Security News
Rap sheet spells out major no-nos after disgruntled staff blow whistle The US is suing one of its leading research universities over a litany of alleged failures to meet cybersecurity standards...
A new study finds that these threats remain top of mind for 78% of U.S. technology leaders as more SaaS apps find their way into the enterprise. Although enterprises have been prioritizing data privacy and security, their continued reliance on SaaS and cloud offerings means they remain at risk, according to the The SaaS Disruption Report: Security & Data by Onymos and Enterprise Strategy Group.
Google Search ads that target users looking for Google's own services lead them to spoofed sites and Microsoft and Apple tech support scams. The ads ostensibly point to Google Search, Translate, Analytics, Earth, and so on, but a closer look shows that the URLs of the pages are not the correct ones.
Ransomware remained the leading cause of loss since January 2023, with 64% of ransomware-related claims resulting in a loss. The financial severity of claims related to ransomware attacks increased 411% from 2022 to 2023.
An Arizona tech school will send letters to 208,717 current and former students, staff, and parents whose data was exposed during a January break-in that allowed an attacker to steal nearly 50 types of personal info. EVIT itself also said it "Has not discovered any publication of EVIT data that contained sensitive information," although third party contractors determined that a trove of data was stolen.
The U.S. Department of Justice on Thursday charged a 38-year-old individual from Nashville, Tennessee, for allegedly running a "Laptop farm" to help get North Koreans remote jobs with American and British companies. Court documents allege that Knoot participated in a worker fraud scheme by letting North Korean actors get employment at information technology companies in the U.K. and the U.S. It's believed that the revenue generation efforts are a way to fund North Korea's illicit weapons program.
The results demonstrate that the infosec community still needs to do more to educate users on staying safe online. Twenty-five percent stuck their smartphone in a special cover so hackers couldn't steal their data.
"After a pilot last season, all 32 teams will be using Wicket to streamline and secure the credentialing program," Boehm wrote. The new NFL credentialing program follows a six-stadium pilot program in 2023.
The leader of a tech support fraud scheme was sentenced to seven years in prison after tricking at least 6,500 victims and generating more than $6 million. [...]
Apple last week celebrated a slew of privacy changes coming to its Safari browser and took the time to bash rival Google for its Topics system that serves online ads based on your Chrome history. It's feared netizens could be still be tracked around the web using the Topics API in Chrome, or folks who have tried to hide their identity from advertisers could be rediscovered using the tech.