This episode features discussion about the MGM Resorts ransomware attack, and on recent DDoS attacks against Canadia This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Week in Review for the week ending…
Category: IT World Canada
Despite AI, infosec leaders have ‘job security forever,’ conference told
Don’t worry about AI taking the jobs of CISOs, a panel at the SIBOS 2023 conference in Toront This article has been indexed from IT World Canada Read the original article: Despite AI, infosec leaders have ‘job security forever,’ conference…
Cyber Security Today, Sept. 23, 2023 – Nova Scotia details MOVEit victims, a new ransomware strain found and more
This podcast reports on the latest number of MOVEit victims, new ransomware number This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Sept. 23, 2023 – Nova Scotia details MOVEit victims, a new…
Air Canada admits hack of employee data
Hacker had “limited access” to data, ai This article has been indexed from IT World Canada Read the original article: Air Canada admits hack of employee data
DDoS attacks behind Canada border agency problems
Canada’s border control agency is the latest federal department to confirm it was hit by a recent wave of denial of service attacks. “The Canada Border Services Agency (CBSA) can confirm that connectivity issues that affected kiosks and electronic gates…
Cyber Security Today, Sept. 20, 2023 – A new online card-skimming campaign, new WinServer backdoors and more
This episode reports on the possiblity that thousands of internet-facing Juniper SRX firewalls and EX switches may be at risk from a new way to exploit a recently discovered vulnerability This article has been indexed from IT World Canada Read…
Ransomware is now a crisis, financial conference told
At the SIBOS 2023 conference in Toronto a ransomware panel discussed the need for resiliency, table top exercises and the role of corporate management in cyb This article has been indexed from IT World Canada Read the original article: Ransomware…
SAS unveils innovations and partnerships during Explore 2023
In a series of announcements and presentations at SAS Explore last week, SAS unveiled innovations and partnerships that aim to reshape industries ranging from data analytics to fraud detection to climate monitoring. The event kicked off with SAS executives revealing…
Cyber Security Today, Sept. 18, 2023 – How a deepfake voice caused a company to be hacked
This episode reports on a sophisticated scam, and lessons that can be taught for security awarenes This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Sept. 18, 2023 – How a deepfake voice…
Canada cyber centre issues alert after government DDoS attacks
Distributed denial of service attacks against the websites of federal departments and several Canadian provinces and territories — including PEI, Yukon, Saskatchewan and Manitoba — have prompted the federal cyber agency to issue an IT alert. Since September 13, the…
Cyber Security Today, Week in Review for the week ending Friday, Sept. 15, 2023
This episode features discussion on Microsoft’s explaination of how the hack of one of its software developers led to one of the most amazing breaches of email security, a ransomware report from the U.K., a Business Council of Canada report on…
Attack surfaces still aren’t being managed fast enough by IT: Report
Report by Palo Alto Networks points out that attackers move faster to exploit vulnerabilities than IT is patching This article has been indexed from IT World Canada Read the original article: Attack surfaces still aren’t being managed fast enough by…
Cyber Security Today, Sept. 13, 2023 – Warning: This group specializes in SMS texting scams
This episode reports on a threat group that specializes in password spray attacks This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Sept. 13, 2023 – Warning: This group specializes in SMS texting…
‘Don’t blame us for MGM Resorts disruption. We only installed ransomware,’ says gang
Hotel/casino operator made a ‘hasty’ decision to close its IT network, says the AlphV ranso This article has been indexed from IT World Canada Read the original article: ‘Don’t blame us for MGM Resorts disruption. We only installed ransomware,’ says…
More malicious attachments found by researchers
Fortinet researchers describe two malicious attachments they foun This article has been indexed from IT World Canada Read the original article: More malicious attachments found by researchers
DDoS attack hampers PEI websites
A denial of service attack has crippled the websites of Prince Edward Island. “This website – PrinceEdwardIsland.ca – is temporarily unavailable,” the site said Thursday afternoon Eastern time. “We are working to fix the problem as quickly as possible. We…
How to defend your organization against deepfake content
Advice from the FBI, NSA and CISA on spotting and preventing your firm from being victimized by deepfake audio This article has been indexed from IT World Canada Read the original article: How to defend your organization against deepfake content
Canadian weather websites still struggling after supplier attack
