#information-security tag

Malicious GitHub repositories linked to nearly 1M infections

Microsoft uncovered a malvertising campaign exposing nearly one million devices to information theft via GitHub-hosted malware.

Data Theft Drove 94% of Cyberattacks in 2024

Data theft made up 94% of all cyber attacks globally in 2024, emphasizing the rising risk for organizations.

Cybersecurity teams face unparalleled pressure, but they're stepping up to the plate

Cybersecurity teams are effectively leveraging AI tools and automation to exceed targets despite rising workloads.

Security leaders discuss the Cisco security incident

Cisco's data breach underlines the critical need for strong API security, even in public-facing environments.

Cybersecurity jobs are in high demand. Execs in the field explain why.

The demand for cybersecurity jobs is soaring due to evolving threats from AI advancements.

The fundamentals of cybersecurity in the age of AI

Identity and Access Management (IAM) is foundational to effective cybersecurity, ensuring only authorized access to sensitive information.

Malicious GitHub repositories linked to nearly 1M infections

Microsoft uncovered a malvertising campaign exposing nearly one million devices to information theft via GitHub-hosted malware.

Data Theft Drove 94% of Cyberattacks in 2024

Data theft made up 94% of all cyber attacks globally in 2024, emphasizing the rising risk for organizations.

Cybersecurity teams face unparalleled pressure, but they're stepping up to the plate

Cybersecurity teams are effectively leveraging AI tools and automation to exceed targets despite rising workloads.

Security leaders discuss the Cisco security incident

Cisco's data breach underlines the critical need for strong API security, even in public-facing environments.

Cybersecurity jobs are in high demand. Execs in the field explain why.

The demand for cybersecurity jobs is soaring due to evolving threats from AI advancements.

The fundamentals of cybersecurity in the age of AI

Identity and Access Management (IAM) is foundational to effective cybersecurity, ensuring only authorized access to sensitive information.

morecybersecurity

#national-security

Trump officials texted war plans to a group chat in a secure app that included a journalist

Sensitive military strike plans were mistakenly shared in a group chat that included a journalist.

Well, Well, Well, Here's How Conservatives Are Reacting To The Secret War Plan Group Chat

A major security breach occurred involving sensitive war plans discussed in a Signal group chat mistakenly involving a journalist.

Never Seen a Story Like This': Bombshell Report On Trump's Leaked War Plans Sends Shockwaves Through Washington

A report revealed that Trump National Security Adviser Mike Waltz mistakenly included The Atlantic's editor in a secure chat discussing military plans in Yemen.

Fox News Doesn't Have Chief National Security Correspondent On Air for 30 Hours and Counting After Massive National Security Leak

Reckless miscommunication led to a journalist inadvertently gaining access to sensitive military discussions regarding Houthi rebels.

'Heads are exploding': How security experts see the Signal war-plan breach

The inclusion of a journalist in a classified U.S. military chat raises serious security concerns and questions about protocol.

Opinion | The Worst Part of Pete Hegseth's Group Chat Debacle

Discussing sensitive military operations on unsecured communication apps like Signal raises significant concerns about national security and military effectiveness.

Trump officials texted war plans to a group chat in a secure app that included a journalist

Sensitive military strike plans were mistakenly shared in a group chat that included a journalist.

Well, Well, Well, Here's How Conservatives Are Reacting To The Secret War Plan Group Chat

A major security breach occurred involving sensitive war plans discussed in a Signal group chat mistakenly involving a journalist.

Never Seen a Story Like This': Bombshell Report On Trump's Leaked War Plans Sends Shockwaves Through Washington

A report revealed that Trump National Security Adviser Mike Waltz mistakenly included The Atlantic's editor in a secure chat discussing military plans in Yemen.

Fox News Doesn't Have Chief National Security Correspondent On Air for 30 Hours and Counting After Massive National Security Leak

Reckless miscommunication led to a journalist inadvertently gaining access to sensitive military discussions regarding Houthi rebels.

'Heads are exploding': How security experts see the Signal war-plan breach

The inclusion of a journalist in a classified U.S. military chat raises serious security concerns and questions about protocol.

