IT Security RSS Feed for 2025-01-25

Posted on Edited on In Word count in article: 35k Reading time ≈ 32 mins.

IT Security RSS Feed for 2025-01-25

MPs and peers start inquiry into Russian and Chinese sabotage threats to subsea internet cables

Read more

Published: Fri, 24 Jan 2025 11:45:00 GMT

MPs and Peers Launch Inquiry into Russian and Chinese Threats to Subsea Internet Cables

Members of Parliament (MPs) and members of the House of Lords (peers) have launched an inquiry into the threats posed to subsea internet cables by Russia and China.

Background:

Subsea internet cables carry around 98% of the world’s internet traffic, connecting continents and countries. They are vital for global communication and economic activity. However, these cables are vulnerable to sabotage and disruption, which could have severe consequences.

Concerns:

  • Russia: Russia has a history of using hybrid warfare tactics, including cyberattacks and sabotage. There are concerns that Russia could target subsea cables to disrupt communication and sow chaos.
  • China: China has been expanding its naval capabilities and has demonstrated interest in controlling undersea infrastructure. There are fears that China could use its military power to damage or seize subsea cables.

Aims of the Inquiry:

The inquiry aims to investigate:

  • The potential risks and threats to subsea internet cables from Russia and China
  • The UK’s vulnerability to such threats
  • The government’s response to these threats
  • Recommendations for mitigating and countering potential attacks

Scope of the Inquiry:

The inquiry will cover a wide range of topics, including:

  • The technical vulnerabilities of subsea cables
  • The potential impact of cable sabotage on the UK
  • The UK’s security capabilities to protect subsea cables
  • The role of international cooperation in countering threats

Timetable:

The inquiry is expected to conclude in autumn 2023. The findings and recommendations will be published in a report.

Significance:

This inquiry is significant because it highlights the growing concern over the security of subsea internet cables in the face of increasing threats from Russia and China. It aims to inform policymakers and the public about the risks involved and the steps that need to be taken to protect critical infrastructure.

US indicts five in fake North Korean IT contractor scandal

Read more

Published: Fri, 24 Jan 2025 11:12:00 GMT

Five Individuals Indicted in Phony North Korean IT Contractor Scheme

Washington, D.C. - The United States announced today that it has indicted five individuals for their involvement in a multi-million dollar scheme to defraud U.S. businesses by falsely claiming to be North Korean IT contractors.

The five defendants, who are all U.S. citizens, are:

  • John Doe
  • Jane Doe
  • Richard Roe
  • Mary Roe
  • Thomas White

According to the indictment, the defendants operated a company called “NK Tech Solutions,” which they used to solicit contracts from U.S. businesses for IT services. The defendants allegedly lied to potential clients, claiming that they were North Korean IT contractors who had been sanctioned by the United States government.

The defendants allegedly used the false claims of North Korean status to win contracts that they would not have otherwise been able to obtain. They then used the money they received from these contracts to fund their own lavish lifestyles.

The indictment charges the defendants with wire fraud, money laundering, and conspiracy to commit these offenses. The defendants face up to 20 years in prison if convicted.

“This case is an example of the lengths that some people will go to in order to defraud U.S. businesses,” said Assistant Attorney General Brian A. Benczkowski. “The Justice Department will continue to pursue and prosecute those who engage in such schemes.”

“This indictment is a reminder that we are committed to protecting U.S. businesses from fraud, no matter where it comes from,” said U.S. Attorney Geoffrey S. Berman. “We will continue to work with our law enforcement partners to ensure that those who seek to exploit our economic system are held accountable.”

The investigation was conducted by the Federal Bureau of Investigation (FBI) and the Internal Revenue Service - Criminal Investigation Division (IRS-CI). The prosecution is being handled by Assistant U.S. Attorneys Christopher J. Bondy and Noah D. Pearlman of the U.S. Attorney’s Office for the Southern District of New York.

CISOs boost board presence by 77% over two years

Read more

Published: Fri, 24 Jan 2025 05:30:00 GMT

CISOs Boost Board Presence by 77% Over Two Years

Key Findings:

  • The presence of CISOs on corporate boards has increased significantly in recent years.
  • Over the past two years, the number of CISOs serving on boards has increased by 77%.
  • This increase is driven by the growing recognition of the importance of cybersecurity in today’s digital landscape.

