Tag: data breach

Source URL: https://www.theregister.com/2025/03/19/pennsylvania_nonprofit_cyberattack/ Source: The Register Title: Attackers swipe data of 500k+ people from Pennsylvania teachers union Feedly Summary: SSNs, payment details, and health info too The Pennsylvania State Education Association (PSEA) says a July 2024 “security incident" exposed sensitive personal data on more than half a million individuals, including financial and health info.… AI…

Hacker News: Digital Hygiene

Mar 19, 2025

—

by

Source URL: https://karpathy.bearblog.dev/digital-hygiene/ Source: Hacker News Title: Digital Hygiene Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text emphasizes the importance of digital hygiene and practical strategies to enhance security and privacy in day-to-day computing. It outlines various tools and practices, such as using password managers, hardware keys, and extensive encryption, to protect…

Unit 42: Threat Assessment: GitHub Actions Supply Chain Attack: The Compromise of tj-actions/changed-files

—

by

Source URL: https://unit42.paloaltonetworks.com/github-actions-supply-chain-attack/ Source: Unit 42 Title: Threat Assessment: GitHub Actions Supply Chain Attack: The Compromise of tj-actions/changed-files Feedly Summary: A compromise of the GitHub action tj-actions/changed-files highlights how attackers could exploit vulnerabilities in third-party actions to compromise supply chains. The post Threat Assessment: GitHub Actions Supply Chain Attack: The Compromise of tj-actions/changed-files appeared first…

Cloud Blog: Cloud CISO Perspectives: 5 tips for secure AI success

—

by

Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-5-tips-secure-ai-success/ Source: Cloud Blog Title: Cloud CISO Perspectives: 5 tips for secure AI success Feedly Summary: Welcome to the first Cloud CISO Perspectives for March 2025. Today, Royal Hansen, vice-president, Engineering, and Nick Godfrey, Office of the CISO senior director, discuss how new AI Protection capabilities in Security Command Center fit in with…

CSA: From Risk to Revenue with Zero Trust AI

—

by

Source URL: https://cloudsecurityalliance.org/blog/2025/03/18/from-risk-to-revenue-with-zero-trust-ai Source: CSA Title: From Risk to Revenue with Zero Trust AI Feedly Summary: AI Summary and Description: Yes Summary: The text emphasizes the urgency of AI security governance and advocates for integrating Zero Trust architecture within AI systems to mitigate risks such as data breaches and compliance issues. It underscores the need…

The Register: UK wants dirt on data brokers before criminals get there first

—

by

Source URL: https://www.theregister.com/2025/03/18/uk_data_broker_inquiry/ Source: The Register Title: UK wants dirt on data brokers before criminals get there first Feedly Summary: Govt wants to learning mistakes of serially breached record holders so it can, er, liberalize data sharing regs under new law The UK government is inviting experts to provide insights about the data brokerage industry…

Hacker News: Password reuse is rampant: nearly half of observed user logins are compromised

—

by

Source URL: https://blog.cloudflare.com/password-reuse-rampant-half-user-logins-compromised/ Source: Hacker News Title: Password reuse is rampant: nearly half of observed user logins are compromised Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the pervasive issue of password reuse and its significant impact on online security, particularly regarding content management systems like WordPress. It highlights alarming statistics…

The Register: Extortion crew threatened to inform Edward Snowden (?!) if victim didn’t pay up

—

by

Source URL: https://www.theregister.com/2025/03/18/extortionists_ox_thief_legal_threats/ Source: The Register Title: Extortion crew threatened to inform Edward Snowden (?!) if victim didn’t pay up Feedly Summary: Don’t laugh. This kind of warning shows crims are getting desperate Dark web analysts at infosec software vendor Fortra have discovered an extortion crew named Ox Thief that threatened to contact Edward Snowden…

The Cloudflare Blog: Advancing account security as part of Cloudflare’s commitment to CISA’s Secure by Design pledge

Mar 17, 2025

—

by