Tag #Cybersecurity

Showing 793 to 804 of 1,361 results

theglobeandmail.com

🌐 85% Global Worthiness

Jan 21, 16:11

Failure of Canada's Cybersecurity Bill Exposes Critical Infrastructure to Attacks

Canada's cybersecurity bill, Bill C-26, which aimed to protect critical infrastructure, died due to the recent parliamentary prorogation, leaving businesses vulnerable to cyberattacks costing \$1.2 billion in 2023; experts urge proactive measures until the bill is reinstated.

Failure of Canada's Cybersecurity Bill Exposes Critical Infrastructure to Attacks

Canada's cybersecurity bill, Bill C-26, which aimed to protect critical infrastructure, died due to the recent parliamentary prorogation, leaving businesses vulnerable to cyberattacks costing \$1.2 billion in 2023; experts urge proactive measures until the bill is reinstated.

Progress

40% Bias Score

ShareSaveArticle

Industry, Innovation, and Infrastructure

12345678

Previous 1 of 8 Next

What are the immediate consequences of the Canadian Parliament's decision to kill Bill C-26, and how does this affect Canada's national security?

Canada's cybersecurity bill, Bill C-26, which aimed to protect critical infrastructure, was killed by the recent parliamentary prorogation, leaving businesses vulnerable to cyberattacks. The lack of legislation puts Canada behind its global peers and increases the risk of successful cyberattacks against crucial sectors. Experts warn of gross negligence regarding national security.

forbes.com

🌐 85% Global Worthiness

Jan 21, 19:10

Windows 11 Improves Security with Just-in-Time Admin Privileges

Microsoft's Windows 11 Insider Preview Build 27774 introduces Administrator Protection, accessible via Windows Security settings, granting elevated privileges only when needed to enhance security by reducing the attack surface.

Windows 11 Improves Security with Just-in-Time Admin Privileges

Microsoft's Windows 11 Insider Preview Build 27774 introduces Administrator Protection, accessible via Windows Security settings, granting elevated privileges only when needed to enhance security by reducing the attack surface.

Progress

52% Bias Score

ShareSaveArticle

Reduced Inequality

12345678

Previous 1 of 8 Next

What specific security risks does the Administrator Protection feature mitigate, and how does it achieve this?

This update directly addresses the long-standing advice for users to maintain separate admin and standard accounts for enhanced security. By granting elevated privileges on a just-in-time basis, the feature minimizes the risk associated with constantly running as an administrator.

dw.com

🌐 85% Global Worthiness

Jan 20, 16:10

Ukraine Restores State Registers After Major Cyberattack

Following a large-scale cyberattack in December 2023 that temporarily disrupted Ukraine's state registers, the government announced on January 20th the full restoration of these systems, with no data loss reported; the head of National Information Systems was dismissed, and a new cybersecurity bill ...

Ukraine Restores State Registers After Major Cyberattack

Following a large-scale cyberattack in December 2023 that temporarily disrupted Ukraine's state registers, the government announced on January 20th the full restoration of these systems, with no data loss reported; the head of National Information Systems was dismissed, and a new cybersecurity bill ...

Progress

40% Bias Score

ShareSaveArticle

Industry, Innovation, and Infrastructure

12345678

Previous 1 of 8 Next

What measures did the Ukrainian government take in response to the cyberattack beyond the restoration of the registers?

The restoration of Ukraine's state registers following a significant cyberattack highlights the country's resilience and commitment to digital infrastructure. The attack, claimed by the XakNet Team, involved the alleged deletion of over a billion data rows. Despite this, the government's swift response ensured the registers' functionality was restored within weeks, underscoring the importance of robust cybersecurity measures.

forbes.com

🌐 85% Global Worthiness

Jan 20, 22:10

Amazon iPhone 16 Hack: Account Takeover via Social Engineering

A new hacking method targets Amazon customers, using fraudulent calls impersonating Amazon customer service to add multiple iPhone 16 orders to victims' accounts, tricking them into providing one-time codes for account takeover.

Amazon iPhone 16 Hack: Account Takeover via Social Engineering

A new hacking method targets Amazon customers, using fraudulent calls impersonating Amazon customer service to add multiple iPhone 16 orders to victims' accounts, tricking them into providing one-time codes for account takeover.

Progress

40% Bias Score

ShareSaveArticle

12345678

Previous 1 of 8 Next

How does this attack exploit user trust, and what are the likely sources of compromised credentials?