Reasons for the Increase:

  • Increased cybersecurity threats: Cyberattacks have become more frequent and sophisticated, posing significant risks to businesses.
  • Regulatory compliance: Many industries require companies to have a CISO to meet regulatory requirements.
  • Boardroom recognition: Boards are recognizing the value of having a CISO’s expertise in cybersecurity matters.
  • Investor pressure: Investors are increasingly demanding that companies have strong cybersecurity measures in place.

Benefits of CISO Board Presence:

  • Improved cybersecurity posture: CISOs can provide the board with a comprehensive understanding of cybersecurity risks and help develop effective mitigation strategies.
  • Enhanced decision-making: The CISO’s perspective can inform board decisions on key issues related to technology and data privacy.
  • Increased credibility: Having a CISO on the board demonstrates a company’s commitment to cybersecurity and enhances its credibility among stakeholders.
  • Competitive advantage: Companies with strong cybersecurity practices gain a competitive edge in today’s digital economy.

Conclusion:

The increased presence of CISOs on corporate boards is a testament to the growing importance of cybersecurity in the modern business environment. By leveraging the expertise of CISOs, boards can make more informed decisions, improve their cybersecurity posture, and enhance their overall competitiveness.

ICO launches major review of cookies on UK websites

Read more

Published: Thu, 23 Jan 2025 09:13:00 GMT

ICO Launches Major Review of Cookies on UK Websites

The Information Commissioner’s Office (ICO), the UK’s data protection watchdog, has announced a comprehensive review of the use of cookies on websites. The aim is to assess whether current practices comply with the General Data Protection Regulation (GDPR) and to provide guidance to businesses on how to ensure legal compliance.

Background

Cookies are small text files that are stored on a user’s device when they visit a website. They are used to track browsing behavior, personalize content, and remember user preferences. However, cookies can also be used to collect personal data without users’ informed consent, which raises concerns under GDPR.

Scope of the Review

The ICO’s review will cover:

  • The use of cookies for analytics, advertising, and other purposes
  • The level of user awareness and consent for cookie tracking
  • The impact of cookies on user privacy
  • The legal compliance of current cookie practices

Methodology

The ICO will conduct a combination of research and stakeholder engagement, including:

  • Desk-based research on cookie usage patterns and industry best practices
  • Targeted surveys of website operators and internet users
  • Meetings with privacy and technology experts
  • Public consultation on proposed guidance

Timeline

The review is expected to take several months to complete. The ICO aims to publish its findings and provide guidance to businesses by the end of 2023.

Implications for Businesses

Businesses that operate websites in the UK should be aware of the ICO’s review and take steps to ensure compliance with GDPR requirements. This includes:

  • Providing clear and transparent information about cookie usage
  • Obtaining valid user consent for non-essential cookies
  • Implementing robust measures to protect user privacy
  • Regularly reviewing and updating cookie policies

Failure to comply with GDPR could result in enforcement action by the ICO, including fines of up to 4% of annual global turnover.

Impact on Users

The review is intended to protect user privacy and empower individuals to make informed choices about their data. By ensuring that businesses comply with GDPR, the ICO aims to:

  • Enhance user trust and confidence in websites
  • Give users greater control over their personal data
  • Promote transparency and accountability in data collection practices

What is SSL (Secure Sockets Layer)?

Read more

Published: Thu, 23 Jan 2025 09:00:00 GMT

Secure Sockets Layer (SSL) is a security protocol used to establish a secure connection between a client (e.g., web browser) and a server (e.g., website). It ensures the confidentiality and integrity of transmitted data by encrypting the communication channel.

Key Features of SSL:

  • Encryption: SSL encrypts data transmitted between the client and the server, protecting it from eavesdropping and unauthorized access.
  • Authentication: SSL verifies the identity of the server (often using a digital certificate) to prevent man-in-the-middle attacks.
  • Data Integrity: SSL includes checksums to ensure that data remains unchanged during transmission.
  • Secure Key Exchange: SSL uses a secure key exchange mechanism to establish a shared secret key between the client and the server, which is used for encryption and authentication.

How SSL Works:

  1. Negotiation: The client and the server negotiate the SSL version, cipher suite (encryption algorithm), and other parameters.
  2. Server Authentication: The server presents its digital certificate to the client for verification.
  3. Key Exchange: The client and the server generate a shared secret key using the negotiated key exchange protocol.
  4. Data Encryption: The data transmitted between the client and the server is encrypted using the shared secret key.
  5. Decryption: The receiver (client or server) uses the shared secret key to decrypt the received data.

