Presentation, Risk and Technology - Cyber Security Informer

The Legal Risks of Security Research

Schneier on Security

OCTOBER 30, 2020

Sunoo Park and Kendra Albert have published “ A Researcher’s Guide to Some Legal Risks of Security Research.” Our Guide gives the most comprehensive presentation to date of this landscape of legal risks, with an eye to both legal and technical nuance.

Risk

Risk Technology Hacking

AI Risks

Schneier on Security

OCTOBER 9, 2023

Reading the headlines, one would hope that the rapid gains in AI technology have also brought forth a unifying realization of the risks—and the steps we need to take to mitigate them. Some are concerned about far-future risks that sound like science fiction. AI could destroy humanity or pose a risk on par with nukes.

Risk

Risk Artificial Intelligence Technology Surveillance

Chinese-Made LiDAR Systems a National Security Risk, Think Tank Says

Security Boulevard

DECEMBER 4, 2024

China's growing presence in the global market for LiDAR, a remote sensing technology widely used in defense and commercial system, presents a national security risk for the United States, which already is dealing with intrusions into critical infrastructure networks by China-backed threat groups, according to a reporte.

Risk

Risk Marketing Technology Malware

Policy vs Technology

Schneier on Security

FEBRUARY 21, 2020

I teach cybersecurity policy and technology at the Harvard Kennedy School of Government. My most recent two books, Data and Goliath -- about surveillance -- and Click Here to Kill Everybody -- about IoT security -- are really about the policy implications of technology. Technology is inherently future focused.

Technology

Technology Encryption Surveillance Government

Massive Oracle Cloud Breach: 6M Records Exposed, 140k+ Tenants Risked

eSecurity Planet

MARCH 24, 2025

The fact that the affected subdomain was captured on the Wayback Machine in February 2025 further points to the longstanding vulnerability present in legacy Oracle systems. Beyond mass data exposure, there are heightened risks of credential compromise, corporate espionage, and potential extortion. This incident reinforces that message.

Risk

Risk Passwords Hacking Encryption

Why Businesses Must Address Risks of Quantum Computing NOW Rather Than Wait Until Problems Arrive

Joseph Steinberg

JULY 20, 2022

There is little doubt that quantum computing will ultimately undermine the security of most of today’s encryption systems , and, thereby, render vulnerable to exposure nearly every piece of data that is presently protected through the use of encryption. Clearly, there is a need to act in advance – and acting takes time.

Risk

Risk Encryption Government Backups

10 Personal Finance Lessons for Technology Professionals

Troy Hunt

DECEMBER 30, 2018

So here it is - 10 Personal Financial Lessons for Technology Professionals. For example, the ICT industry (Information, Communication, Technology) was the 5th highest paying with an average salary of $104,874 (dollars are Aussie, take off about 30% for USD). Intro: This Industry Rocks! Banking is below that. Medical even lower.

Technology

Technology Education Marketing Insurance

Reducing the Crushing Burden of Cybersecurity, Privacy Laws in the UK

SecureWorld News

NOVEMBER 17, 2024

The interplay of domestic and international regulations presents significant challenges for organizations, demanding significant investments in technology, personnel, and processes. This can lead to increased compliance costs, operational challenges, and potential reputational risks. of the UK's business population, 5.5

Cybersecurity

Cybersecurity Risk Healthcare Technology

How threat actors can use generative artificial intelligence?

Security Affairs

DECEMBER 1, 2024

The increasing sophistication of these technologies has made it harder than ever to distinguish real content from fake. A study by the Massachusetts Institute of Technology (MIT) presented in 2019 revealed that deepfakes generated by AI could deceive humans up to 60% of the time. As the technology evolves, so will its misuse.

Artificial Intelligence

Artificial Intelligence Phishing Media Cyber threats

GUEST ESSAY: Where we stand on mitigating software risks associated with fly-by-wire jetliners

The Last Watchdog

AUGUST 29, 2023

Here’s what you should know about the risks, what aviation is doing to address those risks, and how to overcome them. It is difficult to deny that cyberthreats are a risk to planes. Risks delineated Still, there have been many other incidents since. There was another warning from the U.S.

