Verizon Employee Data Exposed in Insider Threat Incident

Tens of thousands of workers are affected by a fellow employee dipping into files that include everything from SSNs and names to union status and compensation data. [TechWeb]( Follow Dark Reading: [RSS]( February 07, 2024 LATEST SECURITY NEWS & COMMENTARY [Verizon Employee Data Exposed in Insider Threat Incident]( Tens of thousands of workers are effected by a fellow employee dipping into files that include everything from SSNs and names to union status and compensation data. [Critical Bugs in Canon Small Office Printers Allow Code Execution, DDoS]( A grouping of serious printer bugs, unveiled at last summer's Pwn2Own, were patchless for months, but are finally fixed now. [Microsoft Azure HDInsight Bugs Expose Big Data to Breaches]( Security holes in a big data tool could lead to big data compromise. [Twin Max-Severity Bugs Open Fortinet's SIEM to Code Execution]( Full 10s on the CVSS vulnerability severity scale have been assigned to two flaws discovered in Fortinet's FortiSIEM cybersecurity operations platform. [Crucial Airline Flight Planning App Open to Interception Risks]( Airbus-owned NAVBLUE fixed the issue after a penetration testing firm disclosed the problem to the company. [World Govs, Tech Giants Sign Spyware Responsibility Pledge]( France, the UK, the US, and others will work on a framework for the responsible use of tools like NSO Group's Pegasus, and Shadowserver Foundation gains £1 million investment. ['ResumeLooters' Attackers Steal Millions of Career Records]( The cyberattackers used SQL injection and XSS to target 65 retail companies and job recruiters, stealing databases with unique emails and other sensitive records. [How Neurodiversity Can Help Fill the Cybersecurity Workforce Shortage]( Many people with ADHD, autism, dyslexia, and other neurodiverse conditions bring new perspectives that can help organizations solve cybersecurity challenges. [UAE Cybersecurity Official Warns of VPN Abuse]( More than 6 million VPNs are now deployed on devices in the United Arab Emirates. [Nigerian University Rolls Out Cybersecurity Degree Program]( Nigerian University of Technology and Management plans to compete on the global cyber-education stage. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Google: Govs Drive Sharp Growth of Commercial Spyware Cos]( Private spyware vendors were behind nearly half of all zero-day exploits in Google products since 2014. [How the SEC's Rules on Cybersecurity Incident Disclosure Are Exploited]( Cyber hygiene is no longer a nice-to-have but necessary for organizations that want to survive the relentless barrage of cyberattacks being unleashed daily. [Deepfake-Generating Apps Explode, Allowing Multimillion-Dollar Corporate Heists]( Deepfakes are fast becoming more realistic, and access to them more democratic, enabling even ordinary attackers to enact major fraud. What's the most effective way to fight back? [MORE]( PRODUCTS & RELEASES [Akamai Announces Content Protector to Stop Scraping Attacks]( [Post-Quantum Cryptography Alliance Launches to Advance Post-Quantum Cryptography]( [IONIX ​​Completes $42M Financing Round to Expand Threat Exposure Management Across the Entire Attack Surface]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [AnyDesk Compromised, Passwords Revoked]( Production systems at the remote access company were breached, leading AnyDesk to revoke code signing certificate and reset Web portal credentials as part of its incident response. LATEST FROM THE EDGE [As Smart Cities Expand, So Do the Threats]( The systems that make up a smart city ecosystem are not easily secured and require better design and better policy to ensure they are not vulnerable. LATEST FROM DR TECHNOLOGY [Microsoft Adds Face Check to Entra Verified ID]( Microsoft released the public preview of Face Check, which detects a user's liveness and compares appearance against existing documents such as a driver’s license to verify identity. LATEST FROM DR GLOBAL [Check Point CEO to Step Down After 3 Decades]( Gil Shwed will assume the position of executive chairman once a new CEO is appointed. WEBINARS - [Securing the Software Development Life Cycle from Start to Finish]( - [API Security: Protecting Your Application's Attack Surface]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [SANS ICS/OT Cybersecurity Survey: 2023's Challenges and Tomorrow's Defenses]( - [Threat Terrain of the Modern Factory: Survey of Programmable Assets and Robot Software]( - [Pixelle's OT Security Triumph with Security Inspection]( - [The OT Zero Trust Handbook: Implementing the 4 Cornerstones of OT Security]( - [2023 Snyk AI-Generated Code Security Report]( - [Buyer's Guide: Choosing a True DevSecOps Solution for Your Apps on AWS]( - [Understanding AI Models to Future-Proof Your AppSec Program]( [View More White Papers >>]( FEATURED REPORTS - [The State of Supply Chain Threats]( - [How to Deploy Zero Trust for Remote Workforce Security]( - [What Ransomware Groups Look for in Enterprise Victims]( Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ... [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=121070&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_02.07.24&sp_cid=51841&utm_content=DR_NL_Dark%20Reading%20Daily_02.07.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#c2 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)