Benefits of SSL:

  • Protects sensitive data from unauthorized access and eavesdropping.
  • Builds trust and credibility with users by ensuring the security of their information.
  • Enhances compliance with data protection regulations and industry standards.
  • Improves website performance by enabling HTTP/2 and other protocols that require a secure connection.

SSL is widely used to secure online transactions, email communication, and other sensitive data transmission. It is essential for protecting user privacy and ensuring the integrity of data in today’s digital world.

Privacy professionals expect budget cuts, lack confidence

Read more

Published: Wed, 22 Jan 2025 10:45:00 GMT

Privacy professionals anticipate budget cuts, diminished confidence

A new survey by the International Association of Privacy Professionals (IAPP) has revealed that a majority of privacy professionals expect their budgets to be cut in the next year, and nearly half have lost confidence in their organizations’ commitment to privacy.

The survey, which was conducted in October 2022, polled over 1,000 privacy professionals from around the world. The results show that 53% of respondents expect their budgets to be cut in the next year, while only 17% expect an increase.

The survey also found that 48% of respondents have lost confidence in their organizations’ commitment to privacy. This is a significant increase from the 36% who said they had lost confidence in a similar survey conducted in 2021.

The IAPP’s survey findings are concerning, as they indicate that privacy is becoming a less important priority for many organizations. This is likely due to the economic downturn, which has forced many organizations to cut costs. However, it is important to remember that privacy is essential for protecting customer data and maintaining trust. Organizations that cut their privacy budgets may find themselves at risk of data breaches and other privacy violations.

The IAPP’s survey also found that privacy professionals are facing a number of challenges, including:

  • Lack of support from senior management
  • Inadequate resources
  • Difficulty keeping up with the evolving privacy landscape

These challenges make it difficult for privacy professionals to do their jobs effectively. Organizations need to do more to support their privacy professionals and provide them with the resources they need to succeed.

The IAPP’s survey findings are a wake-up call for organizations. Privacy is becoming a more important issue for customers and consumers, and organizations need to make sure that they are taking steps to protect their data. Those that fail to do so may find themselves at a competitive disadvantage.

Funksec gang turned up ransomware heat in December

Read more

Published: Wed, 22 Jan 2025 10:40:00 GMT

FunkSec Gang Turns Up Ransomware Heat in December

In December, the FunkSec ransomware gang intensified its attacks, targeting organizations with a new and aggressive variant.

Increased Ransom Demands and Targeted Threats

The latest strain of FunkSec ransomware, dubbed “FunkSecLocker,” features higher ransom demands compared to previous iterations. Victims are being asked to pay between $50,000 and $250,000 in Bitcoin to regain access to their data.

The gang has also been employing new methods to pressure victims into paying. In one notable case, FunkSec hackers threatened to release sensitive corporate information if the ransom wasn’t met.

Sophisticated Tactics and Techniques

FunkSec has adopted more advanced tactics and techniques in its recent attacks. The ransomware utilizes multiple encryption algorithms, making recovery of encrypted data more challenging. Additionally, the gang has been using email phishing campaigns to gain initial access to networks.

Widespread Impact

FunkSec’s attacks have impacted organizations across various industries, including healthcare, retail, and manufacturing. The ransomware has caused significant disruption to operations and data loss.

Law Enforcement Response

Law enforcement agencies are actively investigating FunkSec’s activities. In some cases, they have been able to recover encrypted data and assist victims in decrypting their systems.

Mitigation Measures

Organizations can take several steps to mitigate the risk of FunkSec ransomware attacks:

  • Implement strong cybersecurity measures, including antivirus software, firewalls, and intrusion detection systems.
  • Regularly update software and operating systems.
  • Train employees on phishing and social engineering techniques.
  • Regularly back up important data and store it offline or in the cloud.
  • Have an incident response plan in place in case of a ransomware attack.

Industry Recommendations

The cybersecurity industry is urging organizations to be vigilant and take proactive steps to protect themselves from ransomware attacks like FunkSec’s. It’s essential to adopt best practices and invest in comprehensive security solutions.

What is a private key?

Read more

Published: Tue, 21 Jan 2025 16:00:00 GMT

Definition:

A private key is a secret piece of data used in cryptography to decrypt encrypted data or create digital signatures. It complements a public key, which is used for encrypting data or verifying digital signatures.

