VIENNA, 13 July 2016 – OSCE Representative on Freedom of the Media Dunja Mijatović today said that media laws under consideration by the Parliament in Moldova run counter to international standards on media freedom.

On 7 July the Parliament adopted, in the first reading, three amendments to the Audio-visual Code of the Republic of Moldova. All three amendments aim to limit broadcasts in foreign languages or those originating from abroad.

“It is counterproductive to try to limit speech through excessively restrictive legislation,” Mijatović wrote in a letter yesterday to the Chairperson of the Parliament of the Republic of Moldova, Andrian Candu. “In my view it seems excessive and may be ineffective.”

The reasoning given for introducing the restrictive provisions banning broadcasts or rebroadcasts of certain content is that it originates from states that are neither members of the European Union, nor are parties to the European Convention on Transfrontier Television. 

“I trust that the draft laws will be carefully reviewed by the members of Parliament before being adopted in the second reading, ensuring that the regulation does not pose undue limits on free expression and free flow of information,” Mijatović said.

The Representative also pointed to the recommendations of her Office’s non-paper “Propaganda and Freedom of the Media” published in 2015 (available at www.osce.org/fom/203926).

The OSCE Representative on Freedom of the Media observes media developments in all 57 OSCE participating States. She provides early warning on violations of freedom of expression and media freedom and promotes full compliance with OSCE media freedom commitments. Learn more at www.osce.org/fom, Twitter: @OSCE_RFoM and on www.facebook.com/osce.rfom. 

Related Stories

• OSCE Representative condemns incidents directed at journalists and independent voices in Bosnia and Herzegovina
• OSCE Representative condemns murder of journalist Pavel Sheremet in Ukraine
• Russia’s labeling of journalists as terrorists a threat to media freedom, OSCE Representative says

Two hackers have been indicted for their role in the AT&T and Ticketmaster data breaches.

A Secret Service agent assigned to Barack Obama was breaching security while leading a double life, according to a memoir by the agent's former girlfriend.

Bank Nifty futures is now testing the support at 51,000

In the light of the recent security breach at Her Majesty's Revenue and Customs (HMRC), The Department of Social Scrutiny (DoSS) has issued the following statement on the subject of Identity Theft (IT) on behalf of The Government. This statement contains vital advice and the answers to a number...

That is the crux of the problem facing Americas small businesses and consumers: they may not think they’ll be targets of hackers looking for big scores… but all of them probably will be. It is just too easy and too lucrative for hackers to gather and utilize people’s personal information for anyone to be safe – including small enterprises with databases that seem at first blush to be of limited utility.

Reality check: hackers will always go after the weakest link. If they determine that the big guys have toughened up, they’re just going to go after easier targets, like small businesses.

complete article

With a chaotic and largely unsuccessful spring semester behind it, the country is getting ready for a school year unlike any other--and teachers, staff, and parents will need all the help they can get.

Education technology companies are well positioned to capitalize on the shift to remote learning.

January 27, 2006 – Yesterday, the Federal Trade Commission announced that it had reached a settlement agreement to fine ChoicePoint $10 million. The fine is a result of two data breaches last year that exposed personally identifiable financial data of 160,000 consumers to identity thieves. The exposure led to more than 800 cases of identity theft.

NI is not currently in line to get one-off funding to cover the costs of the PSNI data breach.

Your Yahoo account may make you eligible for a settlement check. Here's what to know about the Yahoo data breach settlement.

The post Yahoo Data Breach Settlement: How to File a Claim & Get Paid appeared first on Clark Howard.

Lawyers movement forgotten as year dominated by clashes within legal community.

Charlottesville, VA — Frequent exposure to minor explosions may increase the risk of brain injury and inflammation among members of law enforcement and the military, results of a recent study led by researchers from the University of Virginia show.

Children's Geographies; 10/01/2021
(AN 152966698); ISSN: 14733285
Academic Search Premier

Some industries are more vulnerable to cyber threats hence facing a high risk of experiencing data breaches or other types of cyber attacks in the future.

