a survey of 250 IT professionals that finds the amount of sensitive data residing in non-production environments is rising as organizations embrace artificial intelligence (AI) and digital business transformation.

Artificial Intelligence

Artificial Intelligence Software Digital transformation Data privacy

Top 20 Cybersecurity Companies You Need to Know in 2025

eSecurity Planet

MARCH 21, 2025

Our selections are backed by expert analysis, user reviews, independent security tests, and real-world performance, ensuring you have the best defense against todays ever-changing threats. Fortinet: Best for Network Security Perimeter Protection 15 $74.33 Cisco: Best for Integrated Network Security 16 $242.51 Visit Tenable 9.

Cybersecurity

Cybersecurity Firewall Marketing Encryption

Magnificent Seven: Celebrating Great Women in Cybersecurity and Data Protection

BH Consulting

MARCH 8, 2024

This meant, de facto , the Irish privacy regulator was responsible for overseeing the likes of Facebook/Meta, Twitter/X and many others. She also held the role at a time when the EU General Data Protection Regulation came into force, ushering in an increased public awareness of data privacy. presidents.

Cybersecurity

Cybersecurity Social Engineering Healthcare Data privacy

Avast Hit With $16.5 Million Fine for Selling Customer Data

Security Boulevard

FEBRUARY 23, 2024

Avast Software will pay a $16.5 million fine to settle a federal complaint accusing the antivirus vendor of collecting users’ browsing data over six years and selling it to advertising companies without their consent. Million Fine for Selling Customer Data appeared first on Security Boulevard.

Antivirus

Antivirus Advertising Software Data privacy

Cybercrime Year in Review: 2013

SiteLock

AUGUST 27, 2021

And if you think that simply relying on antivirus software will get you through safely, there’s some more bad news. Some reports have suggested that today’s antivirus software can detect very few of the most dangerous types of malware – the stuff you really want to avoid. And the New York Times can testify to that.

Cybercrime

Cybercrime Small Business Antivirus Malware

Top Cybersecurity Companies for 2021

eSecurity Planet

AUGUST 13, 2021

They recently received the ONLY "Customer's Choice" rating in Gartner's "Voice of the Customer” Security Awareness Computer-Based Training report. Proofpoint offers email protection, network sandboxing, security awareness training, cloud protection and more. Learn more about Check Point. Proofpoint. Visit website.

Cybersecurity

Cybersecurity Firewall Marketing Encryption

8 Cyber Predictions for 2025: A CSO’s Perspective

Security Boulevard

JANUARY 9, 2025

Protecting sensitive data and critical systems from insider threats will require a unified, zero trust framework, bolstered by AI-powered threat detection and inline TLS/SSL inspection. From prediction to action: Strengthening your security in 2025These predictions for 2025 will demand a heightened focus on proactive defense strategies.

Social Engineering

Social Engineering Architecture Phishing Risk

Scammers Rush In to Exploit CrowdStrike Chaos

Security Boulevard

JULY 22, 2024

Scammers are rushing into exploit the chaos created when an software update by CrowdStrike went awry, knocking out 8.5 The post Scammers Rush In to Exploit CrowdStrike Chaos appeared first on Security Boulevard. million Windows devices and creating the opportunity for bad actors to run phishing and other malicious campaigns.

Phishing

Phishing Software Data privacy Scams

How can small businesses ensure Cybersecurity?

CyberSecurity Insiders

JUNE 7, 2023

In addition, few companies can provide access to password management software or VPNs to protect their internet connection and credentials and maintain security on rogue Wi-Fi networks. Statistics also reveal that only 17% of small businesses encrypt their data, which is alarming.

Small Business

Small Business Cybersecurity Cyber Attacks Data breaches

‘Polyfill’ Supply Chain Threat: 4x Worse Than We Thought

Security Boulevard

JULY 5, 2024

The post ‘Polyfill’ Supply Chain Threat: 4x Worse Than We Thought appeared first on Security Boulevard. Spackle attack: Chinese company takes over widely used free web service—almost 400,000 websites at risk.

Risk

Risk Social Engineering Data privacy Software

‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE

Security Boulevard

JULY 2, 2024

The post ‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE appeared first on Security Boulevard. Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug.