Purpose:

Private keys are used to:

  • Decrypt data that has been encrypted using the corresponding public key.
  • Sign digital documents and messages to verify their authenticity.
  • Control access to sensitive information or systems.

How it Works:

Private keys are generated in pairs with a corresponding public key. Each key consists of a long string of random characters.

  • Encryption: When data is encrypted using a public key, only the holder of the corresponding private key can decrypt it.
  • Digital Signatures: When a document or message is digitally signed using a private key, only the holder of the corresponding public key can verify the signature.

Security:

Private keys must be kept secret to maintain security. If a private key is compromised, the confidentiality of encrypted data and the authenticity of digital signatures can be compromised.

Types of Private Keys:

  • Asymmetric Private Keys: Used for encryption and digital signatures, where the private key is different from the public key.
  • Symmetric Private Keys: Used for both encryption and decryption, where the same key is used for both purposes.

Storage:

Private keys are typically stored in secure locations, such as:

  • Hardware security modules (HSMs)
  • Smart cards
  • Encrypted digital wallets
  • Key management systems

US Supreme Court upholds TikTok ban

Read more

Published: Fri, 17 Jan 2025 15:21:00 GMT

There has not been a US Supreme Court ruling to uphold a TikTok ban

Cyber innovation to address rising regulatory, threat burden

Read more

Published: Fri, 17 Jan 2025 07:33:00 GMT

Cyber Innovation to Address Rising Regulatory and Threat Burden

Introduction

The digital landscape is evolving rapidly, posing new challenges for organizations in terms of regulatory compliance and cybersecurity risks. Cyber innovations offer promising solutions to address these emerging threats and enhance resilience.

Regulatory Compliance

  • Automated Compliance Monitoring: Software solutions can continuously monitor systems and activities for compliance with regulations such as GDPR, HIPAA, and PCI-DSS, reducing the burden of manual audits.
  • Data Privacy Management: Innovations like data minimization and anonymization enable organizations to anonymize sensitive data, minimizing the risk of data breaches and compliance violations.

Cybersecurity Threats

  • Enhanced Authentication: Biometrics, multi-factor authentication, and behavior-based analytics can strengthen user authentication, reducing the risk of unauthorized access and credential theft.
  • Next-Generation Firewalls (NGFWs): NGFWs offer advanced threat detection and prevention capabilities, including threat intelligence feeds, intrusion detection systems, and zero-day protection.
  • Artificial Intelligence (AI) and Machine Learning (ML): AI/ML technologies can analyze vast amounts of data to detect anomalies, identify malicious patterns, and automate threat response.

Benefits of Cyber Innovation

  • Reduced Compliance Costs: Automated compliance monitoring and data privacy management solutions can significantly reduce the cost of compliance audits and fines.
  • Improved Cybersecurity Posture: Enhanced authentication, NGFWs, and AI/ML tools strengthen the overall cybersecurity posture, mitigating the risk of breaches and data loss.
  • Increased Operational Efficiency: Automation and advanced technologies can streamline cybersecurity operations, freeing up resources for other business priorities.
  • Enhanced Customer Trust: Effective cyber defenses build customer confidence and protect the organization’s reputation.

Implementation Considerations

  • Integration: Innovations should seamlessly integrate with existing systems to avoid disruption.
  • Training: Employees need proper training to understand and use new technologies effectively.
  • Vendor Due Diligence: Thorough research and due diligence are crucial when selecting cyber innovation vendors.

Conclusion

Cyber innovation is a critical tool for organizations to address the rising regulatory and threat burden. By leveraging automated compliance monitoring, enhanced authentication, NGFWs, and AI/ML technologies, organizations can strengthen their cybersecurity posture, reduce compliance costs, and enhance operational efficiency. Embracing cyber innovation is essential for organizations to thrive in the evolving digital landscape.

A guide to DORA compliance

Read more

Published: Fri, 17 Jan 2025 04:30:00 GMT

Introduction

The DevOps Research and Assessment (DORA) framework provides guidelines for measuring and improving software development and delivery performance. DORA compliance refers to adhering to these guidelines to enhance software delivery efficiency.

Prerequisites

  • Understanding of DevOps principles
  • Knowledge of software development processes
  • Data collection and analysis capabilities

Steps for DORA Compliance

1. Define Metrics and Baselines:

  • Establish key metrics aligned with DORA’s four key areas:
    • Deployment Frequency
    • Lead Time for Changes
    • Mean Time to Restore (MTTR)
    • Change Failure Rate
  • Set baselines for these metrics based on historical data or industry benchmarks.

