Microsoft Power Apps appears to list all data types as public unless the default settings are changed. The data leak exposed several coronavirus tracing and vaccination portals, as well as at least one job applicant database that contained social security numbers.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Behind all the discussions and the growing acceptance or rejection of cryptocurrencies, lies the same truth. Whatever the medium of exchange is, digital assets have to be secure and without trust, no other element is relevant.
Research on underground forums found that cybercriminals made careers selling network access for up to five figures instead of exploiting the networks themselves.
Biden's executive order is stepping up the nation’s cybersecurity measures and this can help enhance the security of autonomous vehicles where an attack could potentially have catastrophic consequences.
Most ransomware attacks begin with some combination of phishing and social engineering. An enterprising ransomware gang in Nigeria appears to be skipping this messy step, simply making a direct pitch to employees to join in on the attack.
Crypto exchange Liquid, one Japan's most popular exchanges, is now short $97 million in total assets after a cyber attack that pulled funds directly from the wallets of some of its customers.
Supply chain vulnerability in the ThroughTek "Kalay" network, a cloud-based communications platform used by an estimated 83 million IoT devices, could allow for remote compromise and control.
Holding companies legally accountable, sharing information, and creating shared security standards won’t completely eradicate ransomware attacks. But they will make it considerably harder to carry out those attacks successfully.
Security vulnerability that impacts an older form of a BlackBerry industrial systems OS, still in use in both industrial settings and hospital equipment, was discovered by Microsoft researchers in April of this year. Many are only now learning about it.
Report found that Russian intelligence agencies FSB and SVR collaborated with ransomware gangs to compromise US government-affiliated organizations using cybercriminals tools and infrastructure.










