Security News > 2024 > January
Chinese-speaking users have been targeted by malicious Google ads for restricted messaging apps like Telegram as part of an ongoing malvertising campaign. "The threat actor is abusing Google...
There's a good reason why ransomware gangs started exfiltrating victims' data instead of just encrypting it: those organizations pay more. University of Twente researcher Tom Meurs and his colleagues wanted to know which factors influence victims to pay the ransom or not, and which factors have an effect on the ransom amount organizations end up paying.
Microsoft on Thursday said the Russian state-sponsored threat actors responsible for a cyber attack on its systems in late November 2023 have been targeting other organizations and that it's...
The report found that 31.1 million breached passwords had over 16 characters, showing longer passwords aren't safe from being cracked. 40,000 admin portal accounts were found to be using 'admin' as a password, and only 50% of organizations scan for compromised passwords more than once a month.
40-year-old Russian national Vladimir Dunaev has been sentenced to five years and four months in prison for his role in creating and distributing the TrickBot malware, the U.S. Department of...
Cisco has released patches to address a critical security flaw impacting Unified Communications and Contact Center Solutions products that could permit an unauthenticated, remote attacker to...
Schroader talks about the impact of exponential data growth on forensic practices, the role of AI in optimizing investigations, and emphasizes the need for professionals to adapt to the changing dynamics of digital investigations, along with cross-education in related fields. With the exponential growth in data volume, how do digital forensic experts manage and analyze large datasets effectively?
Growing environmental, social, and governance expectations and expanding global regulation are propelling organizations to consider implementing a stand-alone human rights policy, according to Gartner. "A dedicated human rights policy not only allows organizations to lay out comprehensive standards in response to expectations from ESG stakeholders and regulators, but also makes it easier for employees, suppliers, and other partners in the value chain to comprehend and comply with the guidance," said Dian Zhang, Senior Research Principal with the Gartner for Legal, Risk & Compliance Leaders practice.
The past year saw developments and updates to privacy regulations across the globe-from India's Personal Data Protection Bill to Brazil's General Data Protection Law, according to ISACA. However, only 34% of organizations say they find it easy to understand their privacy obligations and only 43% are very or completely confident in their organization's privacy team's ability to ensure data privacy and achieve compliance with new privacy laws and regulations. In addition to difficulty understanding the privacy regulatory landscape, organizations also face other data privacy challenges, including budget.
A former Trickbot developer has been sent down for five years and four months for his role in infecting American hospitals and businesses with ransomware and other malware, costing victims tens of millions of dollars in losses. Trickbot initially infected PCs to steal people's login details to their online bank accounts, so that funds could be siphoned.