USA

CyberAv3ngers hit Unitronics PLCs at multiple US-based water facilities

CyberAv3ngers hit Unitronics PLCs at multiple US-based water facilities 04/12/2023 at 16:48 By Helga Labus Iran-affiliated attackers CyberAv3ngers continue to exploit vulnerable Unitronics programmable logic controllers (PLCs), US and Israeli authorities have said in a joint cybersecurity advisory. CyberAv3ngers targeting Unitronics PLCs CISA has recently confirmed that Iran-affiliated attackers took over a Unitronics Vision Series […]

CyberAv3ngers hit Unitronics PLCs at multiple US-based water facilities Read More »

CISA urges water facilities to secure their Unitronics PLCs

CISA urges water facilities to secure their Unitronics PLCs 30/11/2023 at 18:02 By Zeljka Zorz News that Iran-affiliated attackers have taken over a programmable logic controller (PLC) at a water system facility in Pennsylvania has been followed by a public alert urging other water authorities to immediately secure their own PLCs. “The cyber threat actors

CISA urges water facilities to secure their Unitronics PLCs Read More »

CISA offers cybersecurity services to non-federal orgs in critical infrastructure sector

CISA offers cybersecurity services to non-federal orgs in critical infrastructure sector 22/11/2023 at 12:47 By Helga Labus The Cybersecurity and Infrastructure Security Agency (CISA) has announced a pilot program that aims to offer cybersecurity services to critical infrastructure entities as they have become a common target in cyberattacks. “In alignment with CISA’s ‘Target Rich, Resource

CISA offers cybersecurity services to non-federal orgs in critical infrastructure sector Read More »

Exploring the global shift towards AI-specific legislation

Exploring the global shift towards AI-specific legislation 06/11/2023 at 09:01 By Mirko Zorz In this Help Net Security interview, Sarah Pearce, Partner at Hunton Andrews Kurth, offers insights into the evolving landscape of AI legislation and its global impact. Pearce explores key principles, public participation, the future of AI laws in a world of rapid

Exploring the global shift towards AI-specific legislation Read More »

SolarWinds and CISO accused of fraud, control failures

SolarWinds and CISO accused of fraud, control failures 31/10/2023 at 11:16 By Help Net Security The Securities and Exchange Commission announced charges against SolarWinds and its CISO, Timothy G. Brown, for fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities. The complaint alleges that, from at least its October 2018 initial

SolarWinds and CISO accused of fraud, control failures Read More »

White House issues Executive Order for safe, secure, and trustworthy AI

White House issues Executive Order for safe, secure, and trustworthy AI 30/10/2023 at 15:47 By Help Net Security President Biden issued a landmark Executive Order to ensure that America leads the way in seizing the promise and managing the risks of artificial intelligence (AI). New standards for AI safety and security As AI’s capabilities grow,

White House issues Executive Order for safe, secure, and trustworthy AI Read More »

The evolution of deception tactics from traditional to cyber warfare

The evolution of deception tactics from traditional to cyber warfare 18/10/2023 at 07:33 By Mirko Zorz Admiral James A. Winnefeld, USN (Ret.), is the former vice chairman of the Joint Chiefs of Staff and is an advisor to Acalvio Technologies. In this Help Net Security interview, he compares the strategies of traditional and cyber warfare,

The evolution of deception tactics from traditional to cyber warfare Read More »

Sic Permission Slip on data brokers that use your data

Sic Permission Slip on data brokers that use your data 12/10/2023 at 08:31 By Helga Labus Permission Slip, an iPhone and Android app developed by Consumer Reports, helps users ask companies and data brokers to stop sharing their personal data and/or delete it. The Permission Slip app (Source: Consumer Reports) US consumer data privacy laws

Sic Permission Slip on data brokers that use your data Read More »

Making privacy sustainable: Incorporating privacy into the ESG agenda

Making privacy sustainable: Incorporating privacy into the ESG agenda 04/10/2023 at 08:02 By Help Net Security Data breaches have been rising in frequency and magnitude over the last two decades. In fact, the Identity Theft Resource Centre (ITRC) found that between 2005 and 2020, data breach events in the US alone increased from 57 to

Making privacy sustainable: Incorporating privacy into the ESG agenda Read More »