44% of CISOs surveyed reported they were unable to detect a data breach over the past 12 months using existing security tools, according to Gigamon. 70% of CISOs stated their existing security tools are not as effective as they could be when detecting breaches due to limited visibility.

[Sports] :
The national governing body of badminton has strongly protested the sports ministry's allegations of embezzlement and breach of trust by its chief, Kim Taek-gyu. In a statement late Friday, the Badminton Korea Association(BKA) said it will hold the government legally responsible for defamation, ...

[more...]

Understanding and preparing for the potential long-tail costs of data breaches is crucial for businesses that aim to mitigate the impact of security incidents

Organizations that leveraged AI and automation in security prevention cut the cost of a data breach by $2.22 million compared to those that didn't deploy these technologies

The continued spurt in food prices and fading of the high base effect likely led to a spike in October retail inflation figures. According to a report by the Union Bank of India, retail inflation based on the Consumer Price Index is seen jumping to 6.15 per cent, breaching RBI's 6 per cent tolerance band.

OpenAI executives informed both employees at an all-hands meeting in April last year and the company's board about the breach, according to the report, but executives decided not to share the news publicly as no information about customers or partners had been stolen.

The First-of-its-Kind Partnership Offers Businesses a Lifeline in the Fight Against Deepfake Losses

A Groundbreaking Alliance Providing Businesses with Powerful Real-Time Protection Against AI-Generated Audio Threats

The U.S. 10th Circuit Court of Appeals ruled that an employer was entitled to more than $541,000 in damages for its insurance carrier’s breach of contract. Case: MVT Services LLC v. Great…

A federal appellate court ruled that an insurance carrier could not void a policy based on an employer’s misrepresentation, nor could it maintain a breach-of-contract claim against a marketing agent for failing to…

Twenty five years after the launch of CVE, the Tenable Security Response Team has handpicked 25 vulnerabilities that stand out for their significance.

Background

In January 1999, David E. Mann and Steven M. Christey published the paper “Towards a Common Enumeration of Vulnerabilities” describing an effort to create interoperability between multiple vulnerability databases. To achieve a common taxonomy for vulnerabilities and exposures, they proposed Common Vulnerabilities and Exposures (CVE). In September 1999, the MITRE Corporation finalized the first CVE list, which included 321 records. CVE was revealed to the world the following month.

As of October 2024, there are over 240,000 CVEs. including many that have significantly impacted consumers, businesses and governments. The Tenable Security Response Team has chosen to highlight the following 25 significant vulnerabilities, followed by links to product coverage for Tenable customers to utilize.

25 Significant CVEs

CVE-1999-0211: SunOS Arbitrary Read/Write Vulnerability

CVE-2010-2568: Windows Shell Remote Code Execution Vulnerability

CVE-2014-0160: OpenSSL Information Disclosure Vulnerability

CVE-2014-6271: GNU Bash Shellshock Remote Code Execution Vulnerability

CVE-2015-5119: Adobe Flash Player Use After Free

CVE-2017-11882: Microsoft Office Equation Editor Remote Code Execution Vulnerability

CVE-2017-0144: Windows SMB Remote Code Execution Vulnerability

CVE-2017-5638: Apache Struts 2 Jakarta Multipart Parser Remote Code Execution Vulnerability

CVE-2019-0708: Remote Desktop Services Remote Code Execution Vulnerability

CVE-2020-0796: Windows SMBv3 Client/Server Remote Code Execution Vulnerability

CVE-2019-19781: Citrix ADC and Gateway Remote Code Execution Vulnerability

CVE-2019-10149: Exim Remote Command Execution Vulnerability

CVE-2020-1472: Netlogon Elevation of Privilege Vulnerability

CVE-2017-5753: CPU Speculative Execution Bounds Check Bypass Vulnerability

CVE-2017-5754: CPU Speculative Execution Rogue Data Cache Load Vulnerability

CVE-2021-36942: Windows LSA Spoofing Vulnerability

CVE-2022-30190: Microsoft Windows Support Diagnostic Tool Remote Code Execution

CVE-2021-44228: Apache Log4j Remote Code Execution Vulnerability

CVE-2021-26855: Microsoft Exchange Server Server-Side Request Forgery Vulnerability

