Collecting Cyber-News from over 60 sources

Tag: law

Best Crypto Tax Software in 2025: A Comprehensive Guide

Apr 16, 2025 5:28 AM

Tags: crypto, guide, law, regulation, software

Keeping up with crypto tax laws in Europe feels like a constant hurdle. Regulations evolve, tax authorities demand… First seen on hackread.com Jump to article: hackread.com/best-crypto-tax-software-in-2025-a-comprehensive-guide/
Introducing Wyo Support ADAMnetworks LTP

Apr 16, 2025 12:28 AM

Tags: attack, best-practice, business, compliance, cyber, cybersecurity, data, email, endpoint, finance, GDPR, government, guide, healthcare, infrastructure, insurance, law, linkedin, PCI, phishing, radius, ransomware, regulation, service, skills, strategy, technology, threat, tool, training, update, zero-trust

ADAMnetworks is excited to announce Wyo Support to the family of Licensed Technology Partners. “After working with the various systems and technologies, there are few that compare with the protection that ADAMnetworks provides. It reduces the attack surface from the broad side of a barn down to the size of a keyhole. No other technology…
Chinese law enforcement places NSA operatives on wanted list over alleged cyberattacks

Apr 15, 2025 8:28 PM

Tags: china, cyberattack, law

The allegations, supported by the foreign ministry, are more specific and aggressive than usual and say the U.S. sought to disrupt the Asian Winter Games. First seen on cyberscoop.com Jump to article: cyberscoop.com/chinese-law-enforcement-places-nsa-operatives-on-wanted-list-over-alleged-cyberattacks/
Top Four Considerations for Zero Trust in Critical Infrastructure

Apr 15, 2025 11:28 AM

Tags: access, ai, attack, authentication, automation, best-practice, breach, business, cctv, ceo, cloud, communications, compliance, corporate, cyber, cybersecurity, data, defense, email, encryption, exploit, finance, group, hacker, healthcare, identity, infrastructure, iot, law, malicious, mfa, nis-2, privacy, regulation, risk, saas, service, software, strategy, threat, tool, vulnerability, zero-trust

Top Four Considerations for Zero Trust in Critical Infrastructure madhav Tue, 04/15/2025 – 06:43 TL;DR Increased efficiency = increased risk. Critical infrastructure organizations are using nearly 100 SaaS apps on average and 60% of their most sensitive data is stored in the cloud. Threat actors aren’t naive to this, leading to a whopping 93% of…
Agentic AI is both boon and bane for security pros

Apr 15, 2025 9:28 AM

Tags: access, ai, attack, authentication, cctv, ciso, cloud, conference, control, data, framework, governance, guide, hacker, identity, law, lessons-learned, linux, LLM, microsoft, RedTeam, risk, service, soc, software, strategy, technology, threat, tool, vmware, vulnerability

Recent agentic security signposts: Recently, we have seen numerous examples of how quickly building your own autonomous AI agents has taken root. Microsoft last month demonstrated six new AI agents that work with its Copilot software that talk directly to its various security tools to identify vulnerabilities, flag identity and asset compromises. Simbian is hosting…
Europol Targets Customers of Smokeloader Pay-Per-Install Botnet

Apr 10, 2025 6:06 PM

Tags: botnet, law, malicious

Law enforcement agencies in multiple countries have announced the arrests of users of the malicious Smokeloader botnet. The post Europol Targets Customers of Smokeloader Pay-Per-Install Botnet appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/europol-targets-customers-of-smokeloader-pay-per-install-botnet/
Europol Arrests Five SmokeLoader Clients Linked by Seized Database Evidence

Apr 10, 2025 1:05 PM

Tags: botnet, law, malware

Law enforcement authorities have announced that they tracked down the customers of the SmokeLoader malware and detained at least five individuals.”In a coordinated series of actions, customers of the Smokeloader pay-per-install botnet, operated by the actor known as ‘Superstar,’ faced consequences such as arrests, house searches, arrest warrants or ‘knock and talks,’” Europol said in…
Trump revokes security clearances for Chris Krebs, SentinelOne in problematic precedent for security vendors

Apr 10, 2025 12:06 PM

Tags: access, business, ceo, cloud, cybersecurity, data, government, intelligence, law, service, zero-trust

Like living ‘in Stalin’s Soviet Union’: At the same time Trump revoked security clearances from Krebs and SentinelOne, he issued another executive order revoking the security clearance of former Department of Homeland Security official Miles Taylor, as well as any entities associated with him, including the University of Pennsylvania.Taylor is a veteran of multiple Republican administrations…
Smokeloader Malware Operators Busted, Servers Seized by Authorities

Apr 10, 2025 11:06 AM

Tags: botnet, cyber, cybercrime, infrastructure, law, malware, usa

In a major victory against cybercrime, law enforcement agencies across North America and Europe have dismantled the infrastructure behind the Smokeloader malware, a notorious pay-per-install (PPI) botnet service. This decisive action, a continuation of the groundbreaking Operation Endgame from May 2024, marks yet another blow to the global malware ecosystem. The Smokeloader botnet, operated by…
Oracle Appears to Admit Breach of 2 ‘Obsolete’ Servers