Risk

Risk Social Engineering Data privacy Software

WordPress Plugin Supply Chain Attack Gets Worse

Security Boulevard

JUNE 26, 2024

The post WordPress Plugin Supply Chain Attack Gets Worse appeared first on Security Boulevard. 30,000 websites at risk: Check yours ASAP! 800 Million Ostriches Can’t Be Wrong.)

Risk

Risk Social Engineering Data privacy Software

What Is a SaaS Security Checklist? Tips & Free Template

eSecurity Planet

APRIL 9, 2024

Take a closer look at the SaaS vendor evaluation checklist below: IT Infrastructure Analysis This phase underscores the value of investing in IT infrastructure security. Cloud infrastructure security should specifically handle layers such as physical assets, applications, networks, and data for complete protection against security threats.

Risk

Risk Threat Detection Data breaches Encryption

Integrating Payroll Systems: Risks, Challenges, and Solutions

Security Boulevard

MARCH 5, 2025

Discussing the challenges, risks and solutions for businesses integrating payroll software and systems for seamless efficiency. The post Integrating Payroll Systems: Risks, Challenges, and Solutions appeared first on Security Boulevard.

Risk

Risk Software Data privacy Security Awareness

Was the Ticketmaster Leak Snowflake’s Fault?

Security Boulevard

JUNE 4, 2024

appeared first on Security Boulevard. Snowflake, Inc. says NO, threatening legal action against those who say it was. But reports are coming in of several more massive leaks from other Snowflake customers. The post Was the Ticketmaster Leak Snowflake’s Fault?

Digital transformation

Digital transformation Social Engineering Data privacy Engineering

AT&T Says 110M Customers’ Data Leaked — Yep, it’s Snowflake Again

Security Boulevard

JULY 12, 2024

Should’ve used MFA: $T loses yet more customer data—this time, from almost all of them. The post AT&T Says 110M Customers’ Data Leaked — Yep, it’s Snowflake Again appeared first on Security Boulevard.

Social Engineering

Social Engineering Authentication Data privacy Engineering

PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found

Security Boulevard

MARCH 29, 2024

The post PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found appeared first on Security Boulevard. Emergency stop button: The Python Package Index was drowning in malicious code again, so they had to shut down registration for cleanup.

Malware

Malware Digital transformation Social Engineering Data privacy

GitLab ‘Perfect 10’ Bug Gets a CISA Warning: PATCH NOW

Security Boulevard

MAY 3, 2024

Cybersecurity and Infrastructure Security Agency warns GitLab users of a 100-day-old, maximum severity vulnerability. The post GitLab ‘Perfect 10’ Bug Gets a CISA Warning: PATCH NOW appeared first on Security Boulevard. Password reset FAILURE: The U.S.

Passwords

Passwords Cybersecurity Data privacy Software

Microsoft Fixes Four 0-Days — One Exploited for SIX YEARS

Security Boulevard

SEPTEMBER 11, 2024

This month Redmond fixes 79 security flaws in Windows and other products The post Microsoft Fixes Four 0-Days — One Exploited for SIX YEARS appeared first on Security Boulevard. Week B: Bugs begone!

Social Engineering

Social Engineering Data privacy Engineering Security Awareness

‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing

Security Boulevard

FEBRUARY 7, 2024

The post ‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing appeared first on Security Boulevard. PR FAIL: Were 3 million toothbrushes hacked into a botnet? Or does a Fortinet spokeschild have egg on his face?

Hacking

Hacking Social Engineering DDOS Internet

China Cyberwar Coming? Versa’s Vice: Volt Typhoon’s Target

Security Boulevard

AUGUST 28, 2024

Versa’s Vice: Volt Typhoon’s Target appeared first on Security Boulevard. Xi whiz: Versa Networks criticized for swerving the blame. The post China Cyberwar Coming?

Cyber Attacks

Cyber Attacks Data privacy Security Awareness Technology

Sisense Hacked: CISA Warns Customers at Risk

Security Boulevard

APRIL 12, 2024

The post Sisense Hacked: CISA Warns Customers at Risk appeared first on Security Boulevard. A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.”

Risk

Risk Hacking Government Digital transformation

FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

Security Boulevard

APRIL 5, 2024

appeared first on Security Boulevard. Fast enough for government work: The Federal Communications Commission is finally minded to do something about decades-old vulnerabilities. The post FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

Government

Government Digital transformation Telecommunications Social Engineering

Malicious AdTech Spies on People as NatSec Targets

Security Boulevard

JANUARY 25, 2024

The post Malicious AdTech Spies on People as NatSec Targets appeared first on Security Boulevard. Targeted ads target targets: Patternz and Nuviad enable potentially hostile governments to track individuals by misusing ad bidding.

