Security

ddos attack potentially targeted state voter registration site says fbi

DDoS Attack Potentially Targeted State Voter Registration Site, Says FBI

The FBI said that a distributed denial-of-service (DDoS) attack potentially targeted a state-level voter registration site. In a Private Industry Notification (PIN) released on February 4, the FBI said that a state-level voter registration and voter information website received a high volume of DNS requests over the period of a month. Those requests were consistent …

DDoS Attack Potentially Targeted State Voter Registration Site, Says FBI Read More »

cropped cropped Screen Shot 2022 10 22 at 12214 PM

7 Ways Small And Midsize Businesses Can Secure Their Websites

Small and Medium Size Businesses Can Secure Their Websites In These 7 Simple Ways Too often small and midsize businesses (SMBs) run websites that aren’t secure or even have the basics, such as SSL encryption technology or a Web application firewall. Here’s what small and midsize businesses should consider when they decide it’s time …

7 Ways Small And Midsize Businesses Can Secure Their Websites Read More »

Twitter Suspends Fake Accounts Abusing Feature that Matches Phone Numbers and Users

The company believes state-sponsored actors may also be involved. Twitter has disclosed a security incident in which third parties exploited its API to match phone numbers with user accounts. The company has identified and suspended a large network of fake accounts related to the incident and believes state-sponsored actors may also be involved. The problem …

Twitter Suspends Fake Accounts Abusing Feature that Matches Phone Numbers and Users Read More »

would you get hooked by a phishing scam test yourself

Would you get hooked by a phishing scam? Test yourself

As the tide of phishing attacks rises, improving your scam-spotting skills is never a bad idea Many people are confident in their ability to recognize phishing scams a mile away. In a recent survey, however, only 5% of the respondents had a 100-percent success rate in spotting simulated attacks aimed at stealing their sensitive information. …

Would you get hooked by a phishing scam? Test yourself Read More »

facebook privacy settings protect your data with these tips

Facebook privacy settings: Protect your data with these tips

As Facebook turns 16, we look at how to keep your personal information safe from prying eyes Sixteen years, that’s how long Facebook has been around. This means that it has accompanied some of us throughout our teenage years to adulthood. Quite an achievement since websites and services tend to lose popularity over the years …

Facebook privacy settings: Protect your data with these tips Read More »

Researchers Find 24 ‘Dangerous’ Android Apps with 382M Installs

Shenzhen Hawk Internet Co. is identified as the parent company behind five app developers seeking excessive permissions in Android apps. Security researchers have identified 24 Android applications seeking dangerous and excessive permissions, all of which come from app developers under Chinese company Shenzhen Hawk Internet Co., Ltd., and have a combined total of 382 million …

Researchers Find 24 ‘Dangerous’ Android Apps with 382M Installs Read More »

Phishing tournament finds employees falling prey to malicious emails

The Gone Phishing Tournament tested how susceptible people are to opening fraudulent emails and entering their login information. View Original Source Article HERE

ashley madison breach extortion scam targets hundreds

Ashley Madison Breach Extortion Scam Targets Hundreds

Protection, Security

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. View Original Source Article HERE

VPN: Useful More Than Just For Security

Virtual Private Networks (VPNs) are undoubtedly the most trusted tools for protecting your privacy while you browse the internet. Essentially, a VPN routes your internet traffic and hides your real IP address so that no one, not even your Internet Service Provider, can see your activity on the internet. Further, the entire data you send …

VPN: Useful More Than Just For Security Read More »

tN6tvRWU 400x400 150x150 4

The Number One Cybersecurity Statistic That C-Suite Executives Should Know

CEOs should not be in the dark about cybercrime –Steve Morgan, Editor-in-Chief Northport, N.Y. – Jan. 21, 2020 For years now CEOs and board members have been flunking their cybersecurity exams. That’s because there are far too many vendor (and analyst) reports that fail to use easy-to-understand language, and concepts, for C-suite executives. Do CEOs …

The Number One Cybersecurity Statistic That C-Suite Executives Should Know Read More »

financial tech firms disagree on ban of customer data screen scraping

Financial tech firms disagree on ban of customer data screen-scraping

Protection, Security

by Lisa Vaas For years, financial technology (fintech) companies have used screen-scraping to retrieve customers’ financial data with their consent. Think lenders, financial management apps, personal finance dashboards, and accounting products doing useful things: like, say, your budgeting app will use screen-scraping to get at the incoming and outgoing transactions in your bank account, using …

Financial tech firms disagree on ban of customer data screen-scraping Read More »

facebook to pay 550m to settle face tagging suit

Facebook to pay $550m to settle face-tagging suit

Protection, Security

by Lisa Vaas A class-action lawsuit against Facebook for scanning a user’s face in photos and offering tagging suggestions looks like it’s finally done churning through the courts. The upshot: it will pay $550 million to settle the suit, Facebook disclosed in its quarterly earnings report on Wednesday. Filed in 2015, plaintiffs had claimed that …

