Security Boulevard

via the inimitable Daniel Stori at Turnoff.US!

Permalink

The post Daniel Stori’s Turnoff.US: ‘My Sweet ML Model’ appeared first on Security Boulevard.

A report finds a third (33%) of the cloud security incidents investigated by IBM Security X-Force researchers, involved phishing attacks to steal credentials, followed closely by 28% of incidents that involved attacks where cybercriminals had already obtained some type of valid credential.

The post IBM X-Force Security Report Spotlights Lack of Cloud Security Fundamentals appeared first on Security Boulevard.

The DOJ created NexFundAI, a false cryptocurrency company and token, in a sting that nabbed 19 people and companies accused of scamming investors by falsely creating the illusion of activity around their crypto and then selling at the inflated price in what investigators call "pump and dump" and "market maker" schemes.

The post DOJ Created NexFundAI Crypto Firm in Crypto Scamming Sting appeared first on Security Boulevard.

Authors/Presenters:Arjun Balasingam, Manikanta Kotaru, Paramvir Bahl

Our sincere thanks to USENIX, and the Presenters & Authors for publishing their superb 21st USENIX Symposium on Networked Systems Design and Implementation (NSDI '24) content, placing the organizations enduring commitment to Open Access front and center. Originating from the conference’s events situated at the Hyatt Regency Santa Clara; and via the organizations YouTube channel.

Permalink

The post USENIX NSDI ’24 – Application-Level Service Assurance with 5G RAN Slicing appeared first on Security Boulevard.

     Today, we celebrate the proud heritage of Italian Americans in our Nation, whose contributions and character have shaped our country’s soul.

     I believe we are the only Nation in the world with a heart and soul that draws from old and new.  For some Italian-American families, the stories they share about their ancestors’ lives in this country stretch back generations.  They are stories about immigrants who left everything behind to sail across an ocean and chase the American Dream for the hope of a brighter future.  They are stories about ancestors who helped build this country and found America’s middle class — and their traditions and recipes still bring joy to their families today.  They are stories of Italian-American artists, laborers, lawmakers, and leaders who never gave up on the idea of America.  And for many Italian Americans, the story of Christopher Columbus’ voyage crossing the Atlantic from the Spanish port of Palos de la Frontera on behalf of Queen Isabella I and King Ferdinand II remains a source of pride.  But no matter if their families arrived here centuries ago or only recently, Italian Americans’ courage, strength, and character are woven into the rich tapestry of our country.

     For many Italian Americans, the lives of their ancestors in this country were not always easy.  In addition to the challenges of starting life in a new land, they also faced discrimination.  Columbus Day was founded by President Benjamin Harrison in 1892 in response to the horrific, xenophobic attack that took the lives of 11 Italian Americans the year before.  In the face of hate, Italian Americans persisted — advancing our Nation and challenging us to live up to our highest values. 

     My Administration also recognizes that Italian Americans are a source of strength in our country’s unshakeable alliance, strategic partnership, and deep friendship with Italy.  The ties between our countries are founded on our shared values and principles:  democracy, freedom, and respect for human rights.  Both of our nations take pride in standing with the brave people of Ukraine as they defend themselves against Russia’s illegal aggression.

     Today, may we honor the history and heritage of Italian Americans and all that they have done to help realize the full promise of America for generations.

     In commemoration of Christopher Columbus’ historic voyage 532 years ago, the Congress, by joint resolution of April 30, 1934, and modified in 1968 (36 U.S.C. 107), as amended, has requested the President proclaim the second Monday of October of each year as “Columbus Day.”

     NOW, THEREFORE, I, JOSEPH R. BIDEN JR., President of the United States of America, do hereby proclaim October 14, 2024, as Columbus Day.  I direct that the flag of the United States be displayed on all public buildings on the appointed day in honor of our diverse history and all who have contributed to shaping this Nation.

     IN WITNESS WHEREOF, I have hereunto set my hand this
eleventh day of October, in the year of our Lord two thousand twenty-four, and of the Independence of the United States of America the two hundred and forty-ninth.
 
                               JOSEPH R. BIDEN JR.

The post Happy United States of America’s Columbus Day October 14, 2024 appeared first on Security Boulevard.

At Seceon’s 2024 Innovation and Certification Days, we had the privilege of showcasing one of the strongest partnerships in the cybersecurity landscape today—our collaboration with Exertis, a leading distributor of enterprise IT solutions who recently launched their own MSP powered by Seceon. During the event, Seceon’s own Peter Christou sat down with Geoff Towns and

The post How Exertis and Seceon Are Redefining Cybersecurity for MSPs: A Partnership Built on Innovation appeared first on Seceon Inc.

The post How Exertis and Seceon Are Redefining Cybersecurity for MSPs: A Partnership Built on Innovation appeared first on Security Boulevard.

