IT Governance

DECEMBER 27, 2019

A royal baby, a fire at Notre-Dame, the highest grossing film of all time and more than 12 billion breached data records: 2019 has been quite a year. IT Governance is closing out the year by rounding up 2019’s biggest information security stories. IT Governance released its final Weekly Podcast.

Data breaches 69

Data breaches GDPR Passwords Personal data 69

Security Affairs

AUGUST 5, 2020

Today, the TIM’s Red Team Research led by Massimiliano Brolli, discovered 4 new vulnerabilities that have been addressed by the manufacturer WOWZA Streaming Engine, between the end of 2019 and July 2020.

Manufacturing 113

Manufacturing Government Access Security 113

Security Affairs

FEBRUARY 21, 2024

government offers rewards of up to $15 million for information that could lead to the identification or location of LockBit ransomware gang members and affiliates. LockBit is a prominent ransomware operation that first emerged in September 2019. ” reads the press release published by the U.S. “The

Energy and Utilities 82

Energy and Utilities Ransomware Agriculture Manufacturing 82

IT Governance

NOVEMBER 23, 2023

Although the total number of data breaches – or rather, in those reported – decreased by 24% between 2019 and 2022 in the finance sector, the number of incidents increased by 99%. So to account for seasonality, we’ve only looked at Q2–Q4 for all four years (2019–2022). million (about £4.70

Risk 104

Risk Data breaches Authentication Financial Services 104

Security Affairs

AUGUST 9, 2021

Most of the attacks have been reported in July, the organizations hit by the ransomware gang operate in professional services, construction, manufacturing, retail, and food industries. The LockBit ransomware gang has been active since September 2019, in June the group announced the LockBit 2.0 in Australia since 2020.

Ransomware 107

Ransomware Retail Security Manufacturing 107

Krebs on Security

FEBRUARY 20, 2024

First surfacing in September 2019, the gang is estimated to have made hundreds of millions of U.S. The government says Russian national Artur Sungatov used LockBit ransomware against victims in manufacturing, logistics, insurance and other companies throughout the United States. Department of Justice (DOJ).

Ransomware 257

Ransomware Encryption Insurance Manufacturing 257

Security Affairs

OCTOBER 12, 2020

Researchers from the US-based firm Cyble recently came across a post shared by an unknown threat actor that goes online with the moniker Spectre123, where he has allegedly leaked the sensitive documents of NATO and Havelsan (Turkish Military/defence manufacturer). ” reads the post published by Cyble.

Military 127

Military Manufacturing Phishing Government 127

IT Governance

JANUARY 9, 2024

KG Source 1 ; source 2 (New) Manufacturing Germany Yes 1.1 TB Halara Cannabis Source (New) Manufacturing USA Yes >1,000,000 Proax Technologies Ltd. Source 1 ; source 2 (Update) Manufacturing USA Yes 735 Osteopathic Healing Hands Source (New) Healthcare USA Yes 707 Marathon Coach, Inc.

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

Security Affairs

APRIL 26, 2023

German government warns that technology to regulate power consumption in Huawei network appliances could be used for sabotage purposes. government officials as well as European security authorities, which have warned of the risks associated with Chinese telecoms equipment.” In November 2019, the U.S.

Government 92

Government Communications Risk Cybersecurity 92

Security Affairs

SEPTEMBER 1, 2020

“The adversary is particularly interested in exploits related to VPNs and network appliances , including CVE-2019-11510, CVE-2019-19781, and most recently CVE-2020-5902; reliance on exploits such as these lends to an opportunistic operational model.” ” reads the report published by Crowdstrike.

Access 82

Access Financial Services Retail Insurance 82

Data Protection Report

OCTOBER 5, 2022

In Ontario, the Automated Vehicle Pilot Program is currently in place to permit the testing of certain AVs by vehicle manufacturers. In Canada, driving and road safety is a shared responsibility between provincial/territorial and federal governments. As such, the deployment of AVs requires action from both levels of government.

Manufacturing 62

Manufacturing Government Cybersecurity Compliance 62

Security Affairs

JUNE 8, 2022

Chinese hackers employed open-source tools for reconnaissance and vulnerability scanning, according to the government experts, they have utilized open-source router specific software frameworks, RouterSploit and RouterScan [ T1595.002 ], to identify vulnerable devices to target.

Authentication 93

Authentication Passwords Systems administration Manufacturing 93

Security Affairs

DECEMBER 7, 2019

Alleged Vietnamese Ocean Lotus (APT32) hackers breached the networks of the car manufacturers BMW and Hyundai to steal automotive trade secrets. According to German media, hackers suspected to be members of the Vietnam-linked APT Ocean Lotus ( APT32 ) group breached the networks of the car manufacturers BMW and Hyundai.