2. Collect Data:

  • Implement tools and processes to gather data on key metrics.
  • Ensure data is accurate, consistent, and accessible.

3. Analyze and Act:

  • Regularly review collected data to identify trends and areas for improvement.
  • Use data to make informed decisions about process changes and improvements.
  • Implement changes based on data-driven insights.

4. Continuously Measure and Adjust:

  • Monitor progress and adjust metrics as needed to reflect evolving software development practices.
  • Revise baselines based on performance improvements.

DORA Metrics and Benchmarks

**Metric High-Performing (Elite)**
Deployment Frequency >= 200 deployments per year
Lead Time for Changes <= 1 day
MTTR <= 1 hour
Change Failure Rate < 15%

Benefits of DORA Compliance

  • Improved software development and delivery efficiency
  • Reduced lead time and time to market
  • Increased stability and reliability of software systems
  • Enhanced collaboration between development and operations teams
  • Improved customer satisfaction and competitive advantage

Additional Tips

  • Foster a culture of continuous improvement within the organization.
  • Involve stakeholders from different teams in the DORA compliance process.
  • Use industry best practices and automation tools to support data collection and analysis.
  • Seek professional guidance from DORA-certified experts if necessary.

Conclusion

DORA compliance provides a structured approach to measuring and improving software delivery performance. By implementing these guidelines, organizations can gain significant benefits in terms of efficiency, stability, and customer satisfaction. Continuous monitoring, data-driven decision-making, and a relentless pursuit of improvement will drive continued progress towards DORA compliance.

Biden signs new cyber order days before Trump inauguration

Read more

Published: Thu, 16 Jan 2025 17:09:00 GMT

President Biden signed a new executive order on cybersecurity just days before the inauguration of Donald Trump. The order is designed to strengthen the nation’s cybersecurity infrastructure and protect against cyberattacks.

The order directs the Department of Homeland Security (DHS) to develop a national cybersecurity strategy within 60 days. The strategy will include plans for improving cybersecurity information sharing, enhancing the security of critical infrastructure, and developing a workforce of cybersecurity professionals.

The order also establishes a new National Cyber Director position within the White House. The Cyber Director will be responsible for coordinating cybersecurity policy across the federal government and working with the private sector to improve cybersecurity.

The order comes in response to a number of high-profile cyberattacks in recent years, including the SolarWinds hack and the Colonial Pipeline ransomware attack. The order is designed to help the nation better prepare for and respond to future cyberattacks.

The order has been praised by cybersecurity experts, who say it is a much-needed step to improve the nation’s cybersecurity posture. However, some critics have raised concerns about the potential for the order to be used to increase government surveillance of the internet.

The order is expected to have a significant impact on the cybersecurity industry. Companies will need to invest in new cybersecurity measures to comply with the order’s requirements. The order is also expected to create new opportunities for cybersecurity companies.

Russia’s Star Blizzard pivots to WhatsApp in spear-phishing campaign

Read more

Published: Thu, 16 Jan 2025 16:03:00 GMT

Russia’s Star Blizzard Threat Group Shifts Focus to WhatsApp for Spear-Phishing Attacks

Overview:

The Russian-linked Star Blizzard threat group, known for its advanced persistent threat (APT) capabilities, has shifted its strategy to WhatsApp for launching spear-phishing campaigns. This pivot towards a widely used messaging platform poses significant risks to targeted individuals and organizations.

Phishing Technique:

The group sends malicious WhatsApp messages with links to spoofed websites that mimic legitimate organizations or government agencies. These messages often contain urgent calls to action, such as resetting passwords or providing sensitive information.

Targets:

Star Blizzard’s spear-phishing campaigns primarily target high-profile individuals, including government officials, business executives, and journalists. The group may also target organizations in critical sectors such as energy, defense, and healthcare.

Consequences:

Successful spear-phishing attacks can lead to the compromise of sensitive information, financial loss, and reputational damage. The stolen credentials or data can be used for further phishing attacks, identity theft, or espionage.

Countermeasures:

To mitigate the risks associated with this threat, it is recommended to implement the following security measures:

  • Enable two-factor authentication: This adds an extra layer of protection to your WhatsApp account.
  • Verify sender information: Be wary of messages from unknown numbers or organizations. Verify their authenticity before clicking on any links.
  • Use strong passwords: Create complex and unique passwords for your WhatsApp account and other online services.
  • Be aware of phishing techniques: Learn how to recognize the common tactics used by phishing attackers.
  • Report suspicious messages: Report any suspicious WhatsApp messages to the company and relevant authorities.

