AI Data Protection GDPR

X’s AI ambitions under fire

Twitter (now “X”) is accused of using personal data from over 60 million EU users to train its AI without their consent, sparking multiple GDPR complaints. The Irish Data Protection Commission initiated court proceedings against Twitter, but critics argue it focused on minor issues rather than the core GDPR violations. Privacy group noyb filed complaints […]

Cybersecurity

Draft United Nations Convention Against Cybercrime

This is the definitive text, accompanied by the proposed UNGA resolution and interpretative note, which will be submitted for adoption on Thursday morning. Today’s formal session has been canceled to allow delegations to discuss and find common ground on the remaining areas of disagreement. Delegates need to decide on the final name for the convention. […]

Cybersecurity

FBI urges prioritizing security in software suppliers

The FBI, along with CISA, advises businesses and organizations to choose software suppliers that prioritize security from the development phase. This approach aims to create a safer software landscape. To assist organizations, the FBI and CISA have released the ‘Secure by Demand Guide’. This document outlines how to evaluate software suppliers’ security practices during procurement. […]

Ransomware

UK IT supplier faces £6 Million fine after ransomware attack

The UK IT supplier Advanced may face a £6 million fine from the Information Commissioner’s Office (ICO) for a ransomware attack in August 2022. This attack severely disrupted British healthcare services, impacting emergency response and patient care. The ransomware attack forced critical healthcare systems, including the NHS 111 emergency number, to revert to manual operations. […]

Data Breaches Malware

Stolen GenAI credentials flood Dark Web

Approximately 400 stolen GenAI account credentials are listed daily on dark web platforms, posing a significant threat to corporate security. Credentials for platforms such as GPT, Quillbot, Notion, HuggingFace, and Replit are highly sought after by cybercriminals. The majority of these credentials are harvested through infostealer malware that infects users’ browsers. Although the LLM Paradise […]

Data Breach Hack

British voter data breach exposes 40 million

The UK’s Electoral Commission leaked personal details of 40 million voters due to unpatched vulnerabilities in their Microsoft Exchange Server, spanning registrations from 2014 to 2022. Hackers accessed the server through known ProxyShell vulnerabilities in August and October 2021, installing malware and sending spam before the issues were detected and partially mitigated. The ICO investigation […]

AI

Europe’s AI Act: Bridging Innovation and Regulation

Andreas Cleve, CEO of Corti, expresses concerns that the EU’s new AI Act could impose hefty compliance costs, acting as a “tax” on small enterprises. While he acknowledges the need for regulation, he fears it might stifle innovation in Europe’s emerging AI industry. The AI Act requires significant financial and time investments for compliance, with […]

AI Fraud

Rise of AI-generated fake IDs with negative results for identity verification

OnlyFake’s Telegram channel offered realistic fake IDs from 26 countries for just $15, bypassing KYC checks on numerous crypto platforms. Using AI, these IDs could be generated within seconds, complete with chosen credentials and facial pictures, mimicking real-life settings for authenticity. Criminals utilizing AI fraud pose a significant challenge to fintech platforms, with incidents like […]

Business Continuity

Major Microsoft Team Outage Causes Widespread Business Discontinuity

Microsoft Teams is currently experiencing a major outage, leading to widespread disruptions that include connectivity issues, login problems, and message delays. The suspected culprit behind this disruption is a networking issue, prompting Microsoft to initiate ongoing efforts to perform a failover and address the problem. As the incident is under investigation, users are grappling with […]