Security Teams Leverage GenAI for Threat Detection and Response

Security teams are tapping into the power offered by generative AI (GenAI) applications, as the top use cases within IT are automated code generation and debugging (35%) and enhanced cybersecurity (30%).

Read more

Kaiser Permanente notifies 13.4M patients of potential data exposure

Kaiser Permanente informed 13.4 million current and former members and patients who accessed its websites and mobile apps that certain online tracking technologies may have transmitted personal information to third-party vendors Google, Microsoft Bing, and X when members accessed those websites or apps.

Read more

Kaiser Permanente Discloses Data Breach Impacting 13.4 Million People

Kaiser Permanente, one of the largest not-for-profit providers of health care and coverage in the United States, is dealing with the fallout from a significant data breach that has affected more than 13 million individuals.

Read more

Experts weigh in on Omni Hotel ransomware incident

Omni Hotels & Resorts was the recent target of a ransomware attack by the Daixin Team ransomware group. The incident led to disruptions across Omni Hotels & Resorts, and the Daixin Team and claimed the theft of information pertaining to visitors from 2017 onwards.

Read more

Should Cybersecurity Leadership Finally be Professionalized?

Professionalization could be a solution to the increased cybersecurity risk for corporate and national security; and the mental health and even physical liberty of CISOs. But it’s not easy.

Read more

Small Business Transformations Put the AI in Main Street

Small businesses with big ambitions are turning to artificial intelligence (AI) to drive growth.

Read more

13.4M Kaiser Insurance Members Affected by Data Leak to Online Advertisers

Tracking code used for keeping tabs on how members navigated through the healthcare giant's online and mobile sites was oversharing a concerning amount of information.

Read more

Change Healthcare Admits to Making Ransom Payment to Protect Patient Data, Discloses That Hacker Broke in Days Before Attack

Parent company UnitedHealth Group has released further details about the devastating Change Healthcare attack that caused widespread damage throughout the United States, taking large chunks of revenue from some care providers and in some cases keeping patients from needed medication.

Read more

Expert Commentary: World Password Day

As compromised passwords/credentials continue to be one of the most common cause of data breaches, I wanted to reach out and share some expert commentary from leaders across the cybersecurity and tech space on the importance of this day as well as insights into best practices for improving password security posture.

Read more

U.S. Treasury, NSF Partner to Bolster Terrorism, Cyber Risk Modeling

The U.S. Department of the Treasury's Federal Insurance Office (FIO) announced a major new initiative this week to improve the insurance industry's capabilities around modeling and underwriting terrorism and catastrophic cyber risks.

Read more

AI Eases Coding, Paving the Way for Swifter Business Innovation

From Silicon Valley startups to tech giants, artificial intelligence (AI) is rapidly transforming the art of computer programming. It offers developers a powerful new toolkit to brainstorm ideas, write and refine code, and fix pesky bugs — all with the help of AI-powered assistants.

Read more

Healthcare Provider Kaiser Permanente Discloses Online Tracking Data Breach Impacting 13.4 Million

Healthcare provider Kaiser Permanente has disclosed a data breach stemming from online tracking that inadvertently exposed patient information with third-party advertisers.

Read more

Law enforcement indicts mastermind behind LockBit ransomware gang

The U.S. Justice Department on May 7 unsealed charges against a Russian national for his alleged role as the creator, developer and administrator of LockBit, arguably one of the most prolific ransomware gangs and an early pioneer of the ransomware-as-a-service (RaaS) model.

Read more

NASA Must Improve Spacecraft Cybersecurity, GAO Report Finds

NASA’s cybersecurity framework for spacecraft development is inconsistent and must be improved, according to a 34-page review by the U.S. Government Accountability Office (GAO).

Read more

Cybercriminals Target Dell Technologies, Ascension

Dell Technologies and Ascension, the largest Catholic hospital chain in the United States, both reported cyberattacks this week.

