The U.S. Senate has approved the National Defense Authorization Act (NDAA), circumventing previous efforts to attach amendments aimed at curtailing excessive government surveillance practices. This legislation, deemed essential by its proponents, is now poised for President Joe Biden’s signature, thereby enshrining significant enhancements to the contentious Section 702 of the…
In recent developments within the cybersecurity landscape, the Serbian hacker group, IntelBroker, has made headlines for its audacious breaches of major corporations, including Apple Inc., Facebook Marketplace, AMD, and Zscaler. They have recently claimed to have compromised Cisco’s infrastructure, reportedly releasing around 2.9 GB of data purporting to originate from…
Third-Party Risk Management, Governance & Risk Management Sonar Targets Open-Source Library Risks, Enhancing DevSecOps Michael Novinson (@MichaelNovinson) • December 17, 2024 Harry Wang, Vice President of Growth and New Ventures at Sonar (Image: Sonar) Sonar, a Geneva-based code security provider, has announced its intention to acquire Tidelift, a startup with…
Data Breach at Regional Care Affects 225,000 Individuals Source: SecurityWeek A significant data breach has occurred at Regional Care, impacting approximately 225,000 individuals. The breach has raised alarms regarding the security of sensitive personal information contained within the healthcare sector, highlighting persistent vulnerabilities in data protection mechanisms. This incident underscores…
KEY POINTS The Androxgh0st botnet has made significant advancements in its operations, now exploiting a total of 27 vulnerabilities that impact web servers, Internet of Things (IoT) devices, and various technologies, including prominent platforms like Cisco ASA, Atlassian JIRA, and TP-Link routers. This development underscores the urgency for cyber defense…
Interlock Ransomware Attacks Texas Tech University Health Sciences Center A lesser-known ransomware group, Interlock, has launched a significant cyberattack against the Texas Tech University Health Sciences Center, jeopardizing the personal data of nearly 1.46 million patients. This group claims to have breached the university’s network in September 2024, exfiltrating over…
Attack Surface Management, Governance & Risk Management, Patch Management Over 200 Vulnerable Servers Targeted by Ransomware Group Amid Growing Exploits Mathew J. Schwartz (euroinfosec) • December 18, 2024 Recent reports indicate over 200 Cleo managed file-transfer servers remain publicly accessible and without necessary updates, posing significant risks in light of…
GDPR Compliance: A Governance Imperative for Modern Businesses As the landscape of data privacy continues to evolve, the importance of compliance with the General Data Protection Regulation (GDPR) has reached an urgency unprecedented in the business world. Thomas George, president of Cybermedia Research, emphasizes that companies, as legal entities, are…
Concerns Growing Over Online Drug Trafficking on Social Media Platforms A recent alarming trend has emerged on social media platforms, with dealers increasingly exploiting spaces like Instagram and X (formerly Twitter) to promote illicit drug sales. A disturbing message from an Instagram account inquired whether I would be interested in…