FTX’s $3.4B crypto liquidation: What it means for crypto markets

FTX’s $3.4B crypto liquidation: What it means for crypto markets 29/09/2023 at 17:02 By Cointelegraph By Prashant Jha Bankrupt crypto exchange FTX has been approved to liquidate nearly $3.4 billion worth of crypto assets, creating a sense of panic among crypto investors, but experts say the phased liquidation schedule will ensure market stability. This article

FTX’s $3.4B crypto liquidation: What it means for crypto markets Read More »

Why California’s Delete Act matters for the whole country

Why California’s Delete Act matters for the whole country 29/09/2023 at 06:32 By Help Net Security The California State Legislature passed Senate Bill 362, known as the Delete Act, to simplify the process for consumers to ask to remove their personal data gathered by data brokers. In this Help Net Security video, Dr. Chris Pierson,

Why California’s Delete Act matters for the whole country Read More »

Binance exit aftershock: Can one resignation tip the crypto trust scales?

Binance exit aftershock: Can one resignation tip the crypto trust scales? 25/09/2023 at 17:02 By Cointelegraph By Alek Hidell The announcement of yet another top figure departing Binance coincided with an increased outflow of funds from the crypto platform. But can one executive resignation really have such an impact? This article is an excerpt from

Binance exit aftershock: Can one resignation tip the crypto trust scales? Read More »

Wyoming stablecoin: Are state digital currencies even possible?

Wyoming stablecoin: Are state digital currencies even possible? 14/09/2023 at 16:04 By Cointelegraph By David Attlee The Stable Token Commission continues researching the potential implementation of stable tokens in Wyoming. This article is an excerpt from Cointelegraph.com News View Original Source

Wyoming stablecoin: Are state digital currencies even possible? Read More »

How Chinese hackers got their hands on Microsoft’s token signing key

How Chinese hackers got their hands on Microsoft’s token signing key 07/09/2023 at 17:00 By Zeljka Zorz The mystery of how Chinese hackers managed to steal a crucial signing key that allowed them to breach Microsoft 365’s email service and access accounts of employees of 25 government agencies has been explained: they found it somewhere

How Chinese hackers got their hands on Microsoft’s token signing key Read More »

MITRE Caldera for OT now available as extension to open-source platform

MITRE Caldera for OT now available as extension to open-source platform 06/09/2023 at 09:32 By Help Net Security MITRE Caldera for OT is now publicly available as an extension to the open-source Caldera platform, allowing security teams to run automated adversary emulation exercises that are specifically focused on threats to operational technology (OT). The first

MITRE Caldera for OT now available as extension to open-source platform Read More »

Qakbot botnet disrupted, malware removed from 700,000+ victim computers

Qakbot botnet disrupted, malware removed from 700,000+ victim computers 29/08/2023 at 21:19 By Zeljka Zorz The Qakbot botnet has been crippled by the US Department of Justice (DOJ): 52 of its servers have been seized and the popular malware loader has been removed from over 700,000 victim computers around the world. “To disrupt the botnet,

Qakbot botnet disrupted, malware removed from 700,000+ victim computers Read More »

Lazarus Group exploited ManageEngine vulnerability to target critical infrastructure

Lazarus Group exploited ManageEngine vulnerability to target critical infrastructure 25/08/2023 at 15:36 By Helga Labus North Korean state-sponsored hackers Lazarus Group have been exploiting a ManageEngine ServiceDesk vulnerability (CVE-2022-47966) to target internet backbone infrastructure and healthcare institutions in Europe and the US. The group leveraged the vulnerability to deploy QuiteRAT, downloaded from an IP address

Lazarus Group exploited ManageEngine vulnerability to target critical infrastructure Read More »

Large-scale breaches overshadow decline in number of healthcare data incidents

Large-scale breaches overshadow decline in number of healthcare data incidents 23/08/2023 at 06:04 By Help Net Security While H1 2023 saw an encouraging decrease in the overall number of data breaches impacting healthcare organizations, it was overshadowed by large-scale breaches resulting in a significant increase in the number of individuals affected, which reached record levels,

Large-scale breaches overshadow decline in number of healthcare data incidents Read More »

Scroll to Top