Government

Government Social Engineering Advertising Data privacy

Linux Vendors Squawk: PATCH NOW — CVSS 9.8 Bootkit Bug in shim.efi

Security Boulevard

FEBRUARY 8, 2024

Bootkit Bug in shim.efi appeared first on Security Boulevard. Snow joke: A Microsoft researcher found it—and it’s somehow Microsoft’s fault. The post Linux Vendors Squawk: PATCH NOW — CVSS 9.8

Social Engineering

Social Engineering Data privacy IoT Engineering

Irony of Ironies: CISA Hacked — ‘by China’

Security Boulevard

MARCH 11, 2024

Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti. The post Irony of Ironies: CISA Hacked — ‘by China’ appeared first on Security Boulevard. Free rides and traffic jams: U.S.

Hacking

Hacking Cybersecurity Social Engineering Data privacy

Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data

Security Boulevard

MARCH 27, 2024

The post Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data appeared first on Security Boulevard. Meta MITM IAAP SSL bump: Zuck ordered “Project Ghostbusters”—with criminal consequences, says class action lawsuit.

Social Engineering

Social Engineering VPN Data privacy Engineering

Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old

Security Boulevard

JANUARY 2, 2024

The post Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old appeared first on Security Boulevard. What a Mickey Mouse operation: Infostealer scrotes having a field day with unpatched vulnerability.

Social Engineering

Social Engineering Accountability Account Security Data privacy

PRC State Hacking: ‘Chinese Edward Snowden’ Spills I?Soon Secrets in Huge Dump of TTPs

Security Boulevard

FEBRUARY 22, 2024

The post PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs appeared first on Security Boulevard. Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures.

Hacking

Hacking Government Digital transformation Social Engineering

‘Blast-RADIUS’ Critical Bug Blows Up IT Vacation Plans

Security Boulevard

JULY 10, 2024

The post ‘Blast-RADIUS’ Critical Bug Blows Up IT Vacation Plans appeared first on Security Boulevard. MD5 MITM Muddle: Ancient, widely used protocol has CVSS 9.0 vulnerability.

Social Engineering

Social Engineering Data privacy IoT Security Awareness

‘Extremely serious’ — Mercedes-Benz Leaks Data on GitHub

Security Boulevard

JANUARY 30, 2024

The post ‘Extremely serious’ — Mercedes-Benz Leaks Data on GitHub appeared first on Security Boulevard. Oh, Lord: My friends all hack Porsches—I must make amends.

Hacking

Hacking Digital transformation Social Engineering Data privacy

China Cracks Apple Private Protocol — AirDrop Pwned

Security Boulevard

JANUARY 10, 2024

The post China Cracks Apple Private Protocol — AirDrop Pwned appeared first on Security Boulevard. AirDrop hashing is weaksauce: Chinese citizens using peer-to-peer wireless comms “must be identified.”

Wireless

Wireless Social Engineering Firewall Data privacy

August Patch Pileup: Microsoft’s Zero-Day Doozy Dump

Security Boulevard

AUGUST 14, 2024

The post August Patch Pileup: Microsoft’s Zero-Day Doozy Dump appeared first on Security Boulevard. See These CVEs: Patch Tuesday—ten zero-days, seven Critical vulns, zero time to waste.

Social Engineering

Social Engineering Data privacy Engineering IoT

Remote Workforce Monitoring Brings Up Privacy Concerns

Security Boulevard

JULY 6, 2021

Those initiatives come laden with thorny privacy concerns, legal landmines and, more than likely, stiff resistance.

Technology

Technology Data privacy Security Awareness Software

iPhone/iPad Warning: Update Now to Avoid Zero-Day Pain

Security Boulevard

OCTOBER 6, 2023

The post iPhone/iPad Warning: Update Now to Avoid Zero-Day Pain appeared first on Security Boulevard. Apple’s embarrassing regression: iOS 17.0.3 fixes yet more nasty zero-days (and the overheating bug).

Social Engineering

Social Engineering Data privacy Engineering Security Awareness

WTH? DPRK WFH Ransomware Redux: 3rd Person Charged

Security Boulevard

AUGUST 13, 2024

DPRK WFH Ransomware Redux: 3rd Person Charged appeared first on Security Boulevard. North Korean army of remote IT workers enabled by Matthew Isaac Knoot, alleges DoJ. The post WTH?

