Sensitive Information stories - Page 2

Barracuda reveals cybercriminals exploiting content platforms for phishing, targeting educational institutions and businesses worldwide with deceitful emails.

Tenable uncovers a critical SSRF vulnerability in Microsoft's Copilot Studio that could expose sensitive information across multiple tenants. Microsoft has since issued a fix.

Businesses adopting generative AI tools must implement Confidential AI solutions to protect proprietary data and maintain robust Zero Trust policies.

Kaspersky has uncovered a sophisticated cyber fraud scheme, 'Tusk,' exploiting popular trends like web3 and AI to steal cryptocurrency and sensitive data.

Thousands of websites using Oracle NetSuite's SuiteCommerce may be leaking private customer information due to misconfigured access controls.

Barracuda Networks reports a new wave of phishing attacks using advanced “infostealer” malware that exfiltrates extensive sensitive data, urging enhanced cybersecurity measures.

Kaspersky warns that AI's growing accessibility is enabling cybercriminals to launch sophisticated attacks, making robust AI defences crucial.

Employees' widespread use of GenAI apps poses privacy risks as 30.8% of these tools train on customer data, a new study by Harmonic Security reveals.

Cybercriminals capitalised on a CrowdStrike Falcon outage by creating over 180 fake support websites, targeting 8.5 million affected devices worldwide.

Cybercriminals are leveraging legitimate URL protection services to disguise phishing attacks, targeting hundreds of companies, reports Barracuda Networks.

Harmonic Security launches Harmonic Protect, a zero-touch data protection tool for the generative AI era, eliminating manual data labelling and complex rules.

Barracuda Networks reveals cybercriminals are exploiting URL protection services to embed malicious code in phishing emails, deceiving recipients into clicking harmful links.

As deepfake technology proliferates, businesses must safeguard employees against emerging scams, highlighted by a recent US$25 million fraud case in Hong Kong.

Apple users are being targeted with 'MFA bombing,' a phishing method that exploits repeated password prompts and spoofed calls to gain account access.

Cyberattacks threaten the public sector's stability and security, Trustwave's new report reveals, urging robust cyber defence to protect critical systems.

Taiwanese retail giant, Heng Leong Hang, enhances cyber defence with the integration of CyberArk's Identity Security Platform into its cyber security strategy to protect core systems and customer data.

Kaspersky study unveils that between 2021-2023, access control and data protection flaws were found in numerous corporate web applications.

CrowdStrike, a cybersecurity heavyweight, plans to acquire Flow Security, intensifying its leadership in cloud security and pioneering a platform that protects data in all states.

Group-IB reveals a 39% surge in ransomware attacks across APAC, with the region named as a prime target for advanced cyber threats.

Security solutions firm i-PRO underscores the importance of data privacy in a world increasingly under surveillance.