Software

Software Risk Artificial Intelligence Cyber Attacks

SEC Fines Four Companies $7M for Misleading Cybersecurity Disclosures

SecureWorld News

OCTOBER 23, 2024

Check Point Software Technologies Ltd., The SEC charged the companies with "materially misleading disclosures regarding cybersecurity risks and intrusions." The SEC further noted that Unisys lacked proper internal controls to ensure accurate and timely reporting of such high-risk incidents. Check Point Software Technologies Ltd.

Cybersecurity

Cybersecurity Risk Hacking Software

Threat Model Thursday: Technology Consumers

Adam Shostack

JANUARY 2, 2025

The author critiques 'anticipatory data practices', a collection of techniques that include my own work, as presented to civil society activists. First, normal people don't "work on" technology the way technologists do. They're working on living their lives, and hoping technology helps.

Technology

Technology Surveillance Risk

The Risk of Weak Online Banking Passwords

Krebs on Security

AUGUST 5, 2019

Alex Holden is founder and chief technology officer of Hold Security , a Milwaukee-based security consultancy. “The way it works today, you the aggregator or app stores the credentials encrypted and presents them to the bank. Only after verifying those exact amounts will the account-linking request be granted.

Banking

Banking Passwords Risk Accountability

2025 – The International Year of Quantum Science and Technology

Security Boulevard

APRIL 29, 2025

2025 The International Year of Quantum Science and Technology divya Tue, 04/29/2025 - 07:48 It is no surprise that the United Nations declared 2025 as the International Year of Quantum Science and Technology (IYQ). With Harvest Now, Decrypt Later attacks already putting long life data at risk, its vital to be proactive.

Technology

Technology Digital transformation Encryption Marketing

2025 – The International Year of Quantum Science and Technology

Thales Cloud Protection & Licensing

APRIL 29, 2025

2025 The International Year of Quantum Science and Technology divya Tue, 04/29/2025 - 07:48 It is no surprise that the United Nations declared 2025 as the International Year of Quantum Science and Technology (IYQ). With Harvest Now, Decrypt Later attacks already putting long life data at risk, its vital to be proactive.

Technology

Technology Digital transformation Encryption Marketing

What are the key Threats to Global National Security?

IT Security Guru

NOVEMBER 1, 2024

As technology advances, so do the methods and motivations of those who seek to disrupt global stability. The risk posed by these actors continues to grow as nations rely increasingly on interconnected digital infrastructure. In today’s interconnected world, national security concerns have evolved beyond traditional military threats.

Technology

Technology Cyber Attacks Government Social Engineering

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Affairs

DECEMBER 5, 2024

SOC analysts, vital to cybersecurity, face burnout due to exhausting workloads, risking their well-being and the effectiveness of organizational defenses. As such, analysts are hit with a deluge of low-quality alerts, increasing the risk of missing genuine threats. But it doesn’t have to be this way.

Artificial Intelligence

Artificial Intelligence Data collection Cybersecurity Risk

GUEST ESSAY: Privacy risks introduced by the ‘metaverse’ — and how to combat them

The Last Watchdog

OCTOBER 10, 2022

As digital technologies become more immersive and tightly integrated with our daily lives, so too do the corresponding intrusive attacks on user privacy. In a follow-up work, called “ MetaGuard ,” we present a promising solution to our VR data privacy woes. Related: The case for regulating facial recognition.

Risk

Risk Data privacy Data collection Technology

Innovating to Secure Software Supply Chains: Veracode Acquires Phylum, Inc. Technology for Enhanced Software Composition Analysis

Veracode Security

JANUARY 6, 2025

The rise of emerging open-source threats presents a growing risk to organizations as attackers increasingly exploit vulnerabilities in widely used libraries, frameworks, and tools. technology to advance our capabilities in securing software supply chains.

Software

Software Technology Marketing Risk

Is Your Chip Card Secure? Much Depends on Where You Bank

Krebs on Security

JULY 30, 2020

based merchants suggest thieves are exploiting weaknesses in how certain financial institutions have implemented the technology to sidestep key chip card security features and effectively create usable, counterfeit cards. Newer, chip-based cards employ a technology known as EMV that encrypts the account data stored in the chip.

