Security News

Get your staff's consent before you monitor them, tech inquiry warns
2023-08-10 10:00

Evidence from Oxford University's Fairwork Project cited in the report also notes that the UK GDPR provides a "Certain degree of protection for private individuals. However, it is more limited in protecting workers in the workplace." OII researcher Dr Matthew Cole noted in his evidence that: "Unless there is a union that is litigating around these things or an existing collective bargaining agreement, there is a lack of enforcement at the state level. The UK government could do much better at ensuring protections for worker data and protecting citizens of the UK from global giants like Uber, for example."

Preventative medicine for securing IoT tech in healthcare organizations
2023-08-09 14:02

We will explore what the Internet of Medical Things is and will investigate how healthcare organizations should best assess the security of their networks. We will then reveal why and how HIPAA plays a role in securing sensitive medical data and how attack surface management can secure the IoMT for healthcare organizations.

From tech expertise to leadership: Unpacking the role of a CISO
2023-08-02 04:30

In this Help Net Security interview, Attila Török, CISO at GoTo, discusses how to balance technical expertise and leadership and how he navigates the rapidly evolving technological landscape. In your opinion, what are the key characteristics of an effective CISO? How do you balance technical expertise and leadership skills?

Mattress maker Tempur Sealy says it isolated tech system to contain cyber burglary
2023-08-01 14:31

Tempur Sealy, among the world's largest providers of bedding, has notified the Securities and Exchange Commission of a digital burglary by cyber crims that forced it to isolate parts of the tech infrastructure. "Upon discovery of the event, the company activated its incident response and business continuity plans designed to contain the incident. This included proactively shutting down certain of the company's IT systems, resulting in the temporary interruption of the company's operations," yesterday's filing states.

North Korean hackers targeted tech companies through JumpCloud and GitHub
2023-07-21 12:48

North Korean state-sponsored hackers have been linked to two recent cyberattack campaigns: one involving a spear-phishing attack on JumpCloud and the other targeting tech employees on GitHub through a social engineering campaign. "Fewer than 5 JumpCloud customers were impacted and fewer than 10 devices total were impacted, out of more than 200,000 organizations who rely on the JumpCloud platform for a variety of identity, access, security, and management functions,".

Tech support scammers go analog, ask victims to mail bundles of cash
2023-07-19 21:00

Cybercriminals are taking their business offline in a new approach to familiar technical support scams recently identified by the US Federal Bureau of Investigation. In a bulletin published yesterday, the FBI's Internet Crime Complaint Center says it's noticed a recent uptick in technical support scams across the US that, rather than urging victims to wire funds, send cryptocurrency or hand over gift card codes, is asking them to mail magazine-wrapped wads of cash.

FBI: Tech support scams now use shipping companies to collect cash
2023-07-19 09:17

FBI warns of a surge in tech support scams targeting the elderly across the United States and urging victims to dispatch cash concealed within magazines or similar items through shipping firms. While tech support scams have been around for years, the FBI says this is a departure from scammers' conventional tactics of soliciting their targets to send money using bank transfers, cryptocurrencies, or gift cards.

Using AI/ML to optimize your tech stack and enhance business efficiency
2023-07-19 04:30

In this Help Net Security interview, Arthur Hu, SVP, Global CIO and Services & Solutions Group CTO at Lenovo, discusses how AI/ML is optimizing tech stacks, the hurdles anticipated in its integration, the role of AI in enterprise resilience and agility, and strategic approaches to innovation despite budget constraints. We'll touch on the evolving role of CIOs and the potential for 'as-a-service' offerings to ease tech stack management.

Criminal IP and Tines Forge Powerful Tech Alliance
2023-07-14 14:01

Criminal IP, a leading Cyber Threat Intelligence search engine, has formed a powerful alliance with Tines, a renowned provider of no-code automation solutions. Explore Stories with Criminal IP API. Users can accelerate their automation efforts and address common use cases by accessing the Tines Story Library.

CIOs prioritize innovation over tech stack optimization
2023-07-12 03:30

Despite economic obstacles and constraints on IT budgets, global CIOs maintain a positive outlook on the potential of technology to provide significant benefits for their organizations, according...