Apple’s decision to allow third-party wallets access to its NFC and Secure Element (SE) technology is a game-changer. This move will transform digital payments and digital identity management by enabling secure handling of cryptographic keys. Opening up the SE creates room for competition, encouraging innovation. Even loyal Apple users may explore alternatives, potentially leading to […]
On Wednesday, August 14, 2024, Citizen Lab and Access Now issued a warning about spear-phishing attacks that are using ‘encrypted’ and ‘secured’ PDF files to lure victims to phishing sites. These sites aim to steal login credentials for Proton and Google accounts. According to these organizations, the attacks have been carried out by two groups […]
Twitter (now “X”) is accused of using personal data from over 60 million EU users to train its AI without their consent, sparking multiple GDPR complaints. The Irish Data Protection Commission initiated court proceedings against Twitter, but critics argue it focused on minor issues rather than the core GDPR violations. Privacy group noyb filed complaints […]
This is the definitive text, accompanied by the proposed UNGA resolution and interpretative note, which will be submitted for adoption on Thursday morning. Today’s formal session has been canceled to allow delegations to discuss and find common ground on the remaining areas of disagreement. Delegates need to decide on the final name for the convention. […]
The FBI, along with CISA, advises businesses and organizations to choose software suppliers that prioritize security from the development phase. This approach aims to create a safer software landscape. To assist organizations, the FBI and CISA have released the ‘Secure by Demand Guide’. This document outlines how to evaluate software suppliers’ security practices during procurement. […]
The UK IT supplier Advanced may face a £6 million fine from the Information Commissioner’s Office (ICO) for a ransomware attack in August 2022. This attack severely disrupted British healthcare services, impacting emergency response and patient care. The ransomware attack forced critical healthcare systems, including the NHS 111 emergency number, to revert to manual operations. […]
Approximately 400 stolen GenAI account credentials are listed daily on dark web platforms, posing a significant threat to corporate security. Credentials for platforms such as GPT, Quillbot, Notion, HuggingFace, and Replit are highly sought after by cybercriminals. The majority of these credentials are harvested through infostealer malware that infects users’ browsers. Although the LLM Paradise […]
The UK’s Electoral Commission leaked personal details of 40 million voters due to unpatched vulnerabilities in their Microsoft Exchange Server, spanning registrations from 2014 to 2022. Hackers accessed the server through known ProxyShell vulnerabilities in August and October 2021, installing malware and sending spam before the issues were detected and partially mitigated. The ICO investigation […]
Andreas Cleve, CEO of Corti, expresses concerns that the EU’s new AI Act could impose hefty compliance costs, acting as a “tax” on small enterprises. While he acknowledges the need for regulation, he fears it might stifle innovation in Europe’s emerging AI industry. The AI Act requires significant financial and time investments for compliance, with […]
OnlyFake’s Telegram channel offered realistic fake IDs from 26 countries for just $15, bypassing KYC checks on numerous crypto platforms. Using AI, these IDs could be generated within seconds, complete with chosen credentials and facial pictures, mimicking real-life settings for authenticity. Criminals utilizing AI fraud pose a significant challenge to fintech platforms, with incidents like […]