Banking

Banking Malware Encryption Accountability

GUEST ESSAY: Ponemon study warns: AI-enhanced deepfake attacks taking aim at senior execs

The Last Watchdog

APRIL 22, 2025

security professionals, highlighting a few worrisome findings: Deepfake risks increasingly target vulnerable board members and executives. As AI technology advances, attackers are shifting their focus from technical exploits to human emotions using deeply personal and well-orchestrated social engineering tactics.

Authentication

Authentication Social Engineering Technology Media

News Alert: INE Security outlines top 5 training priorities emerging from RSAC 2025

The Last Watchdog

MAY 13, 2025

AI Risk Management Becomes Business-Critical AI security solutions dominated RSAC this year, signaling that as organizations adopt advanced response technologies, comprehensive training must keep pace. This gap highlights a growing disconnect between perceived and actual risk in cloud deployments.

Architecture

Architecture Risk Cybersecurity Cyber Attacks

2024 Paris Olympics Present Podium-Worthy Cybersecurity Challenges

SecureWorld News

JULY 17, 2024

The event not only showcases athletic prowess but also presents a significant challenge for cybersecurity professionals. The Olympics are a prime target for cyberattacks due to their high profile, the involvement of numerous stakeholders, and the extensive use of digital technologies.

Cybersecurity

Cybersecurity Phishing Mobile Media

Human by Default: The New Imperative in Trust and Technology

Jane Frankland

MARCH 27, 2024

And I can’t help but be concerned that technology, especially advancements in artificial intelligence, is not just reshaping our world; it’s actually reshaping our identity and the fabric of trust that binds us. This has led to a new imperative in trust and technology – being human by default.

Technology

Technology Artificial Intelligence Authentication Scams

News alert: Wultra secures €3M funding to help financial firms mitigate coming quantum threats

The Last Watchdog

JANUARY 15, 2025

15, 2025, CyberNewswire — Quantum computing is set to revolutionize technology, but it also presents a significant security risk for financial institutions. “Wultra has cutting-edge technology that solves the nightmare of every banker in the world,” says Martin Drdul, co-founder of Tensor Ventures.

Banking

Banking Authentication Technology Marketing

News alert: Aembit announces speakers for NHIcon event, highlighting non-human identity security

The Last Watchdog

JANUARY 15, 2025

NHIcon 2025 is co-presented by Aembit and Veza , alongside industry partners Identity Defined Security Alliance and Cloud Security Alliance. Traditional identity management practices and tools often fail to provide adequate visibility and control, leaving critical security gaps that elevate breach risk. Silver Spring, MD, Jan.

Accountability

Accountability Software Risk Media

ISACA impressions: AI, risk and resilience feature at the 2025 conference

BH Consulting

APRIL 16, 2025

She clearly emphasised that although retail, finance and operational technologies are rapidly adopting AI, human expertise remains irreplaceable. Dr. Ng emphasised the balancing act between innovation and risk. Cloud calls for cooperation in a changed risk landscape Has computing really changed with the cloud?

Risk

Risk Government Ransomware Retail

Understanding the U.S. Cyber Trust Mark: A New Era for IoT Security

SecureWorld News

JANUARY 8, 2025

From baby monitors to home security systems, these IoT products have become integral to daily life, yet they also present significant cybersecurity risks. National Institute of Standards and Technology (NIST) and certified by accredited labs.

IoT

IoT Manufacturing Government Cybersecurity

Navigating Cybersecurity Risks in the Age of OT-IT Convergence

SecureWorld News

SEPTEMBER 19, 2024

No matter where you look, today, technology plays a central and ever-increasing role in our lives. Whether that's in education, government, business, or industry, technology is omnipresent. It automates and orchestrates and helps drive speed and efficiency.

Risk

Risk IoT Cybersecurity Technology

Cybersecurity Governance: The Road Ahead in an Era of Constant Evolution

SecureWorld News

FEBRUARY 17, 2025

From its early days, where security was an afterthought to business operations, to the present, where it has become a board-level discussion, governance has had to adapt to an ever-evolving digital landscape. This led to a reactive approach where organizations were more focused on regulatory adherence than on actual security risk management.

Government

Government Cybersecurity Risk CISO

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Joseph Steinberg

JUNE 10, 2022

Many of Gillis’s comments echoed those that I have heard in recent months from CISOs and others within the cybersecurity industry who witness developments from various vantage points quite different from those of a vendor of cybersecurity technologies. Sampling No Longer Works.