This attack leverages social engineering, exploiting trust in Amazon's customer service to gain access. The attackers likely obtained login credentials through separate breaches, using the iPhone 16 order as a believable pretext to obtain one-time codes. The method's success relies on user trust and lack of awareness.

forbes.com

🌐 90% Global Worthiness

Jan 19, 16:10

Sneaky 2FA Bypass Threatens Microsoft 365 Accounts

French security researchers exposed a new attack targeting Microsoft 365 accounts, bypassing 2FA and stealing credentials via a \$200/month phishing kit called Sneaky 2FA sold by Sneaky Log, impacting users across various platforms, highlighting the ongoing need for enhanced security measures and us...

Sneaky 2FA Bypass Threatens Microsoft 365 Accounts

French security researchers exposed a new attack targeting Microsoft 365 accounts, bypassing 2FA and stealing credentials via a \$200/month phishing kit called Sneaky 2FA sold by Sneaky Log, impacting users across various platforms, highlighting the ongoing need for enhanced security measures and us...

Progress

40% Bias Score

ShareSaveArticle

No Poverty

12345678

Previous 1 of 8 Next

What is the immediate impact of the newly discovered Microsoft 365 2FA bypass attack?

A new adversary-in-the-middle attack targeting Microsoft 365 accounts has been discovered by French security researchers. This attack bypasses 2FA and steals credentials, leveraging a phishing-as-a-service kit called Sneaky 2FA, sold for \$200 per month by a group known as Sneaky Log. The kit uses compromised infrastructure to host phishing pages and employs sophisticated techniques to evade detection.

europe.chinadaily.com.cn

🌐 85% Global Worthiness

Jan 19, 13:08

China Accuses US of Large-Scale Cyberattacks, Calls for Dialogue

A senior Chinese diplomat accuses the US of extensive cyberattacks against China's critical infrastructure, demanding Washington address Beijing's concerns and pursue a cyber relationship based on mutual respect and dialogue, highlighting the growing tensions in US-China relations.

China Accuses US of Large-Scale Cyberattacks, Calls for Dialogue

A senior Chinese diplomat accuses the US of extensive cyberattacks against China's critical infrastructure, demanding Washington address Beijing's concerns and pursue a cyber relationship based on mutual respect and dialogue, highlighting the growing tensions in US-China relations.

Progress

40% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

What are the specific accusations of US cyberattacks against China, and what is China's immediate demand?

China accuses the US of large-scale, systematic cyberattacks targeting critical infrastructure, including telecommunications, finance, and transportation. Beijing demands the US take these concerns seriously and cease such actions, advocating for a cyber relationship based on mutual respect and dialogue.

dw.com

🌐 85% Global Worthiness

Jan 21, 19:10

Ukraine's Ministry of Justice Suffers Month-Long Outage After Major Cyberattack

A sophisticated cyberattack in late December crippled Ukraine's Ministry of Justice's state registries for a month, highlighting vulnerabilities despite claims of robust security, and underscoring the need for improved cybersecurity practices.

Ukraine's Ministry of Justice Suffers Month-Long Outage After Major Cyberattack

A sophisticated cyberattack in late December crippled Ukraine's Ministry of Justice's state registries for a month, highlighting vulnerabilities despite claims of robust security, and underscoring the need for improved cybersecurity practices.

Progress

24% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

What methods did the attackers likely employ to successfully penetrate Ukraine's supposedly secure state registries?

The attack highlights the vulnerability of Ukrainian systems despite claims of multi-layered protection. The attackers likely used a combination of technical exploits, social engineering (phishing), and insider access to breach security. The lack of transparency regarding investigation results hinders effective improvements.

zeit.de

🌐 75% Global Worthiness

Jan 21, 19:10

Rhineland-Palatinate Universities Strengthen Cybersecurity with €5 Million Investment

Rhineland-Palatinate's 12 universities are implementing a joint cybersecurity strategy funded with €5 million, establishing a service center and appointing cybersecurity officers at each university to improve IT security and response to cyberattacks, following a June 2023 attack on Kaiserslautern Un...

Rhineland-Palatinate Universities Strengthen Cybersecurity with €5 Million Investment

Rhineland-Palatinate's 12 universities are implementing a joint cybersecurity strategy funded with €5 million, establishing a service center and appointing cybersecurity officers at each university to improve IT security and response to cyberattacks, following a June 2023 attack on Kaiserslautern Un...

Progress

36% Bias Score

ShareSaveArticle

Industry, Innovation, and Infrastructure

12345678

Previous 1 of 8 Next

What prompted the development of this joint cybersecurity strategy, and what role will the new service center play in its implementation?