Read more

Popular Cyber Crime Forum Breach Forums Seized by Police

n a major blow to cybercrime, Breach Forums, a notorious online marketplace for stolen data, has been seized by the FBI and Department of Justice (DoJ). This unprecedented takedown includes not just the clear web domain, but also the dark web, escrow sections and Telegram accounts.

Read more

BreachForums seized by FBI for 2nd time

BreachForums, an infamous cybercrime site used to sell and publish stolen data, was seized by the Federal Bureau of Investigation on Wednesday.

Read more

Ransomware attack on Nissan North America results in employee data loss

Nissan North America (NNA) notified consumers on May 15 that a ransomware attack included the loss of certain personal information relating to current and former NNA employees, including Social Security numbers.

Read more

FBI and DOJ seize control of infamous BreachForums hacking site

The U.S. Federal Bureau of Investigation and Department of Justice have seized control of the infamous BreachForums hacking forum, at least according to a notice on the group’s site.

Read more

BreachForums Hacking Marketplace Taken Down Again

The US authorities appear to have disrupted a notorious hacking forum, just days after a threat actor advertised data stolen from Europol on the site.

Read more

Exclusive AI Insights from Tech Leaders at RSA Conference 2024

As the spotlight intensifies on how threat actors are leveraging AI to penetrate organizations' defenses, the call for investing in protection against AI attacks grows louder.

Read more

53,000 Employees' Social Security Numbers Exposed in Nissan Data Breach

Nissan has revealed that over 53,000 of its North America employees have had their personal data breached following a ransomware attack on its systems in late 2023.

Read more

SEC to require financial firms to have data breach incident plans

The Securities and Exchange Commission (SEC) announced new rules on Thursday requiring certain kinds of financial institutions to have well-defined plans for what to do when a data breach involving customer information occurs.

Read more

WebTPA reports 2.4 million plan members had their data stolen

WebTPA Employer Services, the Texas-based provider of administrative services to health insurance and benefits plans, reported to the Department of Health and Human Services on May 8 that more than 2.4 million plan members had their personal information stolen.

Read more

Nissan North America Data Breach Leaked the Personal Information of Over 53,000 Employees

Nissan has confirmed that the cyber attack on its North American subsidiary resulted in a data breach impacting over 53,000 current and former employees.

Read more

Microsoft’s AI ‘Recall’ feature raises security, privacy concerns

Microsoft revealed its AI-optimized Copilot+ PCs on Monday, including a new feature that has raised concern among some security experts.

Read more

Zendata Emerges From Stealth With Data Security, AI Governance Solutions

San Francisco-based Zendata emerged from stealth mode on Wednesday with data security and AI governance solutions, and announced raising $2 million in seed funding.

Read more

Data privacy startup Zendata launches with $2M in funding

Zendata Inc., a new startup that provides data privacy software for enterprises, launched this morning with $2 million in seed funding.

Read more

Zendata Emerges from Stealth with $2 Million Seed Funding to Address AI and Data Governance

Zendata, a leading provider of Artificial Intelligence (AI) governance and data privacy solutions, emerged from stealth with $2 million in funding to redefine how security teams manage data and security.

Read more

Zendata Emerges from Stealth with $2M, Democratizing AI and Data Governance

Zendata, a provider of AI governance and data privacy solutions, is emerging from stealth with the aim of increasing understanding around data usage. Backed by $2 million in a funding round led by PayPal Ventures, First-hand Alliance, Geek Ventures, and Altari Ventures, Zendata will continue to develop its platform while expanding its customer base.

Read more

Venture Deals

Read more

Zendata: AI-Based Data Governance And Privacy Solutions Company Raises $2 Million

Zendata, a leading provider of AI-based governance and data privacy solutions, emerged from stealth with $2 million in funding to redefine how security teams manage data and security

Read more

Zendata Emerges from Stealth with $2M Seed Funding to Address AI and Data Governance

Zendata, a leading provider of Artificial Intelligence (AI) governance and data privacy solutions, today emerged from stealth with $2 million in funding to redefine how security teams manage data and security.