Opinion | The Worst Part of Pete Hegseth's Group Chat Debacle

Discussing sensitive military operations on unsecured communication apps like Signal raises significant concerns about national security and military effectiveness.

morenational-security

An 'IngressNightmare' haunts Kubernetes clusters

Ingress NGINX Controller vulnerabilities expose Kubernetes clusters to unauthorized access, affecting 43% of cloud environments with a CVSS score of 9.8.

#journalism

You're a journalist added to a classified group chat. Here's what you need to consider. - Poynter

Journalists must consider the ethical implications of receiving leaked information, especially in a climate of careless government leaks.

Fraudsters steal 100m from NHS as scammers target hospitals

The Independent reveals significant fraud losses in the NHS, stressing the need for better protection against scams in an overstretched health system.

You're a journalist added to a classified group chat. Here's what you need to consider. - Poynter

Journalists must consider the ethical implications of receiving leaked information, especially in a climate of careless government leaks.

Fraudsters steal 100m from NHS as scammers target hospitals

The Independent reveals significant fraud losses in the NHS, stressing the need for better protection against scams in an overstretched health system.

morejournalism

The Trump Administration Accidentally Texted Me Its War Plans

The leak of sensitive military plans to a reporter raises critical questions about security and information sharing during conflicts.

Why You Need to Follow Consumer Trends

Consumer expectations are rising, emphasizing the need for businesses to prioritize trust, transparency, and customer communication.

#cloud-computing

Apple defines what we should expect from cloud-based AI security

Apple's new cloud-based AI system prioritizes security and invites research, setting a standard for others to follow in data protection.

Trade Secrets Outlook: Cloudy with a Chance of Exposure

Cloud-based solutions enhance collaboration but pose new risks to trade secret protection.

Companies can implement strategies to mitigate risks associated with cloud sharing of sensitive information.

Apple defines what we should expect from cloud-based AI security

Apple's new cloud-based AI system prioritizes security and invites research, setting a standard for others to follow in data protection.

Trade Secrets Outlook: Cloudy with a Chance of Exposure

Cloud-based solutions enhance collaboration but pose new risks to trade secret protection.

Companies can implement strategies to mitigate risks associated with cloud sharing of sensitive information.

morecloud-computing

Social Security workers aren't allowed to read news sites at work anymore

The SSA has imposed new internet restrictions, limiting access to news and shopping websites to protect sensitive information.

Niel Harper Top Cybersecurity Leaders 2025

Strong leadership blends technical expertise and management skills.

#data-privacy

Alarming report finds Apple is giving Americans' data to US government

Big Tech companies are increasingly sharing personal data with the US government, raising privacy concerns.

Significant increases in data-sharing rates have been reported among major companies like Apple, Google, and Meta.

Data brokers may be banned from selling your social security number

CFPB proposes rules to limit data brokers from selling sensitive personal data, requiring them to follow FCRA standards.

Hong Kong govt office sorry for losing tapes with personal data

Data privacy concerns arise as government agency loses tapes with information on 76,000 individuals.

Today's reminder of the insider threat: LG Electronics USA

A former Payroll Manager at LG Electronics violated data policies by emailing personal information to themselves, leading to an ongoing investigation and legal actions.

Alarming report finds Apple is giving Americans' data to US government

Big Tech companies are increasingly sharing personal data with the US government, raising privacy concerns.

Significant increases in data-sharing rates have been reported among major companies like Apple, Google, and Meta.

Data brokers may be banned from selling your social security number

CFPB proposes rules to limit data brokers from selling sensitive personal data, requiring them to follow FCRA standards.

Hong Kong govt office sorry for losing tapes with personal data

Data privacy concerns arise as government agency loses tapes with information on 76,000 individuals.

Today's reminder of the insider threat: LG Electronics USA

A former Payroll Manager at LG Electronics violated data policies by emailing personal information to themselves, leading to an ongoing investigation and legal actions.

moredata-privacy

But Her Emails Redux: Team Trump Makes CIA Send List Of All Recently Hired Employees Over Unclassified Email - Above the Law

The Trump administration's handling of sensitive information demonstrated a troubling disregard for security protocols.

Deepseek-impersonating malware is stealing data, research finds

Malicious actors are exploiting the popularity of DeepSeek through information-stealing packages on the Python Package Index.

