Insider Threats

cyber insurers, CaaS, insurance, AI-related, security, insurance, cybersecurity, cyber insurance, cybersecurity, insurance

AI Cyberattacks Rise but Businesses Still Lack Insurance

Nathan Eddy | October 30, 2024 | AI Security, cyber, Cybersecurity, insurance, nationwide, risk

Cybersecurity is a leading concern for risk managers as AI-related cyber risks surge, and despite growing investments, many businesses still lack comprehensive cyber insurance, according to a Nationwide survey ...

Security Boulevard

Kia’s Huge Security Hole: FIXED (Finally)

Richi Jennings | September 30, 2024 | Car Dealer, connected car security, Connected Cars, connected vehicle, Connected Vehicles, connected-car, Consumer IoT, Internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, iot, Kia, Korea, SB Blogwatch, South Korea, southkorea

Connected cars considered crud: Kia promises bug never exploited. But even 10-year-old cars were vulnerable ...

Security Boulevard

security, employees, insider, data classification, threats, detection, prevention, border, search, insider threats, SaaS ransomware insider threats business Data

The Importance of Cybersecurity Awareness and Insider Threat Management

Jason Lohrey | September 23, 2024 | cyber attacks, Cybersecurity, insider threats

Insider threats, which involve individuals within an organization who exploit their access for malicious purposes or unwittingly cause security breaches due to human error, are a significant security challenge ...

Security Boulevard

Yikes, YubiKey Vulnerable — ‘EUCLEAK’ FIDO FAIL?

Richi Jennings | September 4, 2024 | CVE-2024-45678, ECDSA, EUCLEAK, FIDO, FIDO2, Infineon, Passkeys, SB Blogwatch, YSA-2024-03, Yubikey

USB MFA SCA😱: Infineon hardware and software blamed for timing side-channel attack on popular auth tokens ...

Security Boulevard

WTH? DPRK WFH Ransomware Redux: 3rd Person Charged

Richi Jennings | August 13, 2024 | Andrew M., DPRK, Korea, Korean military, Korean ransomware, Matthew Isaac Knoot, North Korea, North Korean Hacking, North Korean Threat Actors, northkorea, Noth Korea, SB Blogwatch

North Korean army of remote IT workers enabled by Matthew Isaac Knoot, alleges DoJ ...

Security Boulevard

Student Devices Wiped — Mobile Guardian Hacked AGAIN

Richi Jennings | August 7, 2024 | Blackmail, cybersecurity education, Cybersecurity in education, DevOps Education, DevSecOps Education, MDM, Mobile Device Management (MDM), Mobile Guardian, Ransomware, SB Blogwatch, singapore

Hackers ate my homework: MDM software for schools is breached for second time this year—13,000 devices wiped in Singapore alone ...

Security Boulevard

TikTok Abuses Kids, say DoJ and FTC

Richi Jennings | August 5, 2024 | Bytedance, children, Children and smartphones, Children's Online Privacy Protection Act (COPPA), china, chinese government, Coppa, Privacy, SB Blogwatch, , spyware, TikTok, TikTok Ban, Won’t somebody think of the children?

For You Plague: U.S. Justice Dept. and Federal Trade Commission file lawsuit, alleging TikTok broke the COPPA law, plus a previous injunction ...

Security Boulevard

An open padlock on a PC keyboard, with the word “FAIL” superimposed

PKfail: 800+ Major PC Models have Insecure ‘Secure Boot’

Richi Jennings | July 26, 2024 | Binarly, BIOS, BIOS update, Certificate and Key Management, hardware supply chain, key management, Key Management Problem, PKfail, Private Key Management, SB Blogwatch, secure boot, UEFI, UEFI Failing, UEFI firmware, UEFI vulnerabilities, Unified Extensible Firmware Interface (UEFI)

Big BIOS bother: Hundreds of PC models from vendors such as HP, Lenovo, Dell, Intel, Acer and Gigabyte shipped with useless boot protection—using private keys that aren’t private ...

Security Boulevard

A Microsoft Windows “blue screen of death”

Global Outage Outrage: CrowdStrike Security Tool Blamed

Richi Jennings | July 19, 2024 | azure, Azure cloud, cloud outage, CrowdStrike, CrowdStrike Falcon, CrowdStrike Falcon XDR, Downtime and outages, m365, Microsoft 365, Microsoft 365 (365), Microsoft 365 outage, Microsoft 365 service outage alert, Microsoft Azure, Microsoft Azure Security, outage, Outage Investigation, SB Blogwatch

BSODs beyond belief: A buggy update to CrowdStrike Falcon made Windows PCs and servers crash—worldwide ...

Security Boulevard

A still from the 1928 animated short, “Steamboat Willie”—the first appearance of Mickey Mouse

Disney 1.2 TB Slack Hack: NullBulge Claims Leak is its Own

Richi Jennings | July 17, 2024 | Disney, hacktivism, Hacktivist, Hacktivists, hacktivity, NullBulge, SB Blogwatch, slack, Slack breach

Steamboat bloat: Hacktivist group wields infostealer Trojan, leaks 1,200 GB of mouse droppings ...

Security Boulevard

Insider Threats

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On