Author: Staff Writer

New evidence shows Microsoft 365 may expose sensitive health information over email without encryption or notice—posing HIPAA compliance risks for providers A new report from Paubox, a leader in HIPAA compliant email, reveals that Microsoft 365’s email encryption behavior could be putting healthcare organizations at serious risk of noncompliance. In a series of controlled TLS experiments, Paubox researchers found that Microsoft 365 may transmit messages in cleartext when encryption fails, without bouncing the message, alerting the sender, or logging any evidence of the failure. This occurred when messages were sent to recipient servers that did not support modern TLS protocols.…

In the dynamic world of Application Security, the rush to adopt cloud-based and containerized web apps has been game-changing. Yet, the 2023 OPSWAT Web Application Security Survey shows a paradox — security has not kept up, even with bigger budgets. Why? And what can you do about it?  Join an elite panel of security gurus:  Emo Gokay from EY Technology Solutions, a visionary in multi-cloud security landscapes.  George Prichici from OPSWAT, the VP of Application Security who is at the frontline of evolving cybersecurity challenges.  Together, they will decode complex challenges, spotlight 5 key technologies transforming the security landscape, and offer…

Welcome to this week’s edition of the Weekly Cybertech Roundup, where we bring you the most significant developments and trends shaping the world of cyber technology. From groundbreaking innovations to critical security updates, our roundup highlights the key stories that are driving the industry forward. Whether you’re a tech enthusiast, a cybersecurity professional, or just curious about the latest advancements, we’ve got you covered with all the insights you need to stay informed. Let’s dive into this week’s highlights! Brand Covered: Resecurity Headline: Resecurity to Accelerate LGPD Compliance in Brazil As Brazilian enterprises, government institutions, and infrastructure providers work to meet Lei Geral de…

Technology on board the AROYA Cruise ship enhances passenger experience and operational efficiency Insight Enterprises has successfully completed its most ambitious project to date – the extensive and complex IT transformation of the cruise ship Manara, now rebranded as the AROYA. Insight’s exemplary work on the AROYA demonstrates an architecture-led approach to implementing cutting-edge technology, redefining the cruise ship experience. Passengers can look forward to unparalleled advancements, including state-of-the-art guest service systems with mobile apps, self-service kiosks, and personalised digital interactions—all seamlessly integrated through the IT modernisation programme delivered by Insight. Cyber Technology Insights : Available Infrastructure Launches SanQtum, a First-of-a-Kind Cybersecurity and…

Essential Insights A hacker named "Rey," affiliated with the Hellcat Ransomware group, claims to have stolen 106GB of data from Telefónica, with a partial leak of 2.6GB provided as proof of a breach that occurred on May 30. The breach reportedly resulted from a misconfiguration in a Jira server, allowing uninterrupted data exfiltration for 12 hours before access was revoked; Rey asserts that detailed files include internal communications, purchase orders, and employee data. Despite numerous attempts by BleepingComputer to confirm the breach, Telefónica has denied it, dismissing the incident as an extortion attempt related to previous data. Rey plans to…

Top Highlights Global Outage Impact: Ingram Micro, a major B2B technology distributor, is facing a significant global outage affecting its websites and internal systems, which began Thursday morning. Employee and Customer Concerns: The company’s silence on the outage’s cause has raised concerns among customers and employees, with claims circulating about a potential cyberattack, possibly ransomware. Access Issues: Users visiting Ingram Micro’s website encounter restricted access messages or maintenance notifications, preventing order placements and internal access for employees. Potential Indicators of Breach: The duration of the outage and the shutdown of internal systems align with common signs of a cybersecurity breach,…

Essential Insights Introduction of NightEagle: A new threat actor, NightEagle (APT-Q-95), targeting Microsoft Exchange servers through a zero-day exploit chain is focused on sectors in China such as government, defense, and technology since 2023. Attack Details: NightEagle has rapidly changed its network infrastructure and utilizes a modified version of the Go-based Chisel utility for advanced intranet penetration, enabling intelligence gathering from high-tech and military entities. Trojan Delivery Mechanism: The trojan is delivered via a .NET loader implanted into the Internet Information Server (IIS) of Microsoft Exchange, exploiting a zero-day vulnerability to obtain unauthorized access and read mailbox data. Timing and…

Welcome to your Daily CyberTech Highlights! Each day, we bring you the most essential news and insightful analysis from the world of Cybersecurity, Cloud security, Data protection, Data privacy and Technology. Stay informed on the latest trends, threats, and innovations shaping the digital landscape, so you can make informed decisions and stay ahead of the curve. Let’s dive into today’s top stories! Daily CyberTech Highlights Brand Covered: Resecurity Headline: Resecurity to Accelerate LGPD Compliance in Brazil As Brazilian enterprises, government institutions, and infrastructure providers work to meet Lei Geral de Proteção de Dados (LGPD) requirements, Resecurity, a U.S.-based global leader in cybersecurity and threat intelligence, is expanding its operations…

Working Together to Accelerate Innovation and Product Expansion SS8 Networks (“SS8”), a leader in Lawful and Location Intelligence and Monitoring center platforms, announced its acquisition by Mill Point Capital LLC (“Mill Point”). The strategic move marks a significant milestone in SS8’s growth trajectory and will fuel expansion into new markets, bolster its technology stack, including AI-driven innovations, and enhance its core offerings in mediation, criminal monitoring, and investigative solutions. The partnership with Mill Point will enable SS8 to accelerate its investment in product development, adding advanced capabilities and driving the next generation of solutions tailored to the needs of intelligence agencies, law enforcement, regulatory…

Essential Insights Cartel Hacking Operations: A hacker hired by El Chapo’s cartel compromised FBI data and surveillance systems, resulting in the intimidation or murder of cooperating witnesses, as reported by a Justice Department watchdog. Longstanding Vulnerability: A critical flaw in the Sudo command-line tool, existing for 12 years in most Linux servers, allowed unauthorized root command execution; it was recently patched with a CVSS score of 9.3. Ransomware Sentencing: The developer of Crylock ransomware received a seven-year prison sentence, with law enforcement seizing over €60 million (~$70 million) in criminal proceeds related to the operation. Data Breaches and Arrests: Swiss…