CSO Online: Latest Cybersecurity News

"Google rolls out passkey support across all major platforms."

Views expressed in this cybersecurity, cybercrime update are those of the reporters and correspondents.  Accessed on 03 May 2023, 1351 UTC.  Content provided by "CSO Online."

Source:   https://feedly.com/i/collection/content/user/f401222a-bca6-4c45-9cc1-183f239e8d86/category/418bf719-5c3d-400f-86b5-d19504f2fc07 ("CSO Online").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

TODAY

Google rolls out passkey support across accounts on all major platforms

CSO Online / 10min

Google has begun rolling out support for passkeys across Google Accounts on all major platforms, adding a new sign-in option that can be used alongside passwords and two-step verification. The tech giant announced passkey availability on the eve of World Password Day as it looks to introduce more secure, reliable sign-in options. The rollout comes in the wake of Google updates on bringing passkey

Attacks increasingly use malicious HTML email attachments

4 TTPs

•

CSO Online / 59min

Researchers warn that attackers are relying more on malicious HTML files in their attacks, with malicious files now accounting for half of all HTML attachments sent via email. This rate of malicious HTML prevalence is double compared to what it was last year and doesn't appear to be the result of mass attack campaigns that send the same attachment to a large number of people. "When it comes to at

BlackCat group releases screenshots of stolen Western Digital data

CSO Online / 2h

Ransomware group BlackCat has released a set of screenshots on its leak site that it claims are from data stolen from Western Digital in an April system breach. The images include screenshots of videoconferences and internal emails of the storage device manufacturer, according to a tweet by cybersecurity researcher Dominic Alvieri. The screenshots also included an image of a recent meeting held b

oneM2M IoT security specifications granted ITU approval

CSO Online / 2h

The ITU Telecommunication Standardization Sector (ITU-T) has approved a set of security specifications for internet of things (IoT) systems. The oneM2M specifications define a common set of IoT service functions to enable secure data exchange and information interoperability across different vertical sectors, service providers, and use cases. The specifications were approved by more than 190 coun

YESTERDAY

Skilling up the security team for the AI-dominated era

CSO Online / 4h

As artificial intelligence and machine learning models become more firmly woven into the enterprise IT fabric and the cyberattack infrastructure, security teams will need to level up their skills to meet a whole new generation of AI-based cyber risks. Forward-looking CISOs are already being called upon to think about newly emerging risks like generative AI-enabled phishing attacks that will be mo

BrandPost: 7 considerations for successful digital transformation

CSO Online / 14h

The way we do business has changed dramatically over the last several years. To remain agile and competitive, organizations must embrace digital transformation. But doing so securely means stepping outside the old ways of establishing a network perimeter, protecting it, and trusting everything inside. Doing things the way they have always been done doesn’t work in the hybrid workplace, where the

Samsung bans staff AI use over data leak concerns

Samsung AI ChatGPT

•

CSO Online / 21h

Samsung has reportedly banned employee use of generative AI tools like ChatGPT in a bid to stop transmission of sensitive internal data to external servers. The South Korean electronics giant issued a memo to a key division, notifying employees not to use AI tools, according to a report by Bloomberg , which said it reviewed the memo. Bloomberg did not report which division received the memo. To r

Veza releases access security, governance solution for SaaS applications

Veza access security

•

CSO Online / 1d

Data security authorization vendor Veza has announced a new solution for access security and governance across SaaS applications including Salesforce, GitHub, and Slack. Veza for SaaS Apps allows customers to automate access reviews, find and fix privilege access violations, trim privilege sprawl, and prevent SaaS misconfigurations – securing the attack surface associated with widespread SaaS app

MAY 01

White House seeks information on tools used for automated employee surveillance

White House tools

•

CSO Online / 1d

The information will be used to ascertain if employers are violating antitrust and privacy laws, for instance, if companies use technologies to artificially reduce wages.

11 security tools all remote employees should have

CSO Online / 1d

It’s no secret that humans are the biggest vulnerability to any corporate network. Whether it’s an inability to properly manage password complexity across multiple systems, poor social media habits, or even a lack of awareness with things like email links, online shopping, or app and software usage. A major problem for businesses, particularly in a post-COVID world with so many people working rem

ChatGPT returns to Italy after OpenAI tweaks privacy disclosures, controls

OpenAI ChatGPT chat

•

CSO Online / 1d

ChatGPT is again available to users in Italy, after being temporarily banned by the country's data privacy authority for possible violations of the EU's General Data Protection Regulation (GDPR). Italy's Guarantor for the Protection of Personal Data announced the reinstatement of ChatGPT Friday, after Microsoft-backed OpenAI, the creator of the generative AI service, made changes requested by the

Is misinformation the newest malware?

CSO Online / 2d

Misinformation and cybersecurity incidents have become the top scourges of the modern digital era. Rarely does a day go by without significant news of a damaging misinformation threat, a ransomware attack, or another malicious