Pelmorex Corp., the parent company of two Canadian weather websites, is still struggling to resume full service after an unnamed software provider was hit by a cyber attack. As of early Thursday, TheWeatherNetwork.com and its French-language site MétéoMédia.com had partial…
Cyber Security Today, Sept. 13, 2023 – Crooks target Facebook Messenger accounts of businesses, a warning to IT support staff and more
This episode reports on the latest security patches, a campaign to trick IT support staf This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Sept. 13, 2023 – Crooks target Facebook Messenger accounts…
Ransomware gang says it has hit International Joint Commission
The IJC tries to resolve border disputes over lakes and rivers between the US This article has been indexed from IT World Canada Read the original article: Ransomware gang says it has hit International Joint Commission
Apple users warned to update their devices after University of Toronto researchers expose spyware
Last week, University of Toronto’s Citizen Lab discovered a vulnerability in iPhone devices being “actively exploited” to deliver NSO Group’s Pegasus mercenary spyware, without any interaction from the victim. Citizen Lab said it made the discovery while checking the device…
Cyber Security Today, Sept. 11, 2023 – Warnings from Cisco, a huge DDoS attack and more MOVEit and ransomware victims
This episode reports on vulnerabilities that have to be dealt with in Cisco applications, the sentencing of a Russian businessman in the US to nine years in prison for his role in a nearly US$100 million stock market cheating scheme This…
Cyber Security Today, Week in Review for Friday, September 8, 2023
This episode features a discussion between IT World Canada CIO Jim Love and Adam Evans. CISO of the Royal Bank This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Week in Review for…
Dell and CTO Roese dive into AI, edge, security at MTCC event
Dell unleashed its executive heavyweights yesterday at the Metro Toronto Convention Centre (MTCC), with the appearance of Michael Dell, founder, chairman and chief executive officer (CEO) of Dell Technologies and John Roese, the company’s chief technology officer (CTO) at a…
Cyber Security Today, Friday Sept. 8, 2023 – Are boards and CISOs communicating, the latest ransomware data and more
This episode reports on the latest survey of boards on cybersecurity, This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Friday Sept. 8, 2023 – Are boards and CISOs communicating, the latest ransomware…
Cyber Security Today, Sept. 6, 2023 – Advice on cyber insurance
This episode reports on what your organization might need to get and keep cyber insurance — or whether you should self-insure by setting up a rigorous cybersecuri This article has been indexed from IT World Canada Read the original article:…
Musk stirs controversy with move by X to collect biometrics
Initally biometric data will be collected from X Premium users starting Sept This article has been indexed from IT World Canada Read the original article: Musk stirs controversy with move by X to collect biometrics
Cyber Security Today, Sept. 4, 2023 – Cybersecurity tips for parents as the new school year starts
This episode offers cybersecurity and privacy advice and links to websites for parents about to send their kids back This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Sept. 4, 2023 – Cybersecurity…
Cyber Security Today, Week in Review for the week ending September 1, 2023
This episode features discussion on International Women in Cyber Day, a Canadian cybercrime report, the takedown of the Quakbot bot and the attacks on Barracuda Networks’ ESG emai This article has been indexed from IT World Canada Read the original…
Cyber Security Today, Sept. 1, 2023 – Celebrate Women in Cyber Security
This episode reports on more bad packages in open source repositories, and why you shouldn’t play the This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Sept. 1, 2023 – Celebrate Women in…
International Women in Cyber Security Day: Slow progress
The prospects for women in cybersecurity in many countries are promising, but progress in Canada is disappointing, says the founder of International Women in Cybersecurity Day. “Within Canada there appears to have been limited observable change in bolstered support for…
Plug these vulnerabilities in VMware, Cisco products
Administrators of VMware and certain devices from Cisco Systems are being warned to install patches as soon as possible to close serious vulnerabilities. Multiple vulnerabilities in VMware’s Aria Operations for Networks have been discovered, with patches issued earlier this week. …
New Russian Android malware targets Ukraine’s military devices: Report
Russia’s Sandworm attack group has created a new toolkit for compromising Android devices, says a report released today by the Five Eyes intelligence co-operative consisting of the intelligence agencies of the U.S., Canada, the U.K., Australia and New Zealand, first…
Google Cloud Next keynote places spotlight on firm’s GenAI efforts