Learn how to automate Helm deployments with GitOps, using Argo CD for continuous delivery. Seamlessly handle secrets, pod auto-restart, and version propagation in Kubernetes with this production-ready integration.

The post Make Deployments Great Again: How to Use Helm with Continuous Deployment (CD) appeared first on Security Boulevard.

When it comes to healthcare data security, HIPAA is the name everyone knows. It’s been around for decades, laying down the law on handling patient information. But what if I told you there’s another player in town? I’m talking about the HICP—the “Health Industry Cybersecurity Practices” publication. If you haven’t heard of it, you’re not […]

The post HICP vs. HIPAA: Understanding the Differences and Their Impact on Healthcare Compliance appeared first on Centraleyes.

The post HICP vs. HIPAA: Understanding the Differences and Their Impact on Healthcare Compliance appeared first on Security Boulevard.

Perfectl in an impressive piece of malware:

The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers from Aqua Security said. It can also exploit CVE-2023-33246, a vulnerability with a severity rating of 10 out of 10 that was patched last year in Apache RocketMQ, a messaging and streaming platform that’s found on many Linux machines.

The researchers are calling the malware Perfctl, the name of a malicious component that surreptitiously mines cryptocurrency. The unknown developers of the malware gave the process a name that combines the perf Linux monitoring tool and ctl, an abbreviation commonly used with command line tools. A signature characteristic of Perfctl is its use of process and file names that are identical or similar to those commonly found in Linux environments. The naming convention is one of the many ways the malware attempts to escape notice of infected users...

The post Perfectl Malware appeared first on Security Boulevard.

As global markets become more interconnected and businesses strive for agility and cost-efficiency, outsourcing software development has become a strategic choice for companies worldwide. The...Read More

The post India, Latin America, or Vietnam: Where Should You Outsource Software Development in 2024? appeared first on ISHIR | Software Development India.

The post India, Latin America, or Vietnam: Where Should You Outsource Software Development in 2024? appeared first on Security Boulevard.

Publicly exposed, critically vulnerable and highly privileged workloads are putting organizations at risk of cloud data losses and cyberattacks, according to a Tenable report, which labeled the vulnerabilities a “toxic cloud triad”.

The post Toxic Triad of Cloud Vulnerabilities Puts Businesses at Risk appeared first on Security Boulevard.

A Proclamation on Indigenous Peoples’ Day, 2021

Since time immemorial, American Indians, Alaska Natives, and Native Hawaiians have built vibrant and diverse cultures — safeguarding land, language, spirit, knowledge, and tradition across the generations. On Indigenous Peoples’ Day, our Nation celebrates the invaluable contributions and resilience of Indigenous peoples, recognizes their inherent sovereignty, and commits to honoring the Federal Government’s trust and treaty obligations to Tribal Nations.

Our country was conceived on a promise of equality and opportunity for all people — a promise that, despite the extraordinary progress we have made through the years, we have never fully lived up to. That is especially true when it comes to upholding the rights and dignity of the Indigenous people who were here long before colonization of the Americas began. For generations, Federal policies systematically sought to assimilate and displace Native people and eradicate Native cultures. Today, we recognize Indigenous peoples’ resilience and strength as well as the immeasurable positive impact that they have made on every aspect of American society. We also recommit to supporting a new, brighter future of promise and equity for Tribal Nations — a future grounded in Tribal sovereignty and respect for the human rights of Indigenous people in the Americas and around the world.

In the first week of my Administration, I issued a memorandum reaffirming our Nation’s solemn trust and treaty obligations to American Indian and Alaska Native Tribal Nations and directed the heads of executive departments and agencies to engage in regular, meaningful, and robust consultation with Tribal officials. It is a priority of my Administration to make respect for Tribal sovereignty and self-governance the cornerstone of Federal Indian policy. History demonstrates that Native American people — and our Nation as a whole — are best served when Tribal governments are empowered to lead their communities and when Federal officials listen to and work together with Tribal leaders when formulating Federal policy that affects Tribal Nations.

The contributions that Indigenous peoples have made throughout history — in public service, entrepreneurship, scholarship, the arts, and countless other fields — are integral to our Nation, our culture, and our society. Indigenous peoples have served, and continue to serve, in the United States Armed Forces with distinction and honor — at one of the highest rates of any group — defending our security every day. And Native Americans have been on the front lines of the COVID-19 pandemic, working essential jobs and carrying us through our gravest moments. Further, in recognition that the pandemic has harmed Indigenous peoples at an alarming and disproportionate rate, Native communities have led the way in connecting people with vaccination, boasting some of the highest rates of any racial or ethnic group.

The Federal Government has a solemn obligation to lift up and invest in the future of Indigenous people and empower Tribal Nations to govern their own communities and make their own decisions. We must never forget the centuries-long campaign of violence, displacement, assimilation, and terror wrought upon Native communities and Tribal Nations throughout our country. Today, we acknowledge the significant sacrifices made by Native peoples to this country — and recognize their many ongoing contributions to our Nation.