Everything I Say Leaks,' Says Mark Zuckerberg in Leaked Meeting: It Sucks'

Zuckerberg expressed frustration over internal leaks during a team meeting, emphasizing the negative impact on morale and productivity.

#ftc

FTC Takes Action Against Security Camera Firm Verkada over Charges it Failed to Secure Videos, Other Personal Data and Violated CAN-SPAM Act

Verkada must implement a security program and pay a $2.95 million penalty for security failures and CAN-SPAM Act violations.

FTC Takes Action Against GoDaddy for Alleged Lax Data Security for Its Website Hosting Services

GoDaddy must establish a comprehensive information security program following FTC's settlement to address its misleading practices and security vulnerabilities.

FTC Takes Action Against Security Camera Firm Verkada over Charges it Failed to Secure Videos, Other Personal Data and Violated CAN-SPAM Act

Verkada must implement a security program and pay a $2.95 million penalty for security failures and CAN-SPAM Act violations.

FTC Takes Action Against GoDaddy for Alleged Lax Data Security for Its Website Hosting Services

GoDaddy must establish a comprehensive information security program following FTC's settlement to address its misleading practices and security vulnerabilities.

moreftc

Hey, Maybe It's Time to Delete Some Old Chat Histories

There are specific actions you can take to protect your digital privacy and manage your digital footprint.

New AI Beats Rivals in Hiding Secret Messages in Videos | HackerNoon

The study introduces a novel video steganography method that enhances security and robustness against distortions.

#data-breach

California-based Elderly Care Company Warns of Data Breach

Covenant Care California experienced a data breach affecting patients' personally identifiable information, prompting a delayed notification process for those impacted.

NHS software provider faces steep fine after 2022 data breach exposed sensitive patient info

A leading NHS software provider faces a £6 million fine after a ransomware attack impacting over 80,000 individuals due to lack of MFA.

It's crucial to prioritize information security to prevent distressing breaches like this and avoid disrupting critical health services.

Advanced faces fine over LockBit attack that crippled NHS 111 | Computer Weekly

A software supplier faces a potential fine of £6.09m for failing to implement cyber security measures, leading to a data breach affecting over 80,000 people.

Express Services disclosed a data breach. One month later, they learned they had a second data security problem.

Express Employment Professionals experienced multiple data breaches, exposing sensitive personal information of many individuals.

Sensitive data categories were reported in breach disclosures, affecting nearly 6,000 Texans and potentially millions overall.

Unsecured databases revealed a larger leak of personal information, emphasizing data security vulnerabilities within the company.

1.7M potentially pwned by payment services provider breach

Slim CD is notifying 1.7 million customers due to a data breach that may have compromised credit card information.

California-based Elderly Care Company Warns of Data Breach

Covenant Care California experienced a data breach affecting patients' personally identifiable information, prompting a delayed notification process for those impacted.

NHS software provider faces steep fine after 2022 data breach exposed sensitive patient info

A leading NHS software provider faces a £6 million fine after a ransomware attack impacting over 80,000 individuals due to lack of MFA.

It's crucial to prioritize information security to prevent distressing breaches like this and avoid disrupting critical health services.

Advanced faces fine over LockBit attack that crippled NHS 111 | Computer Weekly

A software supplier faces a potential fine of £6.09m for failing to implement cyber security measures, leading to a data breach affecting over 80,000 people.

Express Services disclosed a data breach. One month later, they learned they had a second data security problem.

Express Employment Professionals experienced multiple data breaches, exposing sensitive personal information of many individuals.

Sensitive data categories were reported in breach disclosures, affecting nearly 6,000 Texans and potentially millions overall.

Unsecured databases revealed a larger leak of personal information, emphasizing data security vulnerabilities within the company.

1.7M potentially pwned by payment services provider breach

Slim CD is notifying 1.7 million customers due to a data breach that may have compromised credit card information.

moredata-breach

Antivirus Policy | TechRepublic

Antivirus policies are essential for protecting organizational networks and resources from malware and virus threats.

#cryptography

Java proposals would boost resistance to quantum computing attacks

Quantum computing advancements pose a serious threat to current information security, necessitating the urgent shift to quantum-resistant algorithms.

Educational Byte: Cryptography and Its Connection to Cryptocurrencies | HackerNoon

Cryptography evolved from secret writing to securing digital information, essential for personal privacy and online security today.