The arrival of generative artificial intelligence (GenAI) advances will trigger the “most profound shift we will see in our lifetimes,” Google CEO Sundar Pichai said Tuesday during an opening keynote speech at Google Cloud Next 2023 in San Francisco. They…
Duet AI invades Google Workspace, takes notes, attends meetings, crafts email for $30/month
Yesterday, Google announced that Duet AI, its real-time AI collaborator first announced in May, is now generally available on Google Workspace for US$30 per user per month (for enterprises; pricing has not been finalized for other users). But users can…
Cyber Security Today, August 30, 2023 – More ransomware and MOVEit attack numbers, and an attack on a Rust repository
This episode reports on QR codes being used by threat actors, statistics on ransomware and MOVEit hacks This article has been indexed from IT World Canada Read the original article: Cyber Security Today, August 30, 2023 – More ransomware and…
Authorities take down Qakbot infrastructure, issue commands to delete the malware
Police in seven countries, including the U.S, act to shut botnet used by many ransomware groups to distribute malware for initial This article has been indexed from IT World Canada Read the original article: Authorities take down Qakbot infrastructure, issue…
Barracuda email gateways in US, Canadian government departments hit: Report
Report by Mandiant goes into detail about attacks on Barracuda Networks’ ESG This article has been indexed from IT World Canada Read the original article: Barracuda email gateways in US, Canadian government departments hit: Report
Cyber Centre again warns Canadian firms not to ignore cybercrime
Fraud and scams will be the most common form of cybercrime that Canadians will see over the next two years, says fede This article has been indexed from IT World Canada Read the original article: Cyber Centre again warns Canadian…
Cyber Security Today, August 28, 2023 – SIM card swap led to a Kroll data breach, supplier hack led to a London police data theft, and more
This episode reports on several newly revealed hacks, including the theft of the names and ranks of 47,000 London police and staff after a hacker got into the IT systems of a firm that prints This article has been indexed from…
Privacy czars urge websites to block data scraping
Letter released publicly and sent to Alphabet, Meta, Microsoft, ByteDance and X asks social media companies to show they are making it harder to scrape data from t This article has been indexed from IT World Canada Read the original…
Cyber Security Today, Week in Review for the week ending Friday, August 25, 2023
This episode features a discussion about zero trust This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Week in Review for the week ending Friday, August 25, 2023
Business email compromise scams getting more sophisticated: Report
In the first half of this year 84 per cent of BEC messages detected by Trustwave came from free webmail This article has been indexed from IT World Canada Read the original article: Business email compromise scams getting more sophisticated:…
Cyber Security Today, August 25, 2023 – FBI warning about Barracuda ESG gateways and thousands of more US MOVEit victims
This episode reports on what some crooks are doing with stolen personal data This article has been indexed from IT World Canada Read the original article: Cyber Security Today, August 25, 2023 – FBI warning about Barracuda ESG gateways and…
U.S. division of CIBC apparently sideswiped by MOVEit hack
CIBC says data of “a small number” of US customers This article has been indexed from IT World Canada Read the original article: U.S. division of CIBC apparently sideswiped by MOVEit hack
Google to add more granular security controls to Workspace
AI will help automate data classification and enforce data loss prevention. New tools to help meet data sovereignty demands a This article has been indexed from IT World Canada Read the original article: Google to add more granular security controls…
VMware, NVIDIA team up, launch major GenAI initiative at VMware Explore
The generative AI (GenAI) offensive continued yesterday with VMware Inc. and NVIDIA announcing an expansion of a partnership the two said is designed to “ready the hundreds of thousands of enterprises that run on VMware’s cloud infrastructure for the era…
Cyber Security Today, August 23, 2023 – Public exposure doesn’t deter this attacker, and more
This episode reports on a persistent attacker, security updates for Ivanti Sentry This article has been indexed from IT World Canada Read the original article: Cyber Security Today, August 23, 2023 – Public exposure doesn’t deter this attacker, and more
LinkedIn collaborates with CLEAR to bring free identity verification to Canadian users
Professional social media platform LinkedIn is teaming up with CLEAR, a secure identity company, to introduce free identity verification services for its users in Canada. This partnership allows LinkedIn members to confirm their identities through the CLEAR Verified platform and…
Can diversity and resilience address the crisis of recruiting and retaining cybersecurity talent?