Read more

Zendata Emerges from Stealth with $2 Million Seed Funding to Address AI and Data Governance

Zendata emerged from stealth with $2 million in funding to redefine how security teams manage data and security.

Read more

Zendata Emerges from Stealth with $2 Million Seed Funding to Address AI and Data Governance

Zendata emerged from stealth with $2 million in funding to redefine how security teams manage data and security. The seed round was led by PayPal Ventures, First-hand Alliance (operated by Salesforce Alumni), Geek Ventures, and Altari Ventures.

Read more

Zendata Scoops $2 Million Seed Funding to Address AI and Data Governance

Zendata, a leading provider of Artificial Intelligence (AI) governance and data privacy solutions, emerged from stealth with $2 million in funding to redefine how security teams manage data and security.

Read more

Zendata Raises $2M Seed Funding

Zendata, a San Francisco, CA-based provider of Artificial Intelligence (AI) governance and data privacy solutions, raised $2M in Seed funding.

Read more

Zendata secures $2m seed funding to transform AI governance

Zendata, an AI governance and data privacy solutions provider, has emerged from stealth mode with a significant boost of $2 million in seed funding.

Read more

Ticketmaster Data Breach Impacts 560 Million Customers

A Ticketmaster data breach reportedly is impacting the personal data of 560 million users.

Read more

Ticketmaster Hacked, Personal Data of 560 Million Customers Leaked, ShinyHunters Claim

The threat group ShinyHunters claims to have captured 1.3 terabytes of Ticketmaster customer data, with payment information allegedly included, and the group is threatening to release the personal data unless a ransom of $500,000 is paid.

Read more

Security Experts Wary of OpenAI’s Safety Play

OpenAI is making a move with its next-generation artificial intelligence model, but the company’s newly formed safety committee has some experts raising eyebrows.

Read more

OpenAI Board establishes Safety and Security Committee

A Safety and Security committee has been formed by the OpenAI Board with the purpose to provide suggestions about safety and security decisions for all OpenAI projects. One of the committee’s first tasks will be to assess and develop the processes and safeguards that OpenAI has in place within 90 days. After 90 days, the committee will share recommendations with the OpenAI Board for full review. Following the review, OpenAI will publicly release an update on adopted process changes.

Read more

ShinyHunters Hits Ticketmaster with Breach Impacting 560 Million Users

The infamous cybercrime syndicate ShinyHunters has struck again, this time claiming responsibility for an absolutely staggering data breach impacting live entertainment giants Ticketmaster and Live Nation.

Read more

Zendata raises $2M to redefine AI governance and data privacy with no-code platform

Zendata, a San Francisco-based startup, quietly announced this week its emergence from stealth mode with a $2 million seed funding round led by PayPal Ventures, First-hand Alliance, Geek Ventures, and Altari Ventures.

Read more

Storage and Data Protection News for the Week of May 31

Keeping tabs on all the most relevant storage and data protection news can be a time-consuming task. As a result, our editorial team aims to provide a summary of the top headlines from the last week, in this space.

Read more

560 Million Ticketmaster Customers Impacted by Recent Data Breach, Includes Financial Information

560 million Ticketmaster customers have had personal information and possibly payment card data exposed as part of a 1.3 TB theft by the ShinyHunters hacking group.

Read more

Security leaders respond to Ticketmaster breach

The ShinyHunters threat operation has taken responsibility for the hacking of Ticketmaster, claiming to have stolen the personal information of 560 million users.

Read more

Shadow AI: What Tech and Security Pros Need to Know

Generative artificial intelligence (A.I.) can feel overhyped at moments, but data suggests more enterprise workers are using it. A survey by security firm Cyberhaven, based on usage patterns of 3 million employees, shows the amount of corporate data added to A.I. platforms increased by 485 percent between March 2023 and March 2024.

Read more

Zendata: AI Governance And Data Privacy Company Raises $2 Million

AI governance and privacy solutions company Zendata emerged from stealth and raised $2 million in funding to transform how security teams manage data and security.