Ransomware

Ransomware Social Engineering Data privacy Engineering

Apple M-Series FAIL: GoFetch Flaw Finds Crypto Keys

Security Boulevard

MARCH 22, 2024

The post Apple M-Series FAIL: GoFetch Flaw Finds Crypto Keys appeared first on Security Boulevard. GoFAIL: Researchers worm their way into broken cache-filling microcode in most Macs and iPads.

Social Engineering

Social Engineering Data privacy Engineering Security Awareness

Cheap Video Doorbell Cams: Tools of Stalkers and Thieves

Security Boulevard

MARCH 1, 2024

EKEN IoT FAIL: Amazon, Sears and Shein still sell security swerving stuff. The post Cheap Video Doorbell Cams: Tools of Stalkers and Thieves appeared first on Security Boulevard.

IoT

IoT Social Engineering Internet Internet

US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

Security Boulevard

FEBRUARY 27, 2024

appeared first on Security Boulevard. Pay no attention to that man: State Dept. Global Engagement Centre chief James Rubin (pictured) follows the yellow brick road. The post US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

Hacking

Hacking Social Engineering Data privacy Engineering

Confronting the SaaS Data Protection and Security Crisis

Security Boulevard

JANUARY 31, 2024

For all the benefits that SaaS provides, data protection and security is most often found wanting. The post Confronting the SaaS Data Protection and Security Crisis appeared first on Security Boulevard.

Backups

Backups Data privacy Security Awareness Software

Data Privacy Week 2022: The Security Awareness Canary in the Coalmine

Hackers Attack PowerSchool, Expose K-12 Teacher and Student Data

Trending Sources

GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL

Patagonia Sued for Using AI-Based Software to Analyze Customer Calls

Survey Surfaces Widespread Mishandling of Sensitive Data

Top 20 Cybersecurity Companies You Need to Know in 2025

Magnificent Seven: Celebrating Great Women in Cybersecurity and Data Protection

Avast Hit With $16.5 Million Fine for Selling Customer Data

Cybercrime Year in Review: 2013

Top Cybersecurity Companies for 2021

8 Cyber Predictions for 2025: A CSO’s Perspective

Scammers Rush In to Exploit CrowdStrike Chaos

How can small businesses ensure Cybersecurity?

‘Polyfill’ Supply Chain Threat: 4x Worse Than We Thought

‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE

WordPress Plugin Supply Chain Attack Gets Worse

What Is a SaaS Security Checklist? Tips & Free Template

Integrating Payroll Systems: Risks, Challenges, and Solutions

Was the Ticketmaster Leak Snowflake’s Fault?

AT&T Says 110M Customers’ Data Leaked — Yep, it’s Snowflake Again

PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found

GitLab ‘Perfect 10’ Bug Gets a CISA Warning: PATCH NOW

Microsoft Fixes Four 0-Days — One Exploited for SIX YEARS

‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing

China Cyberwar Coming? Versa’s Vice: Volt Typhoon’s Target

Sisense Hacked: CISA Warns Customers at Risk

FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

Malicious AdTech Spies on People as NatSec Targets

Linux Vendors Squawk: PATCH NOW — CVSS 9.8 Bootkit Bug in shim.efi

Irony of Ironies: CISA Hacked — ‘by China’

Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data

Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old

PRC State Hacking: ‘Chinese Edward Snowden’ Spills I?Soon Secrets in Huge Dump of TTPs

‘Blast-RADIUS’ Critical Bug Blows Up IT Vacation Plans

‘Extremely serious’ — Mercedes-Benz Leaks Data on GitHub

China Cracks Apple Private Protocol — AirDrop Pwned

August Patch Pileup: Microsoft’s Zero-Day Doozy Dump

Remote Workforce Monitoring Brings Up Privacy Concerns

iPhone/iPad Warning: Update Now to Avoid Zero-Day Pain

WTH? DPRK WFH Ransomware Redux: 3rd Person Charged

Apple M-Series FAIL: GoFetch Flaw Finds Crypto Keys

Cheap Video Doorbell Cams: Tools of Stalkers and Thieves

US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

Confronting the SaaS Data Protection and Security Crisis

Stay Connected