As cyber threats increase in frequency and complexity, many organizations are struggling with challenges of recruitment and retention. The creation of a diverse, resilient workforce is no longer a luxury but a stark necessity. This video explores some strategies which…
Cyber Security Today, August 21, 2023 – The latest ransomware news, and security patches issued by Cisco, Juniper and Jenkins
This episode includes reports on how much Dallas paid for a ransomware incident response, data released by the Black Basta ransomware gang after an attack on a U.S. housing authorit This article has been indexed from IT World Canada Read…
Former Tesla employees stole data of over 75,000 staff, company says
Over 75,000 current and former employees of car manufacturer Tesla are being notified their personal information was stolen in an insider data breach. Tesla notified the Maine attorney general’s office Friday of the breach, which occurred on May 10. The…
Cyber Security Today, Week in Review for the week ending Friday, August 18, 2023
This episode features a discussion on a report into the successes of the Lapsus$ extortion gang, a ransomware attack against a Canadian non-profit, a vulnerability in the WiFi module of the infotainment system of some Ford vehicles and whether governments…
Class action against Government of Canada advances following 2020 CRA privacy breach
The Federal Court of Canada has certified the class action filed against the Government of Canada over the spate of cyber incidents that took place between March and September 2020 attacking the Canada Revenue Agency (CRA) accounts of over 45,000…
Cuba ransomware gang looking for unpatched Veeam installations: Report
The report by BlackBerry outlines the latest tactics by the This article has been indexed from IT World Canada Read the original article: Cuba ransomware gang looking for unpatched Veeam installations: Report
Phishing campaign tries to evade defences with QR codes
Email messages warn victims they have to scan the attached QR code with a smartphone to update their security. The goal is to get their enterprise c This article has been indexed from IT World Canada Read the original article:…
Cyber Security Today, August 18, 2023 – CISA urges action on a Citrix ShareFile vulnerability, and more
This episode reports on a hole in the naming policies of modules developers can put in Microsoft’s PowerShell Gallery, lessons from a honeypot tes This article has been indexed from IT World Canada Read the original article: Cyber Security Today,…
Canadian marketing company hit by data breach, says Ontario liquor board
A Canadian marketing company that counts some of the country’s biggest corporations as its customers has been hit by a data breach. One of them is the Liquor Control Board of Ontario (LCBO), a Crown corporation that sells spirits and…
Cyber Security Today, August 16, 2023 – Discord.io database of 760,000 up for sale, LinkedIn under attack and more MOVEit victims
This episode reports on the most recent data breaches and an extortion campaign against LinkedIn users who lose access to thei This article has been indexed from IT World Canada Read the original article: Cyber Security Today, August 16, 2023…
The evolution of the workplace
The next world of hybrid work is a three-part video series that examines the nature of the hybrid office, and the challenges—and advantages—associated with it. Featuring experts from Cisco Systems and Compugen and hosted by IT World Canada’s Jim Love,…
How the fledgling INC ransomware gang struck one victim
It took this gang a week to stage their attack. On the seventh day they d This article has been indexed from IT World Canada Read the original article: How the fledgling INC ransomware gang struck one victim
Scotiatrust US customers sideswiped by MOVEit hack
The U.S. investment advisory division of a Canadian-headquartered bank is among the latest companies to admit it was sideswiped by the exploitation of a zero-day vulnerability in Progress Software’s MOVEit file transfer application. Scotia Wealth Management, part of the Bank…
Cyber Security Today, August 14, 2023 — A huge insurance company hack, presentations at the Black Hat conference, and more
This episode reports on the hack of Hub International, advantages of honeypots, artificial intelligenc This article has been indexed from IT World Canada Read the original article: Cyber Security Today, August 14, 2023 — A huge insurance company hack, presentations…
Cyber Security Today, Week in Review for the week ending Friday, August 11, 2023
This episode features discussion on fighting ransomware in schools, ransomware and insurance, more MOVEit victims and attacks on sports teams This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Week in Review for…
Alberta dental plan administrator paid ransomware gang after attack
Not-for-profit Alberta Dental Services Corp. says gang was paid after proving it had deleted data This article has been indexed from IT World Canada Read the original article: Alberta dental plan administrator paid ransomware gang after attack
Ditch SMS-based MFA, urges board investigating Lapsus$ gang’s successful attacks
U.S. Cyber Safety Review board report critical of organizations and carriers for allowing infiltration of even well-defe This article has been indexed from IT World Canada Read the original article: Ditch SMS-based MFA, urges board investigating Lapsus$ gang’s successful attacks
Cyber Security Today, August 11, 2023 – Employee mistake leads to Northern Ireland police data breach, why employee awareness training is vital, and more.