CVE-2021-34527: Microsoft Windows Print Spooler Remote Code Execution Vulnerability

CVE-2021-27101: Accellion File Transfer Appliance (FTA) SQL Injection Vulnerability

CVE-2023-34362: Progress Software MOVEit Transfer SQL Injection Vulnerability

CVE-2023-4966: Citrix NetScaler and ADC Gateway Sensitive Information Disclosure Vulnerability

CVE-2023-2868: Barracuda Email Security Gateway (ESG) Remote Command Injection Vulnerability

CVE-2024-3094: XZ Utils Embedded Malicious Code Vulnerability

Identifying affected systems

A list of Tenable plugins for these vulnerabilities can be found on the individual CVE pages:

• CVE-1999-0211
• CVE-2010-2568
• CVE-2014-0160
• CVE-2014-6271
• CVE-2015-5119
• CVE-2017-11882
• CVE-2017-0144
• CVE-2017-5638
• CVE-2019-0708
• CVE-2020-0796
• CVE-2019-19781
• CVE-2019-10149
• CVE-2020-1472
• CVE-2017-5753
• CVE-2017-5754
• CVE-2021-36942
• CVE-2022-30190
• CVE-2021-44228
• CVE-2021-26855
• CVE-2021-34527
• CVE-2021-27101
• CVE-2023-34362
• CVE-2023-4966
• CVE-2023-2868
• CVE-2024-3094

As organizations create and store more data in the cloud, security teams must ensure the data is protected from cyberthreats. Learn more about what causes data breaches and about the best practices you can adopt to secure data stored in the cloud.

With the explosion of data being generated and stored in the cloud, hackers are creating new and innovative attack techniques to gain access to cloud environments and steal data. A review of recent major data breaches shows us that data thieves are using social engineering, hunting for exposed credentials, looking for unpatched vulnerabilities and misconfigurations and employing other sophisticated techniques to breach cloud environments.

A look at recent cloud data-breach trends

Here are some takeaways from major data breaches that have occurred this year:

• Managing the risk from your third-parties – partners, service providers, vendors – has always been critical. It’s even more so when these trusted organizations have access to your cloud environment and cloud data. You must make sure that your third-parties are using proper cloud-security protections to safeguard their access to your cloud data and to your cloud environment.
• Secure your identities. We’ve seen major data breaches this year tracked down to simple missteps like failing to protect highly-privileged admin accounts and services with multi-factor authentication (MFA). 
• Adopt best practices to prevent ransomware attacks, and to mitigate them if you get hit by one. Ransomware gangs know that a surefire way to pressure victims into paying ransoms is to hijack their systems and threaten to expose their sensitive data. 

So, how can you strengthen your data security posture against these types of attacks?

1. Implement a "zero trust" security framework that requires all users, whether inside or outside the organization, to be authenticated, authorized and continuously validated before being granted or maintaining access to data. This framework should allow only time-limited access and be based on the principle of least privilege, which limits access and usage to the minimum amount of data required to perform the job.
2. Use a cloud data security posture management (DSPM) solution to enforce the security framework through continuous monitoring, automation, prioritization and visibility. DSPM solutions can help organizations identify and prioritize data security risks based on their severity, allowing them to focus their resources on the most critical issues.
3. Regularly conduct risk assessments to detect and remediate security risks before they can be exploited by hackers. This can help prevent data breaches and minimize the impact of any security incidents that do occur.
4. Train employees on security best practices, including how to create strong passwords, how to identify risks and how to report suspicious activity.