Read more

Silicon Valley on Edge as New AI Regulation Bill Advances in California

A new California legislative proposal, SB 1047, is sending ripples of concern through Silicon Valley. Introduced by State Sen. Scott Wiener, the bill seeks to implement “common sense safety standards” for companies developing large artificial intelligence (AI) models that surpass specific size and cost thresholds.

Read more

‘Honest Mistake’ Allowed Ascension Ransomware Attack

Read more

10 Million Devices Were Infected by Data-Stealing Malware in 2023

A surge in data-stealing malware incidents targeted nearly 10 million devices in 2023, with cybercriminals extracting an average of 50.9 login credentials per compromised device, according to a Kaspersky report.

Read more

Google Showcases Expanding Enterprise AI Capabilities at Cloud Next Conference

Google amped up its artificial intelligence offerings by unveiling a slew of new AI-powered capabilities during a keynote presentation Tuesday (April 9) at its annual Cloud Next event in Las Vegas.

Read more

CISA Issues Sisense Data Breach Warning, Potential Supply Chain 'Ripple Effect'

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a data breach at Sisense, a data analytics services provider.

Read more

Is your financial data safe this tax season?

Tax season is always a stressful time, and with the IRS tax deadline just around the corner, many individuals and businesses are rushing to get their returns filed in time. In this scramble, it’s easy to overlook the plethora of serious privacy and security concerns surrounding the sensitive financial data entrusted to tax preparation companies.

Read more

Securing Taxpayer Data: Strategies for Tax Prep Companies to Build Client Trust

Many Americans are turning to online tax filing services to simplify the process and avoid the hassle of paperwork. While these services offer convenience, they often come with a hidden cost: your personal and financial data.

Read more

Omni Hotels confirms data compromise in apparent ransomware attack

Omni Hotels & Resorts on April 14 confirmed that a limited amount of data was compromised in the March 29 Good Friday cyberattack on its systems. In a statement on its website, Omni said the impacted data may include customer names, email and mailing addresses, as well as select guest loyalty program information.

Read more

Bite-Sized AI: Why Smaller Models Like Microsoft’s Phi-3 Are Big for Business

Smaller artificial intelligence (AI) models, like Microsoft’s recently unveiled Phi-3-mini, are proving that bigger isn’t always better for business applications. These lightweight, efficient models can tackle content creation and data analysis without the hefty computational requirements and costs associated with their larger counterparts, experts say, making AI more accessible and cost-effective for businesses.

Read more

U.S. Treasury: Gen AI and Deepfakes Make it Easier to Con Financial Institutions

The U.S. Department of the Treasury has this week released a report detailing how fraudsters are using artificial intelligence (AI) to launch attacks against financial institutions.

Read more

US House forbids staff members from using AI chatbot Microsoft Copilot

Microsoft's planned release April 1 of Copilot for Security hit some speed bumps when the House of Representatives on March 29 banned the use of the software maker’s alternative chatbot to OpenAI’s ChatGPT by House staffers.

Read more

AT&T Data Leak Exposes 73 Million Customers' Information

AT&T has confirmed a data leak in which the information of 73 million current and former customers was released on a dark web criminal marketplace

Read more

AT&T Confirms 73M Customers Affected in Data Leak

AT&T denies any evidence of unauthorized access but admits that a data set released on the Dark Web including Social Security numbers and other sensitive information on tens of millions of customers is genuine.

Read more

AT&T confirms theft of 73M records, 7.6M current customers affected

AT&T confirmed the leak of 73 million records for the first time on Saturday, while resetting the stolen passcodes of 7.6 million current affected customers.

Read more

The Gately Report: N-able Says Business Resiliency Key to Thwarting Attacks

Ensuring business resiliency is key to preventing cyberattacks and minimizing the damage if an attack is successful.