This episode reports on the latest phishing attacks, attacks on unsupported and unpatched Zyxel router This article has been indexed from IT World Canada Read the original article: Cyber Security Today, August 11, 2023 – Employee mistake leads to Northern…
Black Hat: Tenable to add AI query module to its Exposure Management platform; DARPA AI Cyber Challenge announced
Analysts can ask the AI module to search an IT environment for vulnerabilities and ge This article has been indexed from IT World Canada Read the original article: Black Hat: Tenable to add AI query module to its Exposure Management…
Solution to hardware flaw in Intel CPUs may cause large performance hit
A hardware flaw in Intel Core and Xeon CPUs lets attackers steal data from other users on the same system, including on servers that use Intel’s SGX memory protections, according to a Google researcher. According to SC Magazine, Daniel Moghimi…
Hundreds of executives are falling for Microsoft 365 phishing attacks: Report
Attacks, which get around MFA protection, use an adversary-in-the-middle phishing kit, says This article has been indexed from IT World Canada Read the original article: Hundreds of executives are falling for Microsoft 365 phishing attacks: Report
Cyber Security Today, August 9, 2023 – The latest ransomware news, and more
This episode reports on the latest trends in ransomware attacks, and security updates from Microsoft, SAP an This article has been indexed from IT World Canada Read the original article: Cyber Security Today, August 9, 2023 – The latest ransomware…
BlackBerry intelligence report reveals a 40 per cent increase in cyberattacks
BlackBerry Limited has released its most recent quarterly global threat intelligence report, shedding light on a concerning 40 per cent rise in cyberattacks directed towards government agencies and the public services sector. The company said its AI-driven cybersecurity solutions successfully…
Identity-based attacks increasing, warns CrowdStrike
Successful identity-based attacks continue to plague IT departments, according to CrowdStrike’s sixth annual Threat Hunting report. Based on an analysis of what they call interactive intrusions — where a threat actor was operating with hands-on-keyboard in a victim’s IT environment…
Many organizations want to limit employee access to AI, survey shows
A large number of organizations are considering or implementing bans on employee use of ChatGPT and other generative AI applications over security, privacy and brand damage concerns, according to a survey by BlackBerry. Three-quarters of 2,000 IT decision-makers in the…
Cyber Security Today, August 4, 2023 – The shadow hanging over IT networks
This episode focuses on what IT leaders should do about This article has been indexed from IT World Canada Read the original article: Cyber Security Today, August 4, 2023 – The shadow hanging over IT networks
Employee banking information stolen from Tennis Canada in cyber incident: Report
News service quotes reliable source saying names, addresses and information of employees This article has been indexed from IT World Canada Read the original article: Employee banking information stolen from Tennis Canada in cyber incident: Report
Hinton vs. Murdoch: A tale of two AIs
At Collision 2023, held in Toronto in late June, there was much discussion about artificial intelligence (AI) and more specifically the ChatGPT chatbot, but nothing illustrated the current situation better than separate keynote speeches delivered by Colin Murdoch and Dr.…
Cyber Security Today, Week in Review for Friday, August 4, 2023
This repeat episode is a conversation with Aaron McIntosh, co-author of the Ransomware Task Forces’ Blueprint for Ransomwar This article has been indexed from IT World Canada Read the original article: Cyber Security Today, Week in Review for Friday, August…