LATEST POST
The U.S. And Its Allies Are Pledging Never To Pay Hacker Ransoms
Eric Geller reports: The Biden administration and dozens of foreign allies will pledge this week never to pay ransoms to hackers who lock up their national governments’ computer systems, hoping to discourage financially motivated cyber criminals from seeing those systems as attractive ransomware targets. The joint promise will occur as part of the third annual […]
Quishing is the new phishing: What you need to know
Jack Wallen explains that the little QR codes that ads tell you to scan can be weaponized in phishing attacks to steal your information, aka “quishing:” What is quishing? Consider the QR code aired during the Super Bowl. Now, imagine the company behind that commercial had malicious intent (just to be clear, the company behind […]
FTC announces new Safeguards Rule provision: Is your company up on what’s required?
October 2023 marks the 20th anniversary of the effective date of the Gramm-Leach-Bliley Safeguards Rule. Its purpose then – and its purpose now – is to protect consumers by requiring entities covered by the Rule to “develop, implement, and maintain reasonable administrative, technical, and physical safeguards to protect the security, confidentiality, and integrity of customer […]
Counting the economic cost: How vulnerable could you be?
Lloyd’s of London pr:ovides some chilling predictions: Organisations targeted by the cyber attack are directly impacted, seeing their operations disrupted and potentially incurring significant recovery costs. The loss of a critical payments network also results in significant secondary disruption across a wide range of industries, supply chains and infrastructure that is unable to operate as […]
California Enacts Amendments to the CCPA and Other New Laws
Hunton Andrews Kurth writes: On October 8, 2023 and October 10, 2023, California Governor Gavin Newsom signed A.B. 947, A.B. 1194, S.B. 362 and S.B. 244 into law. A.B. 947 amends the California Consumer Privacy Act of 2018’s (“CCPA”) definition of “sensitive personal information” to include personal information that reveals a consumer’s “citizenship or immigration status,” while A.B. 1194 amends the […]
Hackers leveraging AI: vulnerability for law firms
Don Nokes of NetCenergy, an outsourced IT service provider, explains the emerging threat and provides this example: Once the bad actors learn (possibly from first hacking a firm’s email) that a financial transaction is taking place, they send an AI-generated voice message to confirm where to send the funds. The fund transferer hears the familiar […]
Millions of Highly Sensitive Patient Records Exposed in Medical Diagnostic Company Data Breach
Several days ago, The Data Breach Times noted an article expressing concern about cybersecurity in India. That article, which referenced data from a study by Check Point, also noted that one of the main sectors being attacked during the past six months was healthcare. Data leaks due to misconfigured storage devices also continue to pose […]
Ex-NSA techie pleads guilty to selling state secrets to Russia
Disgruntled former employees and other malicious insiders are a major source of data breaches and data loss. The Register reports on an insider threat that could have had serious consequences for national security: A former US National Security Agency techie has plead guilty to six counts of violating the Espionage Act after being caught handing […]