Cybersecurity

Cybersecurity Artificial Intelligence CISO Wireless

Why is ‘Juice Jacking’ Suddenly Back in the News?

Krebs on Security

APRIL 14, 2023

Instead, users are presented with a prompt asking if they wish to trust a connected computer before any data transfer can take place. On the other hand, the technology needed to conduct a sneaky juice jacking attack has become far more miniaturized, accessible and cheap. “Also, you can now buy all this stuff over the counter. .

Mobile

Mobile Software Backups Technology

News alert: 360 Privacy secures $36M to deliver turnkey digital executive protection platform

The Last Watchdog

MARCH 11, 2025

11, 2025 360 Privacy , a leading digital executive protection platform, today announced that it has secured a $36 million growth equity investment from FTV Capital , a sector-focused growth equity firm with a successful track record of investing across the enterprise technology landscape. Nashville, TN Mar.

B2C

B2C Technology B2B Identity Theft

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

Today, there are two major types of common CMS platforms: •The older “traditional” or “monolithic” CMS platforms include a content repository (usually a multimedia database), the administrative console (where content is added and categorized), the presentation system (which makes nice-looking pages), and the search engine. Gierlinger.

Data breaches

Data breaches Encryption Mobile Technology

Story of the Year: global IT outages and supply chain attacks

SecureList

DECEMBER 9, 2024

This incident serves as a stark reminder of the critical risks posed by global IT disruptions and supply chain weaknesses. Kaspersky presented detailed technical analysis of this case in three parts. This case underscores the serious risk that social engineering and supply chain attacks pose to open-source projects.

Internet

Internet Internet Risk Social Engineering

Layoffs in Responsible AI Teams

Adam Shostack

JANUARY 2, 2025

My first day on the job included an all-hands, and I saw GeorgeSt present how many bugs the Secure Windows Initiative had managed through the Vista process.) That same article characterizes the work as the team has been working to identify risks posed by Microsofts adoption of OpenAIs technology throughout its suite of products.

Architecture

Architecture Accountability Software Risk

Best Practices Q&A: Guidance about what directors need to hear from CISOs — from a board member

The Last Watchdog

APRIL 8, 2024

She serves on the board of several technology companies and also happens to be steeped in cyber risk governance. Thus, presenting a sky-is-falling scenario to justify a fatter security budget, “does not resonate at the board level,” she said in her talk. Pigueros: Compliance is not going to fix all the security risks.

CISO

CISO Risk Cybersecurity Insurance

G7 Cyber Expert Group Warns of Quantum Computing Risks in Finance

SecureWorld News

SEPTEMBER 25, 2024

Department of the Treasury and the Bank of England, issued a statement addressing the cybersecurity risks posed by quantum computing. Organizations will increasingly rely on these experts to guide them through adopting new standards and technologies to stay secure. Today, the G7 Cyber Expert Group (CEG), chaired by the U.S.

Risk

Risk Encryption Technology Government

News alert: Seventh Sense unveils a revolutionary privacy solution — face-based PKI and ‘eID’

The Last Watchdog

SEPTEMBER 10, 2024

This cutting-edge innovation combines Post-Quantum Cryptography (PQC)* — designed to withstand the security threats posed by future quantum computing—with the trusted SSL technology that secures websites worldwide. Unlike other solutions available in the market, the QR codes generated do not contain any biometric data.

Computers and Electronics

Computers and Electronics Encryption Government Authentication

Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps

Security Boulevard

NOVEMBER 22, 2024

Don’t miss OWASP’s update to its “Top 10 Risks for LLMs” list. OWASP — the Open Worldwide Application Security Project — released its first “Top 10 Risks for LLMs” last year. Meanwhile, procurement and risk managers can use the list when evaluating software vendors.

Cyber Risk

Cyber Risk Risk Artificial Intelligence Cybersecurity

Shifting from Business Continuity to Continuous Business in Cyber

Jane Frankland

OCTOBER 25, 2024

As ITDMs, CISOs and cyber risk owners this is our dream scenario, and he got me thinking. It’s a subtle shift in focus, and requires a fundamental change in how we, as ITDMs, CISOs and cyber risk owners view and action resilience—not as a one-time project, but as an ongoing programme that provides strategic advantage.

