The Record

The Ontario and Alberta information and privacy commissioners’ reports fault the school systems for several missteps, including not putting privacy and security related provisions in their contracts with the education software firm.

Under the proposal, the EU would weaken data protection rules by delaying when regulations governing high-risk AI systems take effect and allowing companies to use personal data for AI training without prior consent from users in most circumstances.

The threat group PlushDaemon uses routers and other network device implants to redirect domain name system (DNS) queries to malicious external servers which take over updates to unleash tools used for cyberespionage.

News that the Airlines Reporting Corporation (ARC) will shut down its controversial Travel Intelligence Program (TIP) surfaced in a letter ARC CEO Lauri Reishus sent to a bipartisan group of lawmakers on Tuesday.

A "specific overseas facility" fell prey to a ransomware attack but is now operating normally, according to LG Energy Solution — the South Korean multinational's battery-making subsidiary.

Officials at the Congressional Budget Office “have not observed further evidence of unauthorized access" to the legislative branch agency's systems, Director Phillip Swagel told lawmakers.

Voting was not disrupted Tuesday by a wave of DDoS incidents affecting political party and government websites in Denmark a day earlier, officials said.

The upcoming strategy would contain six “pillars” — with one focused on “shaping adversary behavior” and another on public-private partnerships, Sean Cairncross said.

The PILLAR Act, which would renew federal cybersecurity grants to state and local governments through 2033, passed by voice vote in the House.

Social Security numbers and medical information were among the data stolen in an August breach of the networks of Pennsylvania's attorney general, officials said.

The filing comes one week after the Clop cybercriminal organization claimed it stole information from Logitech through a zero-day vulnerability in Oracle’s E-Business Suite tool.

White-hat hacker and pentester Kamel Ghali talks with the Click Here podcast team about how cars became computers on wheels — and why, in the race for smarter tech, safety is still trying to catch up.

A handful of Kenyan government websites were defaced with white supremacist slogans.

Information including names, email addresses, telephone numbers, and home and business addresses is stored on the database, in addition to donation information.

U.S. government agencies have been given a shorter window than usual to patch a critical vulnerability affecting Fortinet's FortiWeb firewall product.

British automotive giant Jaguar Land Rover said a cyberattack caused a huge hit to its bottom line in the most recent quarter.

The U.S. and European law enforcement released new information to help organizations defend themselves against the Akira ransomware gang, which has attacked small- and medium-sized businesses for years.

Joining nations such as Russia, Georgia and Hungary, legislators in Kazakhstan voted to censor what they label as “LGBT propaganda” in the media and online.

The operation used a sophisticated phishing kit designed to impersonate the login and payment pages of Aruba S.p.A., stealing customer credentials and credit card details.

The cyberthreat information sharing law known as CISA 2015 and a cybersecurity grant program for state and local governments have been renewed as part of legislation to reopen the government.