Kenyan Issues New Guidance for Protecting Personal Data
Kenya has a data privacy law. Now it's up to the government to spread awareness, and enforce compliance.
https://www.darkreading.com/cyber-risk/kenyan-issues-new-guidance-for-protecting-personal-data
Hospitals Must Treat Patient Data and Health With Equal Care
All companies are under the data privacy compliance gun — but healthcare companies have a target on their backs.
https://www.darkreading.com/cyber-risk/hospitals-must-treat-patient-data-health-equal-care
War or Cost of Doing Business? Cyber Insurers Hashing Out Exclusions
Following a settlement over Merck's $700 million claims over NotPetya damages, questions remain about what constitutes an act of war for cyber-insurance policies.
https://www.darkreading.com/cyber-risk/war-or-not-cyber-insurers-still-hashing-out-exclusion
New Developer Tools Necessary to Boost Passkey Adoption
There is a lot of interest for password-less technology to simplify online access and identity, but they need to be built first. Developer tools to help build passkeys into web applications pave the w...
https://www.darkreading.com/application-security/new-developer-tools-necessary-passkey-adoption
7 Lessons Learned From Designing a DefCon CTF
Practical advice for anyone interested in elevating their cyber capture-the-flag events.
https://www.darkreading.com/cloud-security/7-lessons-learned-from-designing-a-defcon-ctf
Attacker Targets Hadoop YARN, Flint Servers in Stealthy Campaign
The adversary is exploiting two known misconfigurations in the big data technologies to drop a Monero cryptominer.
CES 2024: Will the Coolest New AI Gadgets Protect Your Privacy?
Consumer electronics manufacturers are innovating fast. Regulators are slow to keep up. Data privacy is in the balance.
https://www.darkreading.com/iot/ces-2024-coolest-ai-gadgets-protect-your-privacy
Bitcoin Prices Spike After SEC X Account Hack
A fraudulent post was taken down in less than 20 minutes, but that didn't stop it from gaining over 1 million views in that short period of time.
https://www.darkreading.com/application-security/bitcoin-prices-spike-after-sec-x-account-hack
Adapting Security to Protect AI/ML Systems
AI/ML libraries create much larger attack surfaces, and traditional IT security lacks several key capabilities for protecting them.
https://www.darkreading.com/vulnerabilities-threats/adapting-security-to-protect-ai-ml-systems
Has the Investment Bubble Burst in Israeli Cybersecurity?
Start-up funding for new Israeli cybersecurity companies has plummeted — and market-watchers expect that to continue throughout 2024.
https://www.darkreading.com/cybersecurity-operations/investment-bubble-burst-israeli-cybersecurity
Pikabot Malware Surfaces As Qakbot Replacement for Black Basta Attacks
An emerging threat actor, Water Curupira, is wielding a new, sophisticated loader in a series of thread-jacking phishing campaigns that precede ransomware.
BEC Gang Conspirator Sentenced to 10 Years in Prison
The Nigerian national, who was living in the US, also must pay over $1 million in restitution.
Who Is Behind Pro-Ukrainian Cyberattacks on Iran?
Are Ukrainian cyberattacks against Iranian targets a blip or the beginning of a new trend?
https://www.darkreading.com/cyberattacks-data-breaches/who-is-behind-pro-ukrainian-cyberattacks-iran
Patch Now: Critical Windows Kerberos Bug Bypasses Microsoft Security
A second, easy-to-exploit critical security vulnerability in Microsoft's first 2024 Patch Tuesday allows RCE within Hyper-Virtualization.
https://www.darkreading.com/ics-ot-security/critical-windows-kerberos-bug-microsoft-security-bypass
Hospitality Hackers Target Hotels' Booking.com Logins
Cyberattackers are checking into the accounts of Booking.com's hotel partners, hoping to steal their visitor data.
Path Traversal Bug Besets Popular Kyocera Office Printers
A printer bug could lead to much worse, in IT networks without proper segmentation.
https://www.darkreading.com/vulnerabilities-threats/path-traversal-bug-kyocera-office-printers
Ukraine Claims Revenge Hack Against Moscow Internet Provider
Reports say M9 Telecom servers were destroyed in retaliation for Russia-backed cyberattack against Kyivstar mobile phone operator.
Ransomware Gang Gives Toronto Zoo the Monkey Business
As the investigation continues, the zoo reports that it does not store the credit card information of its guests.
Turkish Cyber Threat Targets MSSQL Servers With Mimic Ransomware
Microsoft's database continues to attract cybercriminal attention; the nature of this wave's threat group is unknown, with the attacks having been exposed only after a happenstance OpSec lag.
Delinea Acquires Authomize to Strengthen Extended PAM