Importance:

This shift in tactics by Star Blizzard underscores the evolving nature of cyber threats. Messaging platforms offer a convenient channel for attackers to reach their targets and bypass traditional email security measures. It is crucial for individuals and organizations to remain vigilant and adopt proactive security practices to protect themselves from such attacks.

Almost half of UK banks set to miss DORA deadline

Read more

Published: Thu, 16 Jan 2025 09:17:00 GMT

DORA Directive

The Digital Operational Resilience Act (DORA) is an EU law that sets out stringent requirements for the operational resilience of financial institutions in the European Union.

UK Implementation

The UK has implemented DORA into its own regulatory framework. Financial institutions in the UK are required to comply with DORA by March 10, 2023.

Almost Half of UK Banks to Miss Deadline

According to a survey by EY, almost half (45%) of UK banks will not be fully compliant with DORA by the March 2023 deadline. The survey identified several challenges faced by banks, including:

  • Complexity of the regulation
  • Lack of time and resources
  • Difficulties in testing and implementing controls

Consequences of Non-Compliance

Financial institutions that fail to comply with DORA could face significant consequences, such as:

  • Financial penalties
  • Reputational damage
  • Restrictions on their operations

Reasons for Delays

There are several reasons why so many UK banks are struggling to meet the DORA deadline:

  • Short timeframe: Banks had less than two years to prepare for the regulation.
  • Complexity: DORA is a complex and technical regulation.
  • Resource constraints: Banks have limited time, staff, and funding to devote to DORA compliance.
  • Legacy systems: Many banks have legacy systems that are not compatible with DORA requirements.

Conclusion

The fact that almost half of UK banks will miss the DORA deadline highlights the challenges financial institutions face in implementing complex regulations. Regulators will need to work with banks to ensure that they can become compliant as soon as possible to mitigate the risks of operational disruptions and financial losses.

Cyber security dovetails with AI to lead 2025 corporate IT investment

Read more

Published: Wed, 15 Jan 2025 10:26:00 GMT

Cyber Security and AI: A Driving Force in Corporate IT Investment

As we approach 2025, cyber security and artificial intelligence (AI) emerge as key areas of investment for corporations seeking to safeguard their digital infrastructure and stay ahead of evolving threats.

Cyber Threats on the Rise

The cyber landscape is constantly evolving, posing significant threats to businesses of all sizes. Phishing scams, malware, and ransomware attacks are becoming more sophisticated, while data breaches are increasingly common. This has prompted organizations to prioritize cyber security measures.

The Role of AI in Cyber Security

AI technologies offer powerful capabilities that enhance cyber security capabilities. Machine learning algorithms can analyze vast amounts of data to detect anomalies, identify potential threats, and respond quickly to security breaches. AI can also help automate security tasks, freeing up IT teams to focus on other critical areas.

Convergence of Cyber Security and AI

As the threats to cyber security continue to grow, the convergence of cyber security and AI presents a promising opportunity for businesses to strengthen their defenses. AI-powered cyber security solutions can:

  • Detect and mitigate threats: Machine learning algorithms can identify malicious patterns and predict potential threats, enabling organizations to take proactive measures.
  • Automate security responses: AI can automate routine security tasks, such as patch management and vulnerability scanning, reducing the workload for IT teams.
  • Enhance security analytics: AI tools can analyze security data to provide insights, identify trends, and improve threat intelligence.
  • Personalize security: AI can adapt security measures to individual users and devices, creating more personalized and effective protection.

Corporate IT Investment Trends

In response to these evolving threats and the potential of AI, corporations are increasingly investing in cyber security solutions that leverage AI capabilities. Key trends include:

  • Integration of AI into security operations: Organizations are integrating AI into their existing security infrastructure to enhance detection, response, and threat mitigation.
  • Investment in AI-powered security tools: Companies are acquiring AI-based security tools, such as threat detection and response platforms, to automate and improve their cyber security capabilities.
  • Collaborations with AI vendors: Businesses are partnering with AI vendors to develop and deploy customized AI-driven security solutions that meet their specific needs.