Read more

AT&T Confirms Massive Data Breach Impacting 73 Million Customers

After weeks of denial, AT&T has finally acknowledged a massive data breach impacting 73 million current and former customer accounts. The telecom giant had initially claimed that a large trove of personal data leaked on the Dark Web did not originate from their systems.

Read more

Ransomware Gangs Targeting Backups To Maximize Payoffs

Data backups have become a must-hit target for ransomware actors, according to a report released by a cybersecurity company. The research, sponsored by Sophos and based on a survey of nearly 3,000 IT and security professionals across 14 countries, found that 94% of organizations hit by ransomware in the past year said that the threat actors attempted to compromise their backups during the attack.

Read more

Dataset of 73 Million AT&T Customers Linked to Dark Web Data Breach

AT&T has acknowledged the authenticity of a dataset containing the details of 73 million current and former customers after a hacker advertised it on a dark web marketplace around March 17.

Read more

Sophos: Backups are in Ransomware Groups’ Crosshairs

Enterprises that ignore their data backups, in contemplating ransomware, do so at their own peril, according to cybersecurity firm Sophos.

Read more

New AI Rules for US Federal Agencies

Vice President Kamala Harris has announced that the White House Office of Management and Budget (OMB) is issuing a new set of AI rules to be followed by all federal agencies.

Read more

‘Hugging Face’ AI models, customer data at risk to cross-tenant attacks

In an eye-opening piece of threat intelligence, the cloud-focused Wiz research team partnered with fast-growing AI-as-a-service provider Hugging Face to uncover flawed, malicious models using the "pickle format" that could put the data and artificial intelligence models of thousands of Hugging Face customers at risk.

Read more

Security leaders discuss the U.S. Treasury's concerns regarding AI

The U.S. Department of the Treasury released a report stating that artificial intelligence (AI) is contributing to an increase in financial fraud. The agency states that AI has allowed for fraudsters to mimic speech or video via AI, convincing a target to allow the fraudster access to financial accounts or information.

Read more

Payment-processing outages at UK retailers raise reliability issues for cashless transactions

Payment disruptions at supermarkets and fast-food outlets in the UK over the past week will force CIOs to consider whether improved reliability is something they can’t afford not to pay for.

Read more

Google to invest $1 billion in Kansas City data center

Google plans to build a new $1 billion data center in Kansas City, Missouri, marking the company’s first data center in the state.

Read more

US Legislation Targets Data Sharing With Foreign Adversaries

In a bipartisan effort, the US House of Representatives has approved legislation to curtail the sharing of Americans’ sensitive data with foreign entities.

Read more

Congress Passes Bill to Block Sale of Americans' Data to Adversaries

In a rare show of bipartisanship, the U.S. House of Representatives unanimously passed the Protecting Americans' Data from Foreign Adversaries Act this week.

Read more

US Treasury Warns of AI Dangers in the Financial Sector

The Treasury Department is sounding the alarm on cybersecurity risks posed by the growing use of artificial intelligence (AI) within the financial services sector.

Read more

World Backup Day 2024 - Expert Commentary

World Backup Day is one of the largest tech-related event days in the world, with a goal of spreading awareness about backups and data preservation. It was created to encourage people and organizations to take proactive steps to protect their personal and professional data to ensure it can be restored in the event of a cyberattack, hardware malfunction, accidental deletion, etc.

Read more

US Treasury Warns of Cybersecurity Risks AI Poses to Financial Sector

The U.S. Department of Treasury on March 27th released a report titled "Managing Artificial Intelligence-Specific Cybersecurity Risks in the Financial Services Sector." The report highlights the growing concern around artificial intelligence (AI) and its potential to introduce new cybersecurity threats to the financial industry.

Read more

Rise in AI Fraud Spurs Government-Financial Sector Cooperation to Protect Against It

A Treasury Department survey of banking and finance companies finds solutions for battling AI-enhanced scammers, opening new opportunities for tech businesses.

Read more

Security Experts Weigh in on Tik Tok Ban

The House of Representatives has voted to ban TikTok, which has previously faced scrutiny from various levels of the government. The vote will move to the Senate, where it will be determined whether or not this ban is to take effect.

