The UK’s Information Commissioner’s Office (ICO) has slapped TikTok with a £12.7
million fine for failing to keep users under the age of 13 from accessing its
platform and “misusing children’s data.”

Although it has a policy that prohibits children under 13 from using its
service, the social media platform needed to have properly enforced it.
According to ICO estimates, roughly 1.4 million children were using TikTok in
the UK alone in 2020.

The risks of exposing young, impressionable minds to

Critical infrastructure attacks are a preferred target for cyber criminals. Here’s why and what’s being done to protect them.
What is Critical Infrastructure and Why is It Attacked?
Critical infrastructure is the physical and digital assets, systems and networks that are vital to national security, the economy, public health, or safety. It can be government- or privately-owned.
According to Etay

Faced with enterprise challenges, the Holy See looks to ensure it avoids a “holey” mobile device management solution.

International information security accreditation and certification body CREST has published a new guide to fostering financial sector cyber resilience in developing countries. The nonprofit’s Resilience in Developing Countries paper forms part of its work in encouraging greater cyber readiness and resilience in emerging nations to help protect key industries from cyberattacks.

The guide outlines that, while increased financial inclusion is a global goal, the less privileged remain highly susceptible to cyberthreats. It also describes the need for appropriate, multi-party cyber resilience testing to ensure better cyber safety in developing nations, along with advice for governing authorities.

To read this article in full, please click here

A digital identification tool provided by OCR Labs to major banks and government agencies leaked sensitive credentials, putting clients at severe risk. The Cybernews research team discovered a misconfiguration in the OCR Labs system that exposed sensitive data. The company is a leading provider of digital ID verification tools, with its IDkit tool being used […]

The post OCR Labs exposes its systems, jeopardizing major banking clients appeared first on Security Affairs.

The Threat Report Portugal: H2 2022 compiles data collected on the malicious campaigns that occurred from July to December, H2, 2022. The Portuguese Abuse Open Feed 0xSI_f33d is an open-sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática. This feed is based on automatic searches and is supported by a healthy […]

The post Threat Report Portugal: Q3 & Q4 2022 appeared first on Security Affairs.

Google’s Threat Analysis Group (TAG) warns of a North Korea-linked cyberespionage group tracked as ARCHIPELAGO. Google’s Threat Analysis Group (TAG) is warning of the North Korea-linked ARCHIPELAGO group that is targeting government and military personnel, think tanks, policy makers, academics, and researchers in South Korea, the US and elsewhere. Google experts are tracking ARCHIPELAGO since […]

The post Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group appeared first on Security Affairs.