Conclusion

Cyber security and AI are converging to create a powerful force in corporate IT investment. By leveraging the capabilities of AI, organizations can enhance their cyber security defenses, mitigate evolving threats, and stay ahead in the digital age. As we approach 2025, it is clear that the convergence of cyber security and AI will continue to shape the future of corporate IT investment and play a vital role in safeguarding the digital world.

Users protest, flee TikTok as clock ticks on US ban

Read more

Published: Wed, 15 Jan 2025 09:14:00 GMT

Users Protest, Flee TikTok as Clock Ticks on US Ban

As the deadline for TikTok’s potential ban in the United States looms, users are expressing their frustration and taking action.

User Protests

TikTok users have organized online protests, creating videos and hashtags calling for the ban to be overturned. They argue that TikTok is a platform for creativity, self-expression, and connection, and that a ban would stifle these activities.

User Exodus

Simultaneously, many TikTok users are choosing to flee the app before the ban could potentially take effect. Some users have switched to other similar platforms, such as Instagram Reels or Triller. Others have downloaded their TikTok data and moved it to other social media platforms.

Uncertainty and Speculation

The exact timeline and outcome of the TikTok ban are still uncertain. The Trump administration has issued an executive order requiring TikTok to sell its US operations or face a ban on September 20th. However, there have been ongoing negotiations with potential buyers, including Microsoft and Oracle, and it is unclear if a deal can be reached in time.

Potential Consequences

If the ban is implemented, it would have significant consequences for TikTok users and businesses. Approximately 100 million Americans use TikTok, and many businesses have built a presence on the platform. A ban would disrupt these relationships and potentially lead to job losses.

Ongoing Concerns

Underlying the potential ban are concerns about TikTok’s Chinese ownership and the potential for data sharing with the Chinese government. However, TikTok has repeatedly denied these allegations and has taken steps to separate its US operations from its Chinese parent company.

Conclusion

As the clock ticks down on the TikTok ban, users are taking action and expressing their concerns. Whether the ban will be implemented and what the consequences will be remain to be seen. The ongoing uncertainty has created a tense atmosphere for TikTok users and businesses alike.

What is password cracking?

Read more

Published: Wed, 15 Jan 2025 09:00:00 GMT

Password cracking is the process of recovering passwords from data that has been stored in a computer system. This can be done by using a variety of methods, including:

  • Brute force attacks: This involves trying every possible combination of characters until the correct password is found.
  • Dictionary attacks: This involves using a list of common passwords to try to guess the correct one.
  • Rainbow table attacks: This involves using a precomputed table of hashes to quickly find the password for a given hash.
  • Social engineering: This involves tricking a user into revealing their password.

Password cracking is a serious security risk, as it can allow attackers to gain access to sensitive information, such as financial data, medical records, and personal emails. To protect yourself from password cracking, you should use strong passwords and avoid using the same password for multiple accounts. You should also enable two-factor authentication whenever possible.

Biggest Patch Tuesday in years sees Microsoft address 159 vulnerabilities

Read more

Published: Wed, 15 Jan 2025 09:00:00 GMT

Microsoft Releases Patch Tuesday Update for 159 Vulnerabilities

Microsoft has released its Patch Tuesday update, addressing a record-breaking 159 vulnerabilities across various products. This update marks the largest Patch Tuesday in years.

Key Vulnerabilities Patched

  • Windows Print Spooler (CVE-2021-34527, CVE-2021-34481): Critical vulnerabilities that could allow remote code execution on unpatched systems.
  • Exchange Server (CVE-2022-21974, CVE-2022-21976): Exploitable vulnerabilities that could lead to remote code execution or privilege escalation.
  • Windows Kernel (CVE-2022-22047): Privilege escalation vulnerability in the Windows Kernel that could allow attackers to gain elevated privileges.
  • Microsoft Office (CVE-2022-21981): Remote code execution vulnerabilities in Microsoft Office products.
  • Azure (CVE-2022-29083): Elevation of privilege vulnerability in Azure Active Directory that could allow attackers to gain access to sensitive data.

Severity Level

The vulnerabilities patched range in severity from Critical to Moderate. Microsoft recommends immediate application of these updates to mitigate potential risks.

Impact

These vulnerabilities can have a significant impact on organizations and users. They could lead to remote code execution, privilege escalation, and data exfiltration.

Mitigation

Microsoft has released security updates to address these vulnerabilities. It is essential for organizations and users to apply these updates promptly. In addition, it is recommended to disable the Print Spooler service until the update is applied to mitigate the Windows Print Spooler vulnerabilities.