Java proposals would boost resistance to quantum computing attacks

Quantum computing advancements pose a serious threat to current information security, necessitating the urgent shift to quantum-resistant algorithms.

Educational Byte: Cryptography and Its Connection to Cryptocurrencies | HackerNoon

Cryptography evolved from secret writing to securing digital information, essential for personal privacy and online security today.

morecryptography

3 Simple Steps to Stop Apps From Collecting Your Data

Companies collect extensive user data, often leading to privacy concerns and exploitation.

Reading privacy policies is crucial, but they are often overly complex for average consumers.

Google CEO says the company should be a 'trusted source' in the election

Google and YouTube are focused on providing reliable information for elections, ensuring secure campaigns, and maintaining trust in their platforms.

#generative-ai

From Misuse to Abuse: AI Risks and Attacks

Cybercriminals are beginning to use AI, but its current role in cybercrime is often inflated and lacks advanced capabilities.

Can Security Experts Leverage Generative AI Without Prompt Engineering Skills?

Generative AI can create effective information security training, but human oversight is essential for accuracy.

From Misuse to Abuse: AI Risks and Attacks

Cybercriminals are beginning to use AI, but its current role in cybercrime is often inflated and lacks advanced capabilities.

Can Security Experts Leverage Generative AI Without Prompt Engineering Skills?

Generative AI can create effective information security training, but human oversight is essential for accuracy.

moregenerative-ai

What are the three types of access control? - London Business News | Londonlovesbusiness.com

Access control is essential for moderating who can access specific resources within an organization.

Cyber firms need to centre their own resilience | Computer Weekly

Crowdstrike's outage illustrates the critical risks associated with inadequate information security and automated updates.

David Wayne Aguilar of Consult Our Source - San Francisco Bay Times

Consult Our Source specializes in information security for major clients, leveraging two decades of experience to safeguard sensitive data.

FBI is losing track of classified and sensitive data, watchdog finds

The FBI must improve tracking and disposal of electronic media containing sensitive information to prevent loss or theft.

Virtual Data Rooms Unveiled: How They Revolutionize Secure Information Sharing

Virtual data rooms (VDRs) enhance secure and efficient sharing of sensitive information across various sectors, evolving with advanced technological features.

Certified Information Systems Security Professional Benefits

CISSP certification enhances professionals' credibility and career prospects.

CISSP signifies mastery of information security domains, establishing experts in the field.

CISSP provides a competitive advantage in the job market and professional development opportunities.

Industry report cites deepfakes as second most common security concern

Deepfakes rank as a significant concern for UK businesses, impacting security and third-party risks.

Organizations are increasing emphasis on staff training and education to combat deepfake threats and improve information security.

Antivirus Policy | TechRepublic

Antivirus software is crucial for organizational security. Establishing an antivirus policy ensures prompt threat detection and effective incident response.

#information-security#information-security

Malicious GitHub repositories linked to nearly 1M infections

Data Theft Drove 94% of Cyberattacks in 2024

Cybersecurity teams face unparalleled pressure, but they're stepping up to the plate

Security leaders discuss the Cisco security incident

Cybersecurity jobs are in high demand. Execs in the field explain why.

The fundamentals of cybersecurity in the age of AI

Malicious GitHub repositories linked to nearly 1M infections

Data Theft Drove 94% of Cyberattacks in 2024

Cybersecurity teams face unparalleled pressure, but they're stepping up to the plate

Security leaders discuss the Cisco security incident

Cybersecurity jobs are in high demand. Execs in the field explain why.

The fundamentals of cybersecurity in the age of AI

Trump officials texted war plans to a group chat in a secure app that included a journalist

Well, Well, Well, Here's How Conservatives Are Reacting To The Secret War Plan Group Chat

Never Seen a Story Like This': Bombshell Report On Trump's Leaked War Plans Sends Shockwaves Through Washington

Fox News Doesn't Have Chief National Security Correspondent On Air for 30 Hours and Counting After Massive National Security Leak

'Heads are exploding': How security experts see the Signal war-plan breach

Opinion | The Worst Part of Pete Hegseth's Group Chat Debacle

Trump officials texted war plans to a group chat in a secure app that included a journalist

Well, Well, Well, Here's How Conservatives Are Reacting To The Secret War Plan Group Chat