By following these recommendations, organizations can significantly reduce their risk of a data breach and improve handling sensitive data belonging to their organization. As more and more data moves to the cloud and hackers become more sophisticated, it's essential to prioritize security and take proactive measures to protect against data risks. 

Learn more

• Webinar: Know Your Exposure: Is Your Cloud Data Secure in the Age of AI?
• Data Sheet: Data Security Posture Management (DSPM) Integrated into Tenable Cloud Security
• Data Sheet: Securing AI Resources and Data in the Cloud with Tenable Cloud Security
• Infographic: When CNAPP Met DSPM
• Video: Demo Video: Data Security Posture Management and AI Security Posture Management

If you... exist in the world, it's likely that you have gotten a letter or email at some point informing you that your data was stolen. This happened recently to potentially hundreds of millions of people in a hack that targeted companies like Ticketmaster, AT&T, Advance Auto Parts and others that use the data cloud company Snowflake.

On today's show, we try to figure out where that stolen data ended up, how worried we should be about it, and what we're supposed to do when bad actors take our personal and private information. And: How our information is being bought, sold, and stolen.

This episode was hosted by Amanda Aronczyk and Keith Romer. It was produced by Sam Yellowhorse Kesler and edited by Meg Cramer. It was engineered by Ko Takasugi-Czernowin with an assist from Kwesi Lee, and fact-checked by Dania Suleman. Alex Goldmark is Planet Money's executive producer.

Help support Planet Money and hear our bonus episodes by subscribing to Planet Money+ in Apple Podcasts or at plus.npr.org/planetmoney.

Learn more about sponsor message choices: podcastchoices.com/adchoices

NPR Privacy Policy

VIENNA, 13 July 2016 – OSCE Representative on Freedom of the Media Dunja Mijatović today said that media laws under consideration by the Parliament in Moldova run counter to international standards on media freedom.

On 7 July the Parliament adopted, in the first reading, three amendments to the Audio-visual Code of the Republic of Moldova. All three amendments aim to limit broadcasts in foreign languages or those originating from abroad.

“It is counterproductive to try to limit speech through excessively restrictive legislation,” Mijatović wrote in a letter yesterday to the Chairperson of the Parliament of the Republic of Moldova, Andrian Candu. “In my view it seems excessive and may be ineffective.”

The reasoning given for introducing the restrictive provisions banning broadcasts or rebroadcasts of certain content is that it originates from states that are neither members of the European Union, nor are parties to the European Convention on Transfrontier Television. 

“I trust that the draft laws will be carefully reviewed by the members of Parliament before being adopted in the second reading, ensuring that the regulation does not pose undue limits on free expression and free flow of information,” Mijatović said.

The Representative also pointed to the recommendations of her Office’s non-paper “Propaganda and Freedom of the Media” published in 2015 (available at www.osce.org/fom/203926).

The OSCE Representative on Freedom of the Media observes media developments in all 57 OSCE participating States. She provides early warning on violations of freedom of expression and media freedom and promotes full compliance with OSCE media freedom commitments. Learn more at www.osce.org/fom, Twitter: @OSCE_RFoM and on www.facebook.com/osce.rfom. 

Related Stories

• OSCE Representative condemns incidents directed at journalists and independent voices in Bosnia and Herzegovina
• OSCE Representative condemns murder of journalist Pavel Sheremet in Ukraine
• Russia’s labeling of journalists as terrorists a threat to media freedom, OSCE Representative says

VIENNA, 13 July 2016 – OSCE Representative on Freedom of the Media Dunja Mijatović today said that media laws under consideration by the Parliament in Moldova run counter to international standards on media freedom.

On 7 July the Parliament adopted, in the first reading, three amendments to the Audio-visual Code of the Republic of Moldova. All three amendments aim to limit broadcasts in foreign languages or those originating from abroad.

“It is counterproductive to try to limit speech through excessively restrictive legislation,” Mijatović wrote in a letter yesterday to the Chairperson of the Parliament of the Republic of Moldova, Andrian Candu. “In my view it seems excessive and may be ineffective.”