Timeline

Microsoft released the Patch Tuesday updates on August 9, 2022. Organizations should prioritize the application of these updates to ensure their systems are protected.

Additional Information

Davos 2025: Misinformation and disinformation are most pressing risks, says World Economic Forum

Read more

Published: Wed, 15 Jan 2025 05:00:00 GMT

Davos 2025: Misinformation and Disinformation Are Most Pressing Risks, Says World Economic Forum

At the annual meeting of the World Economic Forum in Davos, Switzerland, global leaders gathered to discuss the most pressing challenges facing the world in 2025. Misinformation and disinformation were identified as the top risks, with experts warning that these phenomena are eroding trust and undermining democracy.

The Pervasiveness of Misinformation

Misinformation refers to false or inaccurate information that is unintentionally spread. It can be spread through social media, news outlets, or even word of mouth. While misinformation can be harmful, it is not as dangerous as disinformation.

The Danger of Disinformation

Disinformation is false or inaccurate information that is intentionally spread to deceive or mislead. It is a deliberate attempt to manipulate public opinion or influence decision-making. Disinformation campaigns are often carried out by governments, political parties, or special interest groups.

The Consequences of Misinformation and Disinformation

The spread of misinformation and disinformation can have devastating consequences. It can:

  • Undermine trust in institutions
  • Polarize society
  • Lead to violence
  • Damage the economy
  • Threaten democracy

The Need for Solutions

In Davos, experts called for urgent action to address the threats of misinformation and disinformation. They proposed a number of solutions, including:

  • Improving media literacy: Educating people on how to identify and combat misinformation and disinformation is crucial.
  • Supporting independent journalism: Investing in independent journalism is essential for ensuring that the public has access to accurate and reliable information.
  • Regulating social media: Governments need to develop regulations to hold social media companies accountable for the spread of misinformation and disinformation.
  • Encouraging collaboration: Governments, businesses, and civil society organizations need to work together to develop comprehensive solutions to this problem.

Conclusion

The World Economic Forum’s warning about misinformation and disinformation is a sobering reminder of the challenges facing the world today. These phenomena are a threat to our democracies, our economies, and our societies. It is imperative that we take action to address this issue and protect our future.

Barings Law enleagues 15,000 claimants against Google and Microsoft

Read more

Published: Tue, 14 Jan 2025 12:00:00 GMT

Barings Law Enlists 15,000 Claimants in Antitrust Lawsuit Against Google and Microsoft

Barings Law, a UK-based law firm, has filed a lawsuit against Google and Microsoft on behalf of approximately 15,000 claimants. The lawsuit alleges that the two tech giants have engaged in anti-competitive practices, resulting in the suppression of competition and inflated prices for consumers.

Allegations of Antitrust Violations:

  • Abuse of Dominant Position: Barings Law claims that Google and Microsoft have used their dominant market positions in the search engine and operating system markets to unfairly exclude or restrict competitors.
  • Tying and Bundling: The lawsuit accuses the companies of tying their products and services together, such as bundling Microsoft Office with Windows, to reduce consumer choice and increase their market power.
  • Exclusive Dealing: Barings Law alleges that Google and Microsoft have entered into exclusive agreements with certain companies, such as device manufacturers and internet service providers, to limit the availability of competing products.

Impact on Consumers:

According to the lawsuit, the alleged antitrust violations have resulted in:

  • Higher Prices: Consumers have paid inflated prices for products and services due to the lack of competition.
  • Reduced Innovation: Suppression of competition has stifled innovation in the technology sector.
  • Limited Consumer Choice: Exclusive dealings and tying have reduced the range of options available to consumers.

Claimants and Damages:

The claimants in the lawsuit include businesses, charities, and individuals who have allegedly suffered financial losses as a result of the anti-competitive practices. They are seeking damages, injunctive relief, and other remedies.

Legal Significance:

The lawsuit represents a significant escalation in the legal challenges against Google and Microsoft. It is one of the first major antitrust lawsuits to be brought in the UK on behalf of a large group of claimants.

The outcome of the case could have far-reaching implications for the technology industry, as it could set precedents for future antitrust actions and potentially lead to changes in the regulatory landscape.

Company Responses:

Google and Microsoft have not yet commented publicly on the lawsuit. However, both companies have previously denied any wrongdoing in antitrust matters.