Apr 9, 2025 11:05 PM

Tags: breach, cloud, infrastructure, law, oracle

The database company said its Oracle Cloud Infrastructure (OCI) was not involved in the breach. And at least one law firm seeking damages is already on the case. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/oracle-breach-2-obsolete-servers
Data privacy regulators lobby lawmakers to not draft federal legislation preempting state laws

Apr 9, 2025 10:06 PM

Tags: data, law, privacy

The head of the California Privacy Protection Agency and New Jersey Attorney General Matthew Platkin argued their relatively tough state privacy laws should not be overtaken by what is sure to be weaker federal legislation. First seen on therecord.media Jump to article: therecord.media/data-privacy-law-state-lobby-congress
Police detains Smokeloader malware customers, seizes servers

Apr 9, 2025 5:55 PM

Tags: botnet, law, malware

In follow-up activity for Operation Endgame, law enforcement tracked down Smokeloader botnet’s customers and detained at least five individuals. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/police-detains-smokeloader-malware-customers-seizes-servers/
Privacy fights over expiring surveillance law loom after House hearing

Apr 8, 2025 11:51 PM

Tags: law, privacy

At issue are warrant requirements sought by Judiciary Committee members and other gripes they have about the most recent Section 702 legislation. First seen on cyberscoop.com Jump to article: cyberscoop.com/house-judiciary-committee-privacy-protections-fisa-section-702-reform-2024/
Arguing Against CALEA

Apr 8, 2025 3:42 PM

Tags: breach, computer, cybersecurity, data, data-breach, infrastructure, jobs, law, phone, threat, unauthorized

At a Congressional hearing earlier this week, Matt Blaze made the point that CALEA, the 1994 law that forces telecoms to make phone calls wiretappable, is outdated in today’s threat environment and should be rethought: In other words, while the legally-mandated CALEA capability requirements have changed little over the last three decades, the infrastructure that…
UAC-0226 Deploys GIFTEDCROOK Stealer via Malicious Excel Files Targeting Ukraine

Apr 8, 2025 1:42 PM

Tags: attack, computer, cyber, email, government, law, malicious, military, phishing, ukraine

The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed a new set of cyber attacks targeting Ukrainian institutions with information-stealing malware.The activity is aimed at military formations, law enforcement agencies, and local self-government bodies, particularly those located near Ukraine’s eastern border, the agency said.The attacks involve distributing phishing emails First seen on thehackernews.com Jump…
10 things you should include in your AI policy

Apr 8, 2025 8:42 AM

Tags: access, ai, best-practice, breach, business, ceo, ciso, compliance, cybersecurity, data, data-breach, finance, framework, gartner, GDPR, governance, incident response, insurance, law, monitoring, privacy, regulation, risk, software, strategy, switch, technology, tool, training, update

Input from all stakeholders: At Aflac, the security team took the initial lead on developing the company’s AI policy. But AI is not just a security concern. “And it’s not just a legal concern,” Ladner says. “It’s not just a privacy concern. It’s not just a compliance concern. You need to bring all the stakeholders…
Europe preparing to ‘ease the burden’ of landmark data privacy law

Apr 7, 2025 9:42 PM

Tags: compliance, data, GDPR, law, privacy

EU officials say it’s possible to make GDPR compliance easier for smaller organizations while ensuring that data privacy rules still work as intended. First seen on therecord.media Jump to article: therecord.media/eu-proposal-changes-gdpr-small-medium-businesses
Hackers are pretending to be drone companies and state agencies to spy on Ukrainian victims

Apr 7, 2025 7:42 PM

Tags: country, government, hacker, law, spy, ukraine

The hackers have targeted Ukraine’s armed forces, law enforcement agencies and local government bodies, especially those near the country’s eastern border, which is close to Russia. First seen on therecord.media Jump to article: therecord.media/hackers-impersonate-drone-companies-state-agencies-spy-ukraine
EDR-as-a-Service makes the headlines in the cybercrime landscape

Apr 7, 2025 10:42 AM

Tags: cybercrime, cybersecurity, data, edr, exploit, group, law, service

Cybercriminals exploit compromised accounts for EDR-as-a-Service (Emergency Data Requests EDR), targeting major platforms According to a detailed analysis conducted by Meridian Group, an increasingly complex and structured phenomenon, commonly referred to as “EDR-as-a-Service,” is taking hold in the cybersecurity landscape. In a nutshell, some criminal groups are exploiting compromised accounts belonging to law enforcement […]…
The risks of entry-level developers over relying on AI

Apr 7, 2025 8:42 AM

Tags: ai, attack, awareness, best-practice, cio, ciso, compliance, cybersecurity, exploit, jobs, law, malicious, open-source, programming, resilience, risk, skills, software, technology, threat, tool, training, update, vulnerability

The risks of blind spots, compliance and license violation: As generative AI becomes more embedded in software development and security workflows, cybersecurity leaders are raising concerns about the blind spots it can potentially introduce. “AI can produce secure-looking code, but it lacks contextual awareness of the organization’s threat model, compliance needs, and adversarial risk environment,”…
DDoS Attacks Now Key Weapons in Geopolitical Conflicts, NETSCOUT Warns

Apr 4, 2025 7:42 PM

Tags: ai, attack, botnet, ddos, hacker, law

Hackers now use AI and botnets to launch powerful DDoS attacks, bypassing security and overwhelming servers as law enforcement struggles to keep up. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-ddos-cyberattacks-political-conflicts-netscout/
23andMe Bankruptcy: Should DNA Data Go to the Top Bidder?

