Security Terminology

In November 2023, the Lockbit ransomware gang claimed responsibility for targeting the Infosys McCamish system, and it appears that the aftermath of the data breach is unfolding.

Bank of America customers participating in deferred compensation plans are facing concerns after a data breach at Infosys McCamish Systems (IMS), a third-party provider managing these plans. The incident, initially reported in November 2023 but only publicly disclosed this month, exposed the personal information of 57,028 individuals.

As artificial intelligence continues advancing at a rapid pace, criminals are increasingly using AI capabilities to carry out sophisticated scams and attacks. Technologies that synthesize realistic fake media, known as deepfakes, are among the newest tools being deployed to enable fraud.

In December 2023, the genetic testing company 23andMe confirmed that hackers had breached the personal data of 14,000 users (.01% of their database) through credential stuffing. However, it later became evident that this figure only accounted for users with compromised data, not including those whose data was scraped. Consequently, the actual number of affected users was much higher, reaching about 6.9 million. The stolen data ranged from usernames and passwords to genomic data and geographic locations.

A data breach of LectureNotes Learning App has affected over 2 million users. The leaked data totals 2,165,139 records and includes the personal information of its users, such as username, first and last names, session tokens, phone numbers, emails, passwords, IP addresses, user-agents and administrator authorization IDs.

Security leaders share their thoughts on this breach and how organizations can protect the sensitive information of their users.

What is easily the most ambitious deepfake scam yet has taken place in Hong Kong, where attackers were able to convince an employee of an unnamed company to transfer HK$200 million (about $25 million) via a fake video conference populated by simulations of the CFO and other personnel. Fraud involving deepfake audio is increasingly common, but this is the first known scheme of this sort to incorporate fake representations of multiple people.

In this episode we share the details of a recent nation state actor attack on Microsoft and some of the lessons learned.

Last year saw a nearly 80% surge in data compromises compared to 2022, with 3,205 incidents recorded, according to a report from the Information Theft Resource Center (ITRC).

Despite the surge in breaches, the number of victims impacted saw a 16% decline from 2022, totaling 353,027,892 individuals.

The New Year was less than two weeks old when Microsoft announced the first major cybersecurity incident of the year, one involving a Russian-affiliated group that targeted the software giant’s internal corporate network to steal documents and emails.

Do on-premise systems give system administrators greater levels of control and is that better for security or other reasons?

Sectigo®, the industry’s most innovative provider of comprehensive certificate lifecycle management (CLM), today announced that it has been awarded the 2024 Customer Value Leadership Award by Frost & Sullivan.

Frost & Sullivan reserves top recognition for organizations at the forefront of innovation and growth. Leading companies create new products, solutions, and services that meet ever-evolving customer needs to advance the overall market.

SCOTTSDALE, Ariz., — February 8, 2024 — Sectigo®, the industry’s most innovative provider of comprehensive certificate lifecycle management (CLM), today announced that it has been awarded the 2024 Customer Value Leadership Award by Frost & Sullivan.

Sectigo®, the industry’s most innovative provider of comprehensive certificate lifecycle management (CLM), today announced the newest member of its senior executive team with the appointment of Mark Bilger as chief product and technology officer.

Mark will be responsible for all of the company’s product functions, including research and development, product strategy, engineering, and information technology. He joins Sectigo with more than 35 years’ experience that includes a progression of leadership roles across technology and engineering functions at companies like Dell, Hyperion, HP, York Risk, and more.