Over Security

Over Security

33500 bookmarks
Custom sorting
Compliance e tutela del patrimonio informativo: le linee guida per la gestione del rischio legale
Compliance e tutela del patrimonio informativo: le linee guida per la gestione del rischio legale
La protezione dati è una leva strategica di mitigazione del rischio legale: sanzioni fino al 4% del fatturato globale, responsabilità penale personale e danni reputazionali rendono la compliance non un costo ma un investimento. Ecco come strutturare governance, strumenti operativi e tutele contrattuali per ridurre concretamente l'esposizione legale
·cybersecurity360.it·
Compliance e tutela del patrimonio informativo: le linee guida per la gestione del rischio legale
Indirect prompt injection: il phishing che non deve ingannare nessuno, tranne l’AI
Indirect prompt injection: il phishing che non deve ingannare nessuno, tranne l’AI
Le nuove campagne di phishing puntano non a ingannare una persona, bensì l’intelligenza artificiale. Soprattutto l'agente AI che naviga il web in autonomia, confronta fonti e, in alcuni casi, esegue direttamente transazioni per conto di un'organizzazione. Ecco come si stia muovendo questo fronte
·cybersecurity360.it·
Indirect prompt injection: il phishing che non deve ingannare nessuno, tranne l’AI
Winning 54% of the time
Winning 54% of the time
With Wimbledon's help, Hazel argues against the popular myth that "Attackers only need to be right once, but defenders need to be right 100% of the time."
·blog.talosintelligence.com·
Winning 54% of the time
Web scraping: le nuove linee guida EDPB per l’era dell’AI generativa
Web scraping: le nuove linee guida EDPB per l’era dell’AI generativa
L'European Data Protection Board ha adottato le nuove linee guide per il web scraping nel contesto dell’AI generativa, aperte alla consultazione pubblica fino a fine ottobre di quest’anno. L’obiettivo è quello di fornire indicazioni più che operative con lo stile sempre chiaro ed esemplificativo tipico delle linee guida del Board. Vediamo meglio
·cybersecurity360.it·
Web scraping: le nuove linee guida EDPB per l’era dell’AI generativa
Compliance aziendale: come semplificarla con Innovio
Compliance aziendale: come semplificarla con Innovio
Compliance aziendale: come semplificare processi, controlli e documentazione adottando i tool giusti. La visione di Innovio
·cybersecurity360.it·
Compliance aziendale: come semplificarla con Innovio
Compliance e tutela del patrimonio informativo: le linee guida per la gestione del rischio legale
Compliance e tutela del patrimonio informativo: le linee guida per la gestione del rischio legale
La protezione dati è una leva strategica di mitigazione del rischio legale: sanzioni fino al 4% del fatturato globale, responsabilità penale personale e danni reputazionali rendono la compliance non un costo ma un investimento. Ecco come strutturare governance, strumenti operativi e tutele contrattuali per ridurre concretamente l'esposizione legale
·cybersecurity360.it·
Compliance e tutela del patrimonio informativo: le linee guida per la gestione del rischio legale
Indirect prompt injection: il phishing che non deve ingannare nessuno, tranne l’AI
Indirect prompt injection: il phishing che non deve ingannare nessuno, tranne l’AI
Le nuove campagne di phishing puntano non a ingannare una persona, bensì l’intelligenza artificiale. Soprattutto l'agente AI che naviga il web in autonomia, confronta fonti e, in alcuni casi, esegue direttamente transazioni per conto di un'organizzazione. Ecco come si stia muovendo questo fronte
·cybersecurity360.it·
Indirect prompt injection: il phishing che non deve ingannare nessuno, tranne l’AI
Fake Banking Rewards, Telegram Delivery and Albiriox: Anatomy of an Android Malware Campaign
Fake Banking Rewards, Telegram Delivery and Albiriox: Anatomy of an Android Malware Campaign
A brand monitoring alert led D3Lab to uncover a fraudulent Android malware campaign abusing a major Italian banking brand. The campaign uses a fake reward landing page and a Telegram bot to convince victims to install a malicious APK. Technical analysis revealed a self-contained dropper delivering a
·d3lab.net·
Fake Banking Rewards, Telegram Delivery and Albiriox: Anatomy of an Android Malware Campaign
Fake Banking Rewards, Telegram Delivery and Albiriox: Anatomy of an Android Malware Campaign
Fake Banking Rewards, Telegram Delivery and Albiriox: Anatomy of an Android Malware Campaign
A brand monitoring alert led D3Lab to uncover a fraudulent Android malware campaign abusing a major Italian banking brand. The campaign uses a fake reward landing page and a Telegram bot to convince victims to install a malicious APK. Technical analysis revealed a self-contained dropper delivering a
·d3lab.net·
Fake Banking Rewards, Telegram Delivery and Albiriox: Anatomy of an Android Malware Campaign
Fake Banking Rewards, Telegram Delivery and Albiriox: Anatomy of an Android Malware Campaign
Fake Banking Rewards, Telegram Delivery and Albiriox: Anatomy of an Android Malware Campaign
A brand monitoring alert led D3Lab to uncover a fraudulent Android malware campaign abusing a major Italian banking brand. The campaign uses a fake reward landing page and a Telegram bot to convince victims to install a malicious APK. Technical analysis revealed a self-contained dropper delivering a
·d3lab.net·
Fake Banking Rewards, Telegram Delivery and Albiriox: Anatomy of an Android Malware Campaign
Police arrests 5,800 suspects in global anti-fraud crackdown
Police arrests 5,800 suspects in global anti-fraud crackdown
Law enforcement agencies have arrested 5,811 suspects and seized $293 million in illicit assets in a global anti-fraud operation spanning 97 countries.