The strategy is a response to increasing cyberattacks targeting universities. A new cybersecurity service center will be established at the Kaiserslautern-Landau Technical University to advise on implementing the Federal Office for Information Security's baseline protection, scheduled for completion by 2030. This collaboration aims to leverage expertise and synergies for improved cybersecurity.

forbes.com

🌐 85% Global Worthiness

Jan 20, 22:10

Surveillance Pricing: NSA and FTC Warn of Location-Based Price Discrimination

The NSA and FTC warn about "surveillance pricing," where companies use location and browsing data to charge different prices. Consumers can mitigate this by adjusting app permissions, deleting advertising IDs, and using privacy-centric browsers.

Surveillance Pricing: NSA and FTC Warn of Location-Based Price Discrimination

The NSA and FTC warn about "surveillance pricing," where companies use location and browsing data to charge different prices. Consumers can mitigate this by adjusting app permissions, deleting advertising IDs, and using privacy-centric browsers.

Progress

44% Bias Score

ShareSaveArticle

Reduced Inequality

12345678

Previous 1 of 8 Next

What immediate actions can consumers take to protect themselves from surveillance pricing tactics using location data?

The NSA and FTC warn of surveillance pricing, where companies use location and browsing data to charge different prices for the same goods. This practice is facilitated by tracking technologies and middlemen hired by retailers. Consumers can mitigate this by adjusting app permissions and deleting advertising IDs.

forbes.com

🌐 90% Global Worthiness

Jan 19, 13:08

Corporatization of Cryptocurrency Crime Exceeds \$51 Billion in 2024

Chainalysis's 2024 report reveals that cryptocurrency crime, exceeding \$51 billion, has evolved into corporate-style criminal enterprises offering "crime-as-a-service", utilizing stablecoins (63% of volume), and employing sophisticated risk management strategies, presenting significant challenges f...

Corporatization of Cryptocurrency Crime Exceeds \$51 Billion in 2024

Chainalysis's 2024 report reveals that cryptocurrency crime, exceeding \$51 billion, has evolved into corporate-style criminal enterprises offering "crime-as-a-service", utilizing stablecoins (63% of volume), and employing sophisticated risk management strategies, presenting significant challenges f...

Progress

32% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

How does the increased use of stablecoins in illicit transactions reflect the professionalization of crypto crime?

This corporatization of crypto crime parallels historical trends in organized crime, transitioning from small-scale operations to large-scale corporate structures. The shift to stablecoins for transactions (63% of criminal volume) highlights the preference for stable financial instruments in managing operational expenses, similar to legitimate businesses.

forbes.com

🌐 85% Global Worthiness

Jan 19, 04:06

Growing Cybersecurity Threats Target Travelers in 2025

In 2025, travelers face heightened cybersecurity threats including sophisticated phishing scams, malicious websites, AI-generated fraud, and the exploitation of unsecured Wi-Fi networks, impacting booking, travel phases, and data security.

Growing Cybersecurity Threats Target Travelers in 2025

In 2025, travelers face heightened cybersecurity threats including sophisticated phishing scams, malicious websites, AI-generated fraud, and the exploitation of unsecured Wi-Fi networks, impacting booking, travel phases, and data security.

Progress

24% Bias Score

ShareSaveArticle

Reduced Inequality

12345678

Previous 1 of 8 Next

How are advancements in AI technology exacerbating existing cybersecurity risks for travelers, and what specific examples demonstrate this?

The rise in malicious vacation-related domains (1 in 33 new domains in 2024 were suspicious, per Check Point Research) highlights the expanding threat landscape. These include phishing sites mimicking popular travel platforms and scams targeting booking and travel phases, exploiting vulnerabilities in unsecured Wi-Fi networks and social engineering.

forbes.com

🌐 85% Global Worthiness

Jan 19, 16:10

Hidden Malware in Emails Bypasses Security: 29,000 Victims

New malware campaigns, VIP Keylogger and 0bj3ctivityStealer, hide malicious code in email images, bypassing security; one image was viewed 29,000 times, resulting in credential and financial data theft.

Hidden Malware in Emails Bypasses Security: 29,000 Victims

New malware campaigns, VIP Keylogger and 0bj3ctivityStealer, hide malicious code in email images, bypassing security; one image was viewed 29,000 times, resulting in credential and financial data theft.

Progress

32% Bias Score

ShareSaveArticle

Reduced Inequality

12345678

Previous 1 of 8 Next

What specific techniques are used by these malware campaigns to hide malicious code and evade detection?

These large-scale malware campaigns leverage the common practice of email communication for malicious purposes. By embedding malicious code within images hosted on legitimate sites, attackers effectively circumvent traditional security protocols. The high number of victims (29,000 for VIP Keylogger) emphasizes the effectiveness of this technique and the need for enhanced security measures.

Showing 793 to 804 of 1,361 results