Cyber Risk

Cyber Risk CISO Cyber threats Risk

News alert: SpyCloud operationalizes darknet data, pioneers shift to holistic identity threat protection

The Last Watchdog

FEBRUARY 4, 2025

This innovative approach empowers security teams to proactively protect against previously unseen risks, including the darknet exposures of identity and authentication data stolen about employees, consumers, and suppliers that have been beyond their visibility to date.

Cybercrime

Cybercrime Accountability Phishing Malware

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

The Last Watchdog

JANUARY 27, 2022

Underlying all of this optimism, however, is the ever-present threat of cyberattack. And with technology playing a huge part in simplifying and enabling integration activities between two distinct organizations, it is these very systems that attackers are looking to exploit. They can be divided into two categories: Pre-Close Risks.

Marketing

Marketing Data privacy Risk Accountability

Securing Success: The Crucial Role of a Cybersecurity Specialist in a Growing Business

Joseph Steinberg

JANUARY 18, 2024

Securing Success: The Crucial Role of a Cybersecurity Specialist in a Growing Business Human society is increasingly dependent on computer systems and the data housed and utilized within IT (information technology) infrastructure. In none of the aforementioned three cases would any rational person try to “wing it” alone.

Cybersecurity

Cybersecurity Computers and Electronics Cyber Risk Risk

The Legal Risks of Security Research

AI Risks

Trending Sources

Chinese-Made LiDAR Systems a National Security Risk, Think Tank Says

Policy vs Technology

Massive Oracle Cloud Breach: 6M Records Exposed, 140k+ Tenants Risked

Why Businesses Must Address Risks of Quantum Computing NOW Rather Than Wait Until Problems Arrive

10 Personal Finance Lessons for Technology Professionals

Reducing the Crushing Burden of Cybersecurity, Privacy Laws in the UK

How threat actors can use generative artificial intelligence?

GUEST ESSAY: Where we stand on mitigating software risks associated with fly-by-wire jetliners

SEC Fines Four Companies $7M for Misleading Cybersecurity Disclosures

Threat Model Thursday: Technology Consumers

The Risk of Weak Online Banking Passwords

2025 – The International Year of Quantum Science and Technology

2025 – The International Year of Quantum Science and Technology

What are the key Threats to Global National Security?

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

GUEST ESSAY: Privacy risks introduced by the ‘metaverse’ — and how to combat them

Innovating to Secure Software Supply Chains: Veracode Acquires Phylum, Inc. Technology for Enhanced Software Composition Analysis

Is Your Chip Card Secure? Much Depends on Where You Bank

GUEST ESSAY: Ponemon study warns: AI-enhanced deepfake attacks taking aim at senior execs

News Alert: INE Security outlines top 5 training priorities emerging from RSAC 2025

2024 Paris Olympics Present Podium-Worthy Cybersecurity Challenges

Human by Default: The New Imperative in Trust and Technology

News alert: Wultra secures €3M funding to help financial firms mitigate coming quantum threats

News alert: Aembit announces speakers for NHIcon event, highlighting non-human identity security

ISACA impressions: AI, risk and resilience feature at the 2025 conference

Understanding the U.S. Cyber Trust Mark: A New Era for IoT Security

Navigating Cybersecurity Risks in the Age of OT-IT Convergence

Cybersecurity Governance: The Road Ahead in an Era of Constant Evolution

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Why is ‘Juice Jacking’ Suddenly Back in the News?

News alert: 360 Privacy secures $36M to deliver turnkey digital executive protection platform

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

Story of the Year: global IT outages and supply chain attacks

Layoffs in Responsible AI Teams

Best Practices Q&A: Guidance about what directors need to hear from CISOs — from a board member

G7 Cyber Expert Group Warns of Quantum Computing Risks in Finance

News alert: Seventh Sense unveils a revolutionary privacy solution — face-based PKI and ‘eID’

Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps

Shifting from Business Continuity to Continuous Business in Cyber

News alert: SpyCloud operationalizes darknet data, pioneers shift to holistic identity threat protection

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

Securing Success: The Crucial Role of a Cybersecurity Specialist in a Growing Business

Stay Connected