Facebook to pay $550m to settle face-tagging suit Read More »

How organizations should handle data breaches

How an organization handles a breach can be just as critical as protecting against one, according to Security.org. View Original Source Article HERE

97 of the world’s 100 largest airports have massive cybersecurity risks

An investigation of airport cybersecurity found glaring gaps in security for web and mobile applications, misconfigured public clouds, Dark Web exposure and code repositories leaks. View Original Source Article HERE

How To Keep Your Privacy and Data Secure While Working With a Remote Team

Implementing basic strategies can ensure your remote team’s work will be secure, data will be protected, and you’ll be far less exposed to security risks. Working with a remote team comes with a laundry list of unique challenges and problems. Perhaps chief among these is ensuring that your data and information is kept secure. Remote …

How To Keep Your Privacy and Data Secure While Working With a Remote Team Read More »

bezos whatsapp cyberattacks show growing mobile sophistication

Bezos, WhatsApp Cyberattacks Show Growing Mobile Sophistication

Protection, Security

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. View Original Source Article HERE

trello exposed search turns up huge trove of private data

Trello exposed! Search turns up huge trove of private data

Protection, Security

by John E Dunn Hands up who’s used the increasingly popular online collaboration platform Trello? Trello is great for organising to-do lists and for coordinating team tasks. But it has its downsides too. While the default for Trello boards is set to ‘private’, many users set them to ‘public’ which means that anyone can see …

Trello exposed! Search turns up huge trove of private data Read More »

facebook knows a lot about your online habits heres how to stop it

Facebook knows a lot about your online habits – here’s how to stop it

Protection, Security

by Danny Bradbury Facebook is rolling out a global tool to help you understand what other sites and apps tell it about your activities, to make it forget what they’ve shared in the past, and to control what they share in the future. It’s called Off-Facebook Activity, and it’s part of the company’s effort to …

Facebook knows a lot about your online habits – here’s how to stop it Read More »

government spyware company spied on hundreds of innocent people

Government spyware company spied on 100s of innocent people

Protection, Security

In March 2019, researchers with a group called Security Without Borders identified more than 20 government spyware apps squatting in plain sight, pretending to be harmless, vanilla apps on Google’s Play store. Security Without Borders is a non-profit that often investigates threats against dissidents and human rights defenders. Those apps were just a decoy through …

Government spyware company spied on 100s of innocent people Read More »

video zoom researcher details web conference security risks 2020 threats

Video: Zoom Researcher Details Web Conference Security Risks, 2020 Threats

Protection, Security

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. View Original Source Article HERE

Why Companies Should Care about Data Privacy Day

Marking yesterday’s 14th anniversary of Europe’s first data protection day reminds us how far we still have to go. Enterprisewide leverage of company data is now a near-universal objective for the modern organization, but this must be balanced with the needs of data protection and privacy compliance. The frequency with which breaches of personally identifiable …

Why Companies Should Care about Data Privacy Day Read More »

15 nfl teams twitter hijacked in lead up to the super bowl

15 NFL teams’ Twitter hijacked in lead-up to the Super Bowl

Protection, Security

by Lisa Vaas The cybercriminal group OurMine has struck again, claiming responsibility for hijacking and defacing the Twitter accounts of the US National Football League (NFL) and 15 of its teams. The timing is pointed: The attacks hit during this, the media-hectic week that leads up to Sunday’s Super Bowl Championship, which will pit the …

15 NFL teams’ Twitter hijacked in lead-up to the Super Bowl Read More »

how to take charge of your google privacy settings

How to take charge of your Google privacy settings

Security, Uncategorized

Have you had a Google Privacy Checkup lately? If not, when better than Data Privacy Day to audit the privacy of your Google account? Users have become increasingly sensitive about how their data is handled, which in turn means that tech companies face increasing scrutiny. Google, for example, has introduced new privacy features in recent …

How to take charge of your Google privacy settings Read More »

NFL, Multiple NFL Teams’ Twitter Accounts Hacked and Hijacked

Enterprise VulnerabilitiesFrom DHS/US-CERT’s National Vulnerability Database CVE-2015-3154PUBLISHED: 2020-01-27 CRLF injection vulnerability in Zend\Mail (Zend_Mail) in Zend Framework before 1.12.12, 2.x before 2.3.8, and 2.4.x before 2.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the header of an email. CVE-2019-17190PUBLISHED: 2020-01-27 A Local Privilege Escalation …

NFL, Multiple NFL Teams’ Twitter Accounts Hacked and Hijacked Read More »

