TikTok ‘Ban’ — ByteDance CEO and EFF are BFFs
Richi Jennings | | Bytedance, china, chinese government, EFF, Electronic Frontier Foundation, Privacy, SB Blogwatch, Shou Zi Chew, social media, spyware, TikTok, TikTok Ban7521 momentum builds: Shou Zi Chew plays for time, while Electronic Frontier Foundation says TikTok-kill bill is DOA ... Read More
French Gov. Leaks 43 Million People’s Data — ‘France Travail’ Says Sorry
Richi Jennings | | Alexandre Saubot, Cap emploi, CNIL, cyber attacks on governm, devops in government, DevSecOps in Government, digital government, European Governments, france, France Travail, government, Government & Regulatory News, government agencies, Government Authority, SB BlogwatchLa grande cybermalveillance: French government’s employment agency loses control of citizens’ data after biggest breach in Gallic history ... Read More
HHS to Investigate Change’s Security in Wake of Crippling Cyberattack
The U.S. Department of Health and Human Services (HHS) is opening an investigation into UnitedHealth and its Change Healthcare subsidiary following a ransomware attack that for three weeks has essentially shut down payments to health care providers and hobbled pharmacies trying to fill prescriptions. Noting the “unprecedented magnitude of this ... Read More
Google Splashes the Cash in Bug Bounty Bonanza: $59 Million to Date
Richi Jennings | | alphabet, bounty, bug bounty, bug bounty program, bugbounty, ethical hacker, ethical hackers, ethical hacking, google, SB Blogwatch, Vulnerability Rewards Program (VRP), white hat, white hat hacker, white hat hackers, White Hat Security, White Hats, WhiteHat, whitehat hackers, WhiteHat SecurityWanna be a VRP VIP? Last year, $GOOG paid $10 million to ethical hackers for finding vulnerabilities ... Read More
DOJ Warns Using AI in Crimes Will Mean Harsher Sentences
U.S. Deputy Attorney General Lisa Monaco last month was in the UK speaking at the University of Oxford and outlining the different paths the Justice Department is taking to address the benefits and threats associated with AI. Monaco spoke about how existing laws offer a “firm foundation” as the law ... Read More
Broadcom Merging Carbon Black, Symantec to Create Security Unit
Carbon Black’s uncertain future following the closing of Broadcom’s $69 billion acquisition of VMware in November is now settled, with the security software business merging with Symantec to form Broadcom’s new Enterprise Security Group. Broadcom will make “significant investments in both brands” and offer both Carbon Black and Symantec product ... Read More
Irony of Ironies: CISA Hacked — ‘by China’
Richi Jennings | | china, china espionage, Chinese, Chinese Communists, Chinese drive-by attack, chinese government, chinese hacker, Chinese hackers, Chinese state-sponsored hacking group, Chinese Threat Actors, CIRCIA, cisa, CISA.gov, CVE-2023-46805, CVE-2024-21887, CVE-2024-21893, Cyber Security and Infrastructure Security Agency, Cybersecurity & Infrastructure Security Agency, Cybersecurity and Infrastructure Agency, Data Stolen By China, federal agency, Ivanti, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti security, Ivanti Vulnerabilities, Ivanti Zero day vulnerability, Ligolo, Magnet Goblin, NerbianRAT, NSA/CISA, Peoples Republic of China, SB Blogwatch, Volt Typhoon, WARPWIREFree rides and traffic jams: U.S. Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti ... Read More
Threat Groups Rush to Exploit JetBrains’ TeamCity CI/CD Security Flaws
The cyberthreats to users of JetBrains’ TeamCity CI/CD platform continue to mount a week after the company issued two fixes to security vulnerabilities, with one cybersecurity vendor noting a ransomware attack that included exploiting the flaws for initial access and a search engine reporting that 1,442 vulnerable instances showed signs ... Read More
Beware of OpenAI and ChatGPT-4 Turbo in Healthcare Orgs’ API Attack Surface
Doug Dooley | | API security, Attack Surface, ChatGPT, Cybersecurity, health care, healthcare, OpenAIWith every new healthcare API integration that OpenAI gets access to, the attack surface grows, creating new opportunities for attackers ... Read More
Change Healthcare Gets Pharmacy Systems Up After Ransomware Attack
There is some relief coming for beleaguered pharmacies, hospitals, and patient now that UnitedHealth Group has the electronic prescribing systems for its Change Healthcare business up and running after being down for weeks following an attack last month by ransomware group BlackCat. In the wake of the February 21 attack, ... Read More