Never Seen a Story Like This': Bombshell Report On Trump's Leaked War Plans Sends Shockwaves Through Washington

Fox News Doesn't Have Chief National Security Correspondent On Air for 30 Hours and Counting After Massive National Security Leak

'Heads are exploding': How security experts see the Signal war-plan breach

Opinion | The Worst Part of Pete Hegseth's Group Chat Debacle

An 'IngressNightmare' haunts Kubernetes clusters

You're a journalist added to a classified group chat. Here's what you need to consider. - Poynter

Fraudsters steal 100m from NHS as scammers target hospitals

You're a journalist added to a classified group chat. Here's what you need to consider. - Poynter

Fraudsters steal 100m from NHS as scammers target hospitals

The Trump Administration Accidentally Texted Me Its War Plans

Why You Need to Follow Consumer Trends

Apple defines what we should expect from cloud-based AI security

Trade Secrets Outlook: Cloudy with a Chance of Exposure

Apple defines what we should expect from cloud-based AI security

Trade Secrets Outlook: Cloudy with a Chance of Exposure

Social Security workers aren't allowed to read news sites at work anymore

Niel Harper Top Cybersecurity Leaders 2025

Alarming report finds Apple is giving Americans' data to US government

Data brokers may be banned from selling your social security number

Hong Kong govt office sorry for losing tapes with personal data

Today's reminder of the insider threat: LG Electronics USA

Alarming report finds Apple is giving Americans' data to US government

Data brokers may be banned from selling your social security number

Hong Kong govt office sorry for losing tapes with personal data

Today's reminder of the insider threat: LG Electronics USA

But Her Emails Redux: Team Trump Makes CIA Send List Of All Recently Hired Employees Over Unclassified Email - Above the Law

Deepseek-impersonating malware is stealing data, research finds

Everything I Say Leaks,' Says Mark Zuckerberg in Leaked Meeting: It Sucks'

FTC Takes Action Against Security Camera Firm Verkada over Charges it Failed to Secure Videos, Other Personal Data and Violated CAN-SPAM Act

FTC Takes Action Against GoDaddy for Alleged Lax Data Security for Its Website Hosting Services

FTC Takes Action Against Security Camera Firm Verkada over Charges it Failed to Secure Videos, Other Personal Data and Violated CAN-SPAM Act

FTC Takes Action Against GoDaddy for Alleged Lax Data Security for Its Website Hosting Services

Hey, Maybe It's Time to Delete Some Old Chat Histories

New AI Beats Rivals in Hiding Secret Messages in Videos | HackerNoon

California-based Elderly Care Company Warns of Data Breach

NHS software provider faces steep fine after 2022 data breach exposed sensitive patient info

Advanced faces fine over LockBit attack that crippled NHS 111 | Computer Weekly

Express Services disclosed a data breach. One month later, they learned they had a second data security problem.

1.7M potentially pwned by payment services provider breach

California-based Elderly Care Company Warns of Data Breach

NHS software provider faces steep fine after 2022 data breach exposed sensitive patient info

Advanced faces fine over LockBit attack that crippled NHS 111 | Computer Weekly

Express Services disclosed a data breach. One month later, they learned they had a second data security problem.

1.7M potentially pwned by payment services provider breach

Antivirus Policy | TechRepublic

Java proposals would boost resistance to quantum computing attacks

Educational Byte: Cryptography and Its Connection to Cryptocurrencies | HackerNoon

Java proposals would boost resistance to quantum computing attacks

Educational Byte: Cryptography and Its Connection to Cryptocurrencies | HackerNoon

3 Simple Steps to Stop Apps From Collecting Your Data

Google CEO says the company should be a 'trusted source' in the election

From Misuse to Abuse: AI Risks and Attacks

Can Security Experts Leverage Generative AI Without Prompt Engineering Skills?

From Misuse to Abuse: AI Risks and Attacks

Can Security Experts Leverage Generative AI Without Prompt Engineering Skills?

What are the three types of access control? - London Business News | Londonlovesbusiness.com

Cyber firms need to centre their own resilience | Computer Weekly

David Wayne Aguilar of Consult Our Source - San Francisco Bay Times

FBI is losing track of classified and sensitive data, watchdog finds

#information-security
#information-security