Apr 4, 2025 6:42 PM

Tags: data, finance, law

Lawyer Jonathan Armstrong on Legal, Ethical Fallout From Looming 23andMe Auction. The financial collapse of personal genomics giant 23andMe raises an urgent question: What happens to your most intimate data when the company holding it goes bankrupt? Jonathan Armstrong, partner at Punter Southall Law, warns of cascading legal, ethical and security consequences. First seen on…
Alan Turing Institute: UK can’t handle a fight against AI-enabled crims

Apr 4, 2025 11:42 AM

Tags: ai, law

Law enforcement facing huge gap in ‘AI adoption’ First seen on theregister.com Jump to article: www.theregister.com/2025/04/04/nca_ati_ai_report/
EU Pushes for Backdoors in EndEnd Encryption

Apr 4, 2025 12:42 AM

Tags: access, backdoor, cyber, data, encryption, intelligence, law, strategy

European Commission Demands Law Enforcement Access to Data. The European Commission’s ProtectEU strategy aims to overhaul internal security, proposing law enforcement access to encrypted data by 2026 and a roadmap to explore lawful encryption backdoors and enhanced intelligence-sharing between EU member states and agencies to combat rising cyber threats. First seen on govinfosecurity.com Jump to…
Oracle quietly admits data breach, days after lawsuit accused it of cover-up

Apr 3, 2025 6:42 PM

Tags: access, attack, authentication, breach, cloud, compliance, credentials, crime, cve, cybersecurity, data, data-breach, endpoint, exploit, finance, fraud, hacker, identity, infrastructure, intelligence, law, oracle, resilience, risk, service, strategy, supply-chain, technology, theft, threat, vulnerability

Lawsuit challenges Oracle’s response: The reports of Oracle’s acknowledgement of the breach come just days after the company was hit with a class action lawsuit over its handling of the security breach.The lawsuit specifically addresses a major security breach discovered in March that reportedly compromised 6 million records containing sensitive authentication-related data from Oracle Cloud…
Major Online Platform for Child Exploitation Dismantled

Apr 3, 2025 6:42 PM

Tags: exploit, international, law

An international law enforcement operation has shut down Kidflix, a platform for child sexual exploitation with 1.8m registered users First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/online-platform-child-exploitation/
Europol-led operation shuts down CSAM platform Kidflix, leading to 79 arrests

Apr 3, 2025 5:42 PM

Tags: exploit, international, law

An international law enforcement operation shuts down Kidflix, a child sexual abuse material (CSAM) streaming platform with 1.8M users. An international operation, codenamed Operation Stream, against child sexual exploitation shuts down one of the largest streaming platforms that offered child sexual abuse material (CSAM) in the world, Kidflix. The investigation was led by the State…
Navigating Saudi Arabia’s Personal Data Protection Law (PDPL): A Guide to Compliance

Apr 3, 2025 2:42 PM

Tags: access, ai, compliance, control, data, GDPR, governance, guide, identity, intelligence, law, monitoring, privacy, service

Navigating Saudi Arabia’s Personal Data Protection Law (PDPL): A Guide to Compliance madhav Thu, 04/03/2025 – 04:30 The Kingdom of Saudi Arabia (KSA) has taken a significant step towards bolstering data protection with its Personal Data Protection Law (PDPL), marking a pivotal moment in the region’s digital landscape. The PDPL, enforced by the Saudi Data…
Europol Dismantles Kidflix With 72,000 CSAM Videos Seized in Major Operation

Apr 3, 2025 7:42 AM

Tags: law

In one of the largest coordinated law enforcement operations, authorities have dismantled Kidflix, a streaming platform that offered child sexual abuse material (CSAM).”A total of 1.8 million users worldwide logged on to the platform between April 2022 and March 2025,” Europol said in a statement. “On March 11, 2025, the server, which contained around 72,000…
Don’t cut CISA personnel, House panel leaders say, as they plan legislation giving the agency more to do

Apr 3, 2025 1:42 AM

Tags: cisa, law, threat

Reps. Andrew Garbarino and Eric Swalwell said legislative priorities include an expiring information-sharing law and making a threat information-sharing organization permanent. First seen on cyberscoop.com Jump to article: cyberscoop.com/cisa-workforce-cuts-house-leaders-legislation/