The reasoning given for introducing the restrictive provisions banning broadcasts or rebroadcasts of certain content is that it originates from states that are neither members of the European Union, nor are parties to the European Convention on Transfrontier Television. 

“I trust that the draft laws will be carefully reviewed by the members of Parliament before being adopted in the second reading, ensuring that the regulation does not pose undue limits on free expression and free flow of information,” Mijatović said.

The Representative also pointed to the recommendations of her Office’s non-paper “Propaganda and Freedom of the Media” published in 2015 (available at www.osce.org/fom/203926).

The OSCE Representative on Freedom of the Media observes media developments in all 57 OSCE participating States. She provides early warning on violations of freedom of expression and media freedom and promotes full compliance with OSCE media freedom commitments. Learn more at www.osce.org/fom, Twitter: @OSCE_RFoM and on www.facebook.com/osce.rfom. 

Related Stories

• OSCE Representative condemns incidents directed at journalists and independent voices in Bosnia and Herzegovina
• OSCE Representative condemns murder of journalist Pavel Sheremet in Ukraine
• Russia’s labeling of journalists as terrorists a threat to media freedom, OSCE Representative says

The company must invest $15.75m to strengthen its cybersecurity and pay a penalty of $15.75m to the US Treasury.

Read more: T-mobile reaches $31.5m settlement with FCC over cybersecurity breaches

More than half of all breaches occurred in the Department of Social Protection, data revealed.

Read more: Human error the leading cause of Government data breaches

The investigation will look into Temu's content and product recommender systems as well as the sale of illegal products on the platform.

Read more: EU to formally investigate Temu for possible breach of DSA

U.S. officials say state-backed Chinese hackers foiled Microsoft’s cloud-based security and hacked the email of officials at multiple U.S. agencies that deal with China ahead of Secretary of State Antony Blinken’s trip to Beijing last month. The surgical, targeted espionage accessed the mailboxes of a small number of individuals at an unspecified number of U.S. agencies and was discovered by the State Department. Officials said none of the breached systems were classified. The hack was disclosed late Tuesday by Microsoft, which said email accounts were haced at about 25 organizations globally beginning in mid-May. A U.S. official said the number of U.S. organizations impacted was in the single digits.

The post Chinese hackers breached State Dept., other government email on eve of Blinken visit, officials say first appeared on Federal News Network.

India's retail inflation rose to 6.21 percent in October. This is a significant increase from September's 5.49 percent. Food prices are the main reason for this surge. This is the first time since August that inflation has gone beyond the Reserve Bank of India's 6 percent limit. The rise in onion prices is a major concern.

The Denver district attorney has launched an investigation into how a spreadsheet of voting system passwords ended up on the Colorado secretary of state's website earlier this year.

An American college student and her boyfriend have been jailed for four months in the Cayman Islands after breaking their Covid-19 rules, with the news apparently causing quite some interest in the USA, with ‘Cayman Islands’ trending as high as fourth in the U.S. rankings on Twitter this morning as people discussed the matter. Cayman — a […]

One of Bernews photographers had the opportunity to tag along with the Ocean Vet team of Dr. Neil Burnie and Choy Aming, getting the chance to see a variety of ocean life in action as the cameras rolled for the production of the 12-part television series. The team has been leaving Flatts inlet on a […]

Canadian law enforcement authorities have arrested an individual who is suspected to have conducted a series of hacks stemming from the breach of cloud data warehousing platform Snowflake earlier this year. The individual in question, Alexander "Connor" Moucka (aka Judische and Waifu), was apprehended on October 30, 2024, on the basis of a provisional arrest warrant, following a request by the

It is also set to be the world's first breach of 1.5C of warming across an entire calendar year.

Honda and Alpine are fined by governing body the FIA after being found guilty of breaching Formula 1's cost-cap rules for engine manufacturers in 2023.

Officials say Israel has taken some steps to meet a US demand for more supplies to enter Gaza, but aid agencies say conditions have actually worsened.