·bleepingcomputer.com·
Police arrests 5,800 suspects in global anti-fraud crackdown
Microsoft to retire the OWA Light client in Exchange Server
Microsoft to retire the OWA Light client in Exchange Server
Microsoft has announced plans to disable Outlook Web Access (OWA) Light, the lightweight version of the Outlook Web App email client, in a future Exchange Server update.
·bleepingcomputer.com·
Microsoft to retire the OWA Light client in Exchange Server
The Hidden Security Risks of Reduced Summer IT Coverage
The Hidden Security Risks of Reduced Summer IT Coverage
Security operations don't slow down when IT teams take vacation, but staffing levels often do. Kaseya explains how AI-driven automation can help organizations maintain consistent security operations and reduce reliance on manual processes year-round.
·bleepingcomputer.com·
The Hidden Security Risks of Reduced Summer IT Coverage
New Forg365 phishing platform uses AI to target Microsoft 365 accounts
New Forg365 phishing platform uses AI to target Microsoft 365 accounts
A new phishing-as-a-service (PhaaS) operation called Forg365 focuses on stealing Microsoft 365 accounts by combining adversary-in-the-middle (AiTM) and device code methods with AI-assisted lure generation.
·bleepingcomputer.com·
New Forg365 phishing platform uses AI to target Microsoft 365 accounts
Microsoft expects more Windows security updates from AI-discovered flaws
Microsoft expects more Windows security updates from AI-discovered flaws
Microsoft says Windows users should expect to see an increase in security updates as the company increasingly relies on artificial intelligence to discover vulnerabilities in its codebase.
·bleepingcomputer.com·
Microsoft expects more Windows security updates from AI-discovered flaws
New Helix vishing group emerges in SharePoint data theft attacks
New Helix vishing group emerges in SharePoint data theft attacks
A new data-extortion group called Helix is using identity-focused tactics such as voice phishing (vishing), device code phishing, and multi-factor authentication (MFA) abuse to steal data from SharePoint environments.
·bleepingcomputer.com·
New Helix vishing group emerges in SharePoint data theft attacks
Police arrests 5,800 suspects in global anti-fraud crackdown
Police arrests 5,800 suspects in global anti-fraud crackdown
Law enforcement agencies have arrested 5,811 suspects and seized $293 million in illicit assets in a global anti-fraud operation spanning 97 countries.
·bleepingcomputer.com·
Police arrests 5,800 suspects in global anti-fraud crackdown
Microsoft to retire the OWA Light client in Exchange Server
Microsoft to retire the OWA Light client in Exchange Server
Microsoft has announced plans to disable Outlook Web Access (OWA) Light, the lightweight version of the Outlook Web App email client, in a future Exchange Server update.
·bleepingcomputer.com·
Microsoft to retire the OWA Light client in Exchange Server
The Hidden Security Risks of Reduced Summer IT Coverage
The Hidden Security Risks of Reduced Summer IT Coverage
Security operations don't slow down when IT teams take vacation, but staffing levels often do. Kaseya explains how AI-driven automation can help organizations maintain consistent security operations and reduce reliance on manual processes year-round.
·bleepingcomputer.com·
The Hidden Security Risks of Reduced Summer IT Coverage