-
![]()
Microsoft Enhances Security for OneNote Users by Blocking Dangerous File Extensions
Microsoft has announced an update to its popular note-taking application, OneNote, to improve security measures for users by automatically blocking embedded files with extensions that are considered dangerous. The change comes as a response to an increase in malicious campaigns exploiting OneNote’s ability to attach files that could be executed with limited warnings to users.…
-
![]()
Italy Bans OpenAI’s ChatGPT Over Privacy and Data Collection Concerns
ROME – Italy’s data protection watchdog, the Italian Data Protection Authority, or Garante per la Protezione dei Dati Personali, has announced a ban on the use of OpenAI’s ChatGPT, an AI chatbot based on the GPT-4 architecture, citing privacy concerns and data collection issues. The decision comes after a thorough investigation by the Italian Data…
-
![]()
Cybersecurity Community Offers Assistance in Wake of 3CX Supply Chain Attack
3CX is facing backlash from customers who are dissatisfied with how the company has handled the recent security incident. Initially, the company dismissed reports of malware as false positives and some users claim they were even told to pay for a support ticket to resolve the issue. CEO Nick Galea has admitted that the company…
-
![]()
3CX Issues Security Alert for Desktop App Following Supply Chain Attack Concerns
3CX, a leading provider of business communication solutions, has issued a security alert regarding its desktop application. The company has warned users that a vulnerability has been identified in the application’s security protocols, which could potentially be exploited by cybercriminals to gain unauthorized access to user data. The vulnerability affects the 3CX desktop application for…
-
![]()
FDA’s New Guidance on Cybersecurity for Medical Devices
Washington, D.C. – The U.S. Food and Drug Administration (FDA) has announced new guidance concerning cybersecurity in medical devices. The document, titled “Cybersecurity in Medical Devices: Refuse to Accept Policy for Cyber Devices and Related Systems Under Section 524B of the FD&C Act,” provides critical information for the medical device industry and outlines the FDA’s…
-
![]()
OpenAI’s ChatGPT suffers security breach through open-source library bug
OpenAI, the organization behind the popular chatbot ChatGPT, has confirmed a data breach that exposed users’ personal information. The breach was caused by a bug in an open-source library called Redis-py, introduced by OpenAI on March 20. As a consequence, users were able to access chat data that did not belong to them, and sensitive…
-
![]()
Latitude Financial Services Faces Class Action Lawsuit Over Massive Data Breach
Latitude Financial Services is facing the possibility of a class action lawsuit following the revelation that personal information of 14 million customers has been exposed in a data breach. The breach, which took place over several years, included customer names, addresses, phone numbers, and dates of birth, along with 7.9 million Australian and New Zealand…
-
![]()
Law Firm Fined $200K for Data Breach Caused by Cybersecurity Lapses
The Heidell, Pittoni, Murphy & Bach law firm has agreed to pay $200,000 to the state of New York over data security lapses that led to a data breach in 2021. The breach exposed the private data of nearly 115,000 hospital patients, including over 61,000 New Yorkers, due to the firm’s failure to comply with…
-
![]()
Sun Pharma Reports Security Incident, Ransomware Group Claims Massive Data Breach
Sun Pharmaceutical, one of India’s largest drug makers, reported an information security incident on March 2nd, 2023, which impacted some of its IT assets. The company has taken appropriate containment and remediation actions to address the incident and stated that it did not impact its core systems and operations. However, the threat actor group ALPHV…
-
![]()
Ransomware Protection: What Every Small Organization Needs to Know
Consider waking up to discover that all of your organization’s crucial files and data have been encrypted, and the lone approach to getting to them again is paying a ransom to the hacker. This is the risk of ransomware attacks, one that small organizations cannot ignore. With the frequency of attacks increasing, it’s imperative that…