Read more

TikTok Ban Raises Data Security, Control Questions

Congress voted in favor of banning the popular social media app TikTok on Wednesday, following its passage last week by the House Energy Committee. The bill requires any company controlled by a "foreign adversary" to be divested within 180 days.

Read more

TikTok Faces US Ban as House Votes to Compel ByteDance to Sell

The US House of Representatives has approved a bill on Wednesday, compelling ByteDance, the parent company of TikTok, to divest the social media platform or face a complete ban in the United States.

Read more

TikTok Ban Clears House but Experts Warn of Challenges Ahead

The U.S. House of Representatives has passed legislation that could lead to a nationwide ban on the popular video-sharing app TikTok, reigniting debates around data privacy, national security, and the limits of government oversight.

Read more

Study: 67% of US Websites Violate EU Data Protection Law

The study pointed out that while GDPR exclusively concerns Europe, websites originating in the U.S. still sell goods and services to EU customers. This lack of compliance could have significant implications for companies unless they agree to modify their practices for European visitors. Fines for violations of the GDPR range from $80,000 to $120,000.

Read more

Top U.S. Websites Run Afoul of European Data Privacy Law

Research by Zendata found that many leading U.S. websites have failed to abide by the EU's General Data Protection Regulation. Learn about the research’s key findings.

Read more

Google’s Differential Privacy Tools Still Don’t Solve Most of Our Data Problems

The Belgian Data Protection Authority (DPA) revealed that the International Advertising Bureau’s Transparency and Consent Forms (TCF) were non-compliant with GDPR regulations. And Google launched new differential privacy tools to help meet the growing demand for better consumer privacy, among other news.

Read more

Report: U.S. Web Sites Not Protecting Your Private Data

Zendata analyzed the top 1,000 U.S. Web sites (per Crunchbase.com data) during the Dec. 2021 period, using its own software for the analyses. Almost half of the sites (43.2 percent) didn't offer a choice of opting out of having one's data being sold.

Read more

Study Finds Top U.S. Web Sites Aren’t Transparent About Data Privacy

A study announced Friday by privacy compliance solutions vendor Zendata found woeful practices in place with the top 1,000 U.S. Web sites. The context is the European Union’s General Data Protection Regulation (GDPR), which went into effect years ago on May 25, 2018.

Read more

Is an “energy star label for cyber” the solution to IoT device security and privacy?

From baby monitors being hacked to front doors being unlocked through smart home locks, cybersecurity risks with Internet of Things (IoT) devices are becoming more apparent.

Read more
Load More

FBI and DOJ seize control of infamous BreachForums hacking site

The U.S. Federal Bureau of Investigation and Department of Justice have seized control of the infamous BreachForums hacking forum, at least according to a notice on the group’s site.

Read more

BreachForums Hacking Marketplace Taken Down Again

The US authorities appear to have disrupted a notorious hacking forum, just days after a threat actor advertised data stolen from Europol on the site.

Read more

Exclusive AI Insights from Tech Leaders at RSA Conference 2024

As the spotlight intensifies on how threat actors are leveraging AI to penetrate organizations' defenses, the call for investing in protection against AI attacks grows louder.

Read more

53,000 Employees' Social Security Numbers Exposed in Nissan Data Breach

Nissan has revealed that over 53,000 of its North America employees have had their personal data breached following a ransomware attack on its systems in late 2023.

Read more

SEC to require financial firms to have data breach incident plans

The Securities and Exchange Commission (SEC) announced new rules on Thursday requiring certain kinds of financial institutions to have well-defined plans for what to do when a data breach involving customer information occurs.

Read more

WebTPA reports 2.4 million plan members had their data stolen

WebTPA Employer Services, the Texas-based provider of administrative services to health insurance and benefits plans, reported to the Department of Health and Human Services on May 8 that more than 2.4 million plan members had their personal information stolen.

Read more