2023 Data Breach Investigations Report of which the dataset currentlycontains 953,894 incidents, of which 254,968 are confirmed breaches shows that the use of stolen credentials forms 44.7% of the cases. But what else can we learn? 74% of all breaches include the human element, with people being involved either via Error,Privilege Misuse, Use of stolen […]
Large language models (LLMs), such as ChatGPT, have gained immense popularity and are being rapidly deployed by various organizations.LLMs are trained on large amounts of text-based data and use deep learning to generate human-like text. While LLMs have impressive capabilities, they are not perfect and can make mistakes, hallucinate incorrect facts, and exhibit biases. Concerns […]
An investigation by The Observer reveals that 20 NHS trusts in the UK have been sharing private details of patients’ medical conditions, appointments, and treatments with Facebook without consent. A covert tracking tool called Meta Pixel was found on the websites of these NHS trusts, collecting browsing information and sharing it with Facebook, in violation […]
Did you ever wonder what your car processes for data related to you? Event Data Recorders (EDRs) are installed in over 90% of vehicles and record technical information before and after a crash, including speed, accelerator and brake position, seat belt usage, and airbag deployment.On-Board Diagnostic Information can be accessed through the OBD-II port, required […]
Phishers are using a new technique called “file archiver in the browser” to trick victims. They create a phishing landing page that looks like legitimate file archiver software using HTML and CSS. The landing page is hosted on a .ZIP domain, making it appear more legitimate. Victims are redirected to a credential harvesting page when […]
German newspaper Handelsbatt received 100GB of data from informants at Tesla. The data contains information on thousands of complaints regarding Tesla’s Autopilot self-driving feature. The collection of data includes 23,000 internal files from 2015 to 2022. Complaints detail issues with self-acceleration, brake function, involuntary emergency braking, and phantom stops.More than 1,000 crash reports are included […]
The FBI and the US Secret Service NSA have published an updated guide to stop ransomware. The revised guide includes lessons learned from the past few years and additional recommendations to limit the impact of ransomware. The manual describes several steps that are important in preventing ransomware or limiting the impact, such as preparing for […]
Meta is expected to face a record fine of higher than €746 million later over its transfer of Facebook’s European user data to US servers, according to Reuters.Concerns have been raised over these trans-Atlantic data flows because they could leave Europeans exposed to the US’s weaker privacy laws. Meta expects the proposed new EU-US Data […]
Two-factor authentication (2FA) is widely recommended for security, but the devil is in the details. Google recently faced issues with their Google Authenticator app, causing concern in the security community.Authenticator apps like Google Authenticator, Microsoft Authenticator, and Authy generate time-dependent six-digit numbers based on a secret key. This system, known as time-based one-time passwords (TOTP), […]
Cybercriminals have employed a sophisticated attack method by infecting TP-Link router firmware to target European Union (EU) entities, as reported by Bleeping Computer.The attackers have compromised the firmware of TP-Link routers, a popular brand used widely across Europe, to gain unauthorized access and launch cyberattacks.The infected firmware allows hackers to control the compromised routers remotely, […]