On Indigenous Peoples’ Day, we honor America’s first inhabitants and the Tribal Nations that continue to thrive today. I encourage everyone to celebrate and recognize the many Indigenous communities and cultures that make up our great country.

NOW, THEREFORE, I, JOSEPH R. BIDEN JR., President of the United States of America, do hereby proclaim October 11, 2021, as Indigenous Peoples’ Day. I call upon the people of the United States to observe this day with appropriate ceremonies and activities. I also direct that the flag of the United States be displayed on all public buildings on the appointed day in honor of our diverse history and the Indigenous peoples who contribute to shaping this Nation.

IN WITNESS WHEREOF, I have hereunto set my hand this eighth day of October, in the year of our Lord two thousand twenty-one, and of the Independence of the United States of America the two hundred and forty-sixth.

JOSEPH R. BIDEN JR.

Permalink

The post Happy United States of America Indigenous Peoples’ Day appeared first on Security Boulevard.

Scytale makes Tekpon’s Top Compliance Software list again for seamless solutions and expert guidance. Discover why businesses choose us!

The post Scytale Makes Tekpon’s Top Compliance Software List (Again!) appeared first on Scytale.

The post Scytale Makes Tekpon’s Top Compliance Software List (Again!) appeared first on Security Boulevard.

Infosecurity.US Wishes Our Family, Friends And All Canadians Everywhere, A Safe And Happy Thanksgiving 14 October 2024! / Infosecurity.US souhaite à notre famille, à nos amis et à tous les Canadiens Partout, un Thanksgiving sûr et joyeux 14 octobre 2024 !

The post Happy Canadian Thanksgiving / Joyeux Canadien Action de Grâce appeared first on Security Boulevard.

What is the KCDPA? The Kentucky Consumer Data Protection Act (KCDPA) is a state-level privacy law designed to safeguard the personal information of Kentucky residents. Like other state privacy regulations, KCDPA sets rules for how businesses collect, use, store, and share consumer data. The law aims to ensure that individuals have greater control over their […]

The post Kentucky Consumer Data Protection Act (KCDPA) appeared first on Centraleyes.

The post Kentucky Consumer Data Protection Act (KCDPA) appeared first on Security Boulevard.

In the milestone 350th episode of the Shared Security Podcast, the hosts reflect on 15 years of podcasting, and the podcast’s evolution from its beginnings in 2009. They discuss the impact of a current hurricane on Florida, offering advice on using iPhone and Android satellite communication features during emergencies. The ‘Aware Much’ segment focuses on […]

The post Emergency Satellite Messaging, Stagnation in User Cybersecurity Habits appeared first on Shared Security Podcast.

The post Emergency Satellite Messaging, Stagnation in User Cybersecurity Habits appeared first on Security Boulevard.

Executive Summary Researchers at the Spark Research Lab (University of Texas at Austin)1, under the supervision of Symmetry CEO Professor...

The post ConfusedPilot: UT Austin & Symmetry Systems Uncover Novel Attack on RAG-based AI Systems appeared first on Symmetry Systems.

The post ConfusedPilot: UT Austin & Symmetry Systems Uncover Novel Attack on RAG-based AI Systems appeared first on Security Boulevard.

Authors/Presenters:Vaibhav Singh, Tusher Chakraborty, Suraj Jog, Om Chabra, Deepak Vasisht, Ranveer Chandra

Our sincere thanks to USENIX, and the Presenters & Authors for publishing their superb 21st USENIX Symposium on Networked Systems Design and Implementation (NSDI '24) content, placing the organizations enduring commitment to Open Access front and center. Originating from the conference’s events situated at the Hyatt Regency Santa Clara; and via the organizations YouTube channel.

Permalink

The post USENIX NSDI ’24 – Spectrumize: Spectrum-Efficient Satellite Networks for the Internet of Things appeared first on Security Boulevard.

One of the biggest dilemmas for security teams is when to patch vulnerabilities. This is a classic “Patch-22” situation—patching immediately can be time-consuming and disruptive, but waiting leaves your organization exposed to cyber threats. It’s a tough balancing act between fixing vulnerabilities and maintaining business continuity.  With cyberattacks evolving and becoming more frequent, waiting to […]

The post Patch-22: The Catch of Waiting to Fix Cybersecurity Vulnerabilities  appeared first on VERITI.

The post Patch-22: The Catch of Waiting to Fix Cybersecurity Vulnerabilities  appeared first on Security Boulevard.

Bad actors often take advantage of natural disasters, and especially hurricanes, in times of crisis. Hurricanes Helene and Milton pose significant new online threats, including misinformation and fraud.

The post Misinformation, Online Scams Surging Following Historic Hurricanes appeared first on Security Boulevard.