Skip to content
Energy Department watchdog finds research labs fail to secure 'peripheral' devices like USBsMultiple Department of Energy research labs lack adequate security controls to safeguard devices like printers and USB drives, leaving the facilities susceptible to data theft, according to an inspector general investigation. “[T]he confidentiality, integrity and availability of systems and data could be directly impacted by the vulnerabilities discovered by our test work,” the DOE inspector general said in…
Israeli court rejects request to revoke NSO Group's export licenseAn Israeli judge has ruled against revoking the export license of Israeli software surveillance firm NSO Group, despite allegations its software has been used to target human rights activists and political dissidents around the globe. Amnesty International filed the lawsuit in Israel last year alleging one of its employees had been targeted by Pegasus, NSO…
DNC issues another warning on TikTok, citing data security risksThe Democratic National Committee on Friday reiterated a warning to Democratic campaigns, state parties and committees about the security risks of using the video-sharing app TikTok, which is owned by Chinese tech company ByteDance. “Because of the amount of data it tracks, we continue to advise campaign staff to refrain from using TikTok on personal devices,” a…
CreativeMinds WordPress Plugin Curated RSS Aggregator
Critical SAP Bug Allows Full Enterprise System TakeoverExploitation of the bug can allow an attacker to lift sensitive information, delete files, execute code, carry out sabotage and more.
TrickBot Sample Accidentally Warns Victims They’re InfectedA data-stealing module in a recent sandboxed sample triggers browser-based fraud alerts for Trickbot victims -- and shows something of the inner working of the malware's operators.
Secret Service Creates Cyber Fraud Task ForcesTraditional financial crime and cyberattacks are converging, requiring new skills and approaches to the problem, officials said.
A ‘New Age’ of Sophisticated Business Email Compromise is ComingA new BEC threat group is heralding more sophisticated email scams that target organizations without DMARC and squeeze as much money out of victims as possible.
The Enemy Within: How Insider Threats Are ChangingInsider-threat security experts unravel the new normal during this time of remote working, and explain how to protect sensitive data from this escalating risk.
How CARTA Strategies for Web Applications are Met with Indusface AppTrana SolutionFrom an operational standpoint, the foundation of CARTA starts with an assessment and then building the zero-trust principles on top of that with an adaptive security model.