CyberSecure Specialist

15 May

Zut alors! Raclage crapuleux! Clearview AI in 20% more trouble in France

Information

by Paul Ducklin Here’s how the French data protection regulator describes controversial facial recognition service Clearview AI, in its own words, in clear and plain English: CLEARVIEW AI collects photographs from a wide range of websites, including social networks, and sells access to its database of images of people through a search engine in which an individual can be searched using a photograph. The company offers this service to law enforcement authorities. Facial recognition technology…

Read More
15 May

New ransomware gang RA Group quickly expanding operations

Data Breaches, Malware, Social Engineering

Researchers warn of a new ransomware threat dubbed RA Group that also engages in data theft and extortion and has been hitting organizations since late April. The group’s ransomware program is built from the leaked source code of a different threat called Babuk. “Like other ransomware actors, RA Group also operates a data leak site in which they threaten to publish the data exfiltrated from victims who fail to contact them within a specified time…

Read More
15 May

Law enforcement crackdowns and new techniques are forcing cybercriminals to pivot

Data Breaches, Malware, Social Engineering

It can seem like cybercriminals are running rampant across the world’s digital infrastructure, launching ransomware attacks, scams, and outright thefts with impunity. Over the last year, however, US and global authorities seized $112 million from cryptocurrency investment scams, disrupted the Hive ransomware group, broke up online illegal drug marketplaces, and sanctioned crypto money launderers, among other operations to crack down on internet-enabled crimes. These developments highlight how quickly investigative tools have evolved to track and…

Read More
15 May

New security tool lets you bypass SSL errors

Data Breaches, Malware, Social Engineering

Endpoint-based web and cloud security provider Dope Security has launched a new instant secure socket layer (SSL) error resolution feature on its secure web gateway (SWG) offering, Dope.swg. The new feature is added to simplify SSL inspection conducted by Dope’s SWG and helps admins bypass SSL errors generated as a result of the inspection. “Dope’s main differentiation is its ‘fly-direct’ architecture — rather than re-route all of your Internet traffic to a data center for…

Read More
15 May

Brightly Software Notifying 3 Million SchoolDude Users of Data Breach

Data Breaches, Information, News

Brightly Software last week started informing roughly three million individuals that their personal information might have been compromised in a recent data breach. A Siemens subsidiary, Brightly provides asset management solutions, including CMMS, EAM, IoT remote monitoring, strategic asset management, and more. The company claims to have over 12,000 clients worldwide, across different industries. On May 11, the company started sending out notification letters to its SchoolDude users, to flag a cybersecurity incident that occurred…

Read More
14 May

Why you should spring clean your home network and audit your backups

Information

Do you know how many devices are connected to your home network? You don’t? This is precisely why it’s time for a network audit. The rite of spring cleaning is clearly good for your home and your mind and well-being, but trust me, your home network and all the devices connected to it could use it, too. Yesterday, we looked at a few simple ways to breathe new life into your computers, smartphones and tablets.…

Read More
14 May

Cleaning up your social media and passwords: What to trash and what to treasure

Information

Give your social media presence a good spring scrubbing, audit your passwords and other easy ways to bring order to your digital chaos Spring has sprung, the sun is out longer, and the birds’ chirping, peeping and tweeting in the trees have put that much-needed pep in your step. With the arrival of spring also comes the annual rite of decluttering and cleaning your living space. If you’ve already given your home a major refresh,…

Read More
14 May

Steer clear of tax scams – Week in security with Tony Anscombe

Information

In a rush to file your taxes? Watch out for cybercriminals preying on stressed taxpayers as Tax Day looms large on the horizon. The IRS-approved tax return filing service eFile.com has been caught compromising people’s devices with malware for weeks, serving a strong reminder that cybercriminals are also well aware of the fact that it’s the height of tax season. We’re now down to its last days, and chances are that you have yet to…

Read More
13 May

10 things to look out for when buying a password manager

Information

Here’s how to choose the right password vault for you and what exactly to consider when weighing your options Wave after wave of new technologies have threatened to bring about the end of the password over the years. But none so far have succeeded. That leaves most users with a problem. Passwords are a potential security risk, which is particularly bad news when you realize what they’re protecting – everything from your messaging and social…

Read More
13 May

What are the cybersecurity concerns of SMBs by sector?

Information

Some sectors have high confidence in their in-house cybersecurity expertise, while others prefer to enlist the support of an external provider to keep their systems and data secured While threat detections continue to rise, the widening cybersecurity skills gap is leaving businesses exposed. It is an issue particularly felt by SMBs forced to rein in their spending due to the current economic climate. With this in mind, we recently surveyed over 700 SMBs across a…

Read More