5 ways to be a bit safer this data privacy day

5 Ways To Be a Bit Safer This Data Privacy Day

Protection, Security

5 Safety Tips For Data Privacy Day Today is Data Privacy Day. As we say every year, Data Privacy Day is more than just a 24-hour period when you try to keep safe online. It’s a day to think about changes you can make in your digital life that will keep you safer today, and …

5 Ways To Be a Bit Safer This Data Privacy Day Read More »

security admin checklist

Security admins checklist: 10 tasks to perform every year

Security, Phishing

Here is a checklist of 10 important tasks security administrators should perform to keep devices protected and secure. Security administrators oversee the secured processes in place, safeguarding the day-to-day operations of an organization. While it is easy for users to focus solely on protecting computers and their devices, security admins are tasked with managing the overall …

Security admins checklist: 10 tasks to perform every year Read More »

time for some straight talk around network traffic analysis

Time for Some Straight Talk Around Network Traffic Analysis

According to research from the Enterprise Strategy Group, 87% of organizations use Network Traffic Analysis (NTA) tools for threat detection and response today, and 43% say that NTA is a “first line of defense” in case of an attack. The increasing IT complexity is one of the main factors in the adoption of NTA tools …

Time for Some Straight Talk Around Network Traffic Analysis Read More »

FTC Marks Tax Identity Theft Awareness Week February 3-7, 2020

The Federal Trade Commission will mark Tax Identity Theft Awareness Week, February 3-7, 2020, by co-hosting a series of free events highlighting the warning signs of tax identity theft and government imposter scams, ways consumers can protect themselves, and what to do if a consumer is a victim of tax identity theft. Tax identity theft …

FTC Marks Tax Identity Theft Awareness Week February 3-7, 2020 Read More »

Background Check Services Provider Agrees to Settle FTC Allegations that it Falsely Claimed Participation in the EU-U.S. Privacy Shield

A company that provides security and investigative services, including background check services, has agreed to settle Federal Trade Commission allegations that the firm misrepresented its participation in and compliance with the EU-U.S. Privacy Shield framework, which enables companies to transfer consumer data legally from European Union countries to the United States. In a complaint, the …

Background Check Services Provider Agrees to Settle FTC Allegations that it Falsely Claimed Participation in the EU-U.S. Privacy Shield Read More »

Facial Recognition - Making Sense of Security

Facial Recognition Firm Sued for Scraping 3 Billion Faceprints

Privacy, Protection, Security

Firm Sued For Scraping 3 Billion Faceprints for Facial Recognition New York facial recognition startup Clearview AI is being sued in a potential class action lawsuit that claims the company gobbled up photos out of “pure greed” to sell to law enforcement. This which has amassed a huge database of more than three billion images scraped …

Facial Recognition Firm Sued for Scraping 3 Billion Faceprints Read More »

5 Ways Your Organization Can Ensure Improved Data Security - making Sense of Security

5 Ways Your Organization Can Ensure Improved Data Security

5 Ways to Ensure Improved Data Security Within Your Organization Each year on January 28, the United States, Canada, Israel, and 47 European countries observe Data Privacy Day. The purpose of Data Privacy Day is to inspire dialogue on the importance of online privacy. These discussions also seek to inspire individuals and businesses to take …

5 Ways Your Organization Can Ensure Improved Data Security Read More »

job hunting beware hiring scams using spoofed company websites

Job hunting? Beware hiring scams using spoofed company websites

Cybercriminals are putting a new twist on an old trick Scammers are combining spoofed company websites and fake job ads to trick unsuspecting job seekers into surrendering their sensitive information and paying fraudulent fees. According to a recent public service announcement by the FBI’s Internet Crime Complaint Center (IC3), fraudsters increasingly post job openings on …

Job hunting? Beware hiring scams using spoofed company websites Read More »

What’s your organization’s cybersecurity strategy?

Take this quick, multiple choice survey and tell us about your company’s cybersecurity strategies for the upcoming year. View Original Source Article HERE

FTC to Host Workshop Voice Cloning Technologies on Jan. 28

WHAT: The Federal Trade Commission will host a workshop to examine voice cloning technologies. WHEN: Tuesday, January 28, 12:30 p.m.-5:00 p.m. ET. WHERE: Constitution Center400 Seventh St., SWWashington, D.C. 20024 WHO: The event will feature remarks by FTC Commissioner Rohit Chopra as well as industry officials, academics, and others. WEBCAST: The workshop will be webcast. …

FTC to Host Workshop Voice Cloning Technologies on Jan. 28 Read More »

Why many small and midsized businesses remain vulnerable to cyberattack

Budget limitations and a lack of knowledge or training are two major factors hurting many SMBs, according to a survey from Untangle. View Original Source Article HERE