Terravision, a company that arranges bus transport to and from European airports, has leaked the data of more than two million customers. This concerns names, telephone numbers, e-mail addresses, salted password hashes and in some cases dates of birth and country of origin. Details about the data breach are not yet known. Via ID Control […]
ChatGPT is an advanced tool that can generate meaningful results with minimal user expertise, but what are the security implications of ChatGPT? The quality of ChatGPT’s output depends on factors such as specificity, clarity, and context. Users must understand ChatGPT’s capabilities and limitations and evaluate its output critically. Effective utilization of ChatGPT involves prompt engineering […]
Researchers have found malware on the systems of 3CX, which provides software for VoIP solutions worldwide and fell victim to a supply chain attack. Both macOS and Windows systems of the software supplier turned out to be infected, 3CX said in an update about the attack. How the infections could have occurred has still not […]
CISA updated the Zero Trust Maturity Model (ZTMM) which provides a roadmap for agencies to reference as they transition towards a zero-trust architecture. ZTMM also provides a gradient of implementation across five distinct pillars to facilitate federal implementation, allowing agencies to make minor advancements toward optimization over time.CISA encourages state, local, tribal, and territorial governments, and […]
The Italian Data Protection Authority has ordered, with immediate effect, the temporary restriction of the processing of Italian users’ dataagainst OpenAI, the U.S.-based company that developed and operates the platform. At the same time, the Authority opened an investigation.ChatGPT, the best-known relational artificial intelligence software capable of simulating and processing human conversations, had suffered a […]
Active Directory (AD) is a powerful authentication and directory service used by organizations worldwide. With this ubiquity and power comes the potential for abuse. Insider threats offer some of the most potentials for destruction. Many internal users have over-provisioned access and visibility into the internal network. Insiders’ level of access and trust in a network […]
Fake recruiters on LinkedIn earn a victim’s trust, and then convinces them to engage on WhatsApp or by email, where they can send a malware dropper according to Mandiant.
Did you know that your Ring doorbell video footage could be part of police surveillance? Ring saw search warrants increase 33 percent in 2022 from the previous year. The lack of legal controls on what police can ask for, and judges failing to properly scrutinize these warrants, opens the door for even indoor home footage […]
In a recent report Cyberhaven detected and blocked requests to input data into ChatGPT from 4.2% of the 1.6 million workers at its client companies because of the risk of leaking confidential information, client data, source code, or regulated information to the ChatGPT. In one case, an executive cut and pasted the firm’s 2023 strategy document into […]
Almost half of all Dutch company websites are vulnerable to attacks by cyber criminals due to vulnerabilities in software, configurations and web services. The result is often data theft or extortion through ransomware. “Entrepreneurs are insufficiently aware of the risks,” says cybersecurity specialist ID Control based on three studies of web shops, government websites and […]