Manufacturing 82

Manufacturing Government Security IT 82

Everteam

APRIL 2, 2019

To support organizations in their efforts to manage their information properly, Spigraph is making two Everteam governance products available: everteam.discover and everteam.policy: everteam.discover is a file and content analytics solution that connects to both structured and unstructured data repositories across the organization.

Information governance 40

Information governance Marketing Government Digital transformation 40

Data Matters

AUGUST 30, 2021

According to the Order, Pearson learned in March 2019 that millions of rows of data had been accessed and downloaded from a company server by a threat actor exploiting an unpatched vulnerability. The Order alleges that Pearson continued to use the server until July 2019 — the time the server was previously scheduled to be retired.

Cybersecurity 97

Cybersecurity Risk Data Privacy Passwords 97

Security Affairs

OCTOBER 10, 2020

Major Belgium’s telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei. One of the major Belgium telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei.

Manufacturing 105

Manufacturing Risk Communications Security 105

Security Affairs

FEBRUARY 20, 2024

LockBit is a prominent ransomware operation that first emerged in September 2019. Today, additional criminal charges against Kondratyev were unsealed in the Northern District of California related to his deployment in 2020 of ransomware against a victim located in California.” on January 5, 2020.

Energy and Utilities 91

Energy and Utilities Ransomware Manufacturing Agriculture 91

Security Affairs

SEPTEMBER 21, 2020

The IoT Cybersecurity Improvement Act First was first introduced in 2017, and later in 2019, a new version was introduced. Frankly, manufacturers today just don’t have the appropriate market incentives to properly secure the devices they make and sell – that’s why this legislation is so important,” explained Sens.

IoT 120

IoT Cybersecurity Manufacturing Government 120

Security Affairs

JANUARY 25, 2020

The breach was detected almost eight months ago, on June 28, 2019, with the delay being attributed to the increased complexity of the investigation caused by the attackers deleting activity logs. “On The intrusion took place on June 28, 2019, and the company launched an investigation in September 2019.

Manufacturing 122

Manufacturing Sales Data breaches Access 122

Security Affairs

JANUARY 20, 2020

The breach was detected almost eight months ago, on June 28, 2019, with the delay being attributed to the increased complexity of the investigation caused by the attackers deleting activity logs. The intrusion took place on June 28, 2019, and the company launched an investigation in September 2019.

Data breaches 115

Data breaches Computer and Electronics Government Manufacturing 115

Security Affairs

JANUARY 28, 2022

Taiwanese electronics manufacturing company Delta Electronics was hit by the Conti ransomware that took place this week. “According to the report, the sample may have been used in an attack on Taiwanese electronics manufacturing company Delta Electronics Inc. ” reported a statement from the security company cited by CTWANT.

Ransomware 83

Ransomware Computer and Electronics Manufacturing Encryption 83

Thales Cloud Protection & Licensing

FEBRUARY 16, 2021

Driven by the need to secure themselves against increasing threats, organizations (both manufacturers and IoT consumers) realize that they need better built-in security. IoT manufacturers may elect either using an on-premises HSM or (even better) using a managed, on-demand cloud-based HSM service.

IoT 96

IoT Manufacturing Energy and Utilities Encryption 96

Security Affairs

OCTOBER 18, 2022

The Operation CuckooBees had been operating under the radar since at least 2019, threat actors conducted multiple attacks to steal intellectual property and other sensitive data from victims. The attacks detailed by Cybereason targeted technology and manufacturing companies primarily located in East Asia, Western Europe, and North America.

File names 100

File names Encryption Manufacturing Libraries 100

Thales Cloud Protection & Licensing

NOVEMBER 6, 2019

In the absence of IoT security regulations, many smart product manufacturers simply release new devices that lack built-in security measures and have not undergone proper security review and testing. Take manufacturing, for instance. Such disruption could have serious consequences depending on the type of organization that’s affected.

IoT 122

IoT Risk Energy and Utilities Security 122

The Last Watchdog

FEBRUARY 3, 2020

and Saudi Arabia have been steadily escalating for at least the past decade, with notable spikes in activity throughout the course of 2019. Buried in the Shamoon code was an image of a burning American flag, intended as an admonishment to the Saudi government for supporting American foreign policy in the Middle East.

Energy and Utilities 263

Energy and Utilities Access Cybersecurity Passwords 263

Security Affairs

MARCH 8, 2022

The ransomware operation has been active since late December 2019, this is the second time that the FBI first shares IoC related to RagnarLocker operation, the FBI first became aware of this threat in April 2020.

Ransomware 80

Ransomware Passwords Financial Services Manufacturing 80

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Military 73

Military Manufacturing Government Security 73

Security Affairs

FEBRUARY 9, 2020

The Russian Government blocked ProtonMail and ProtonVPN. Sudo CVE-2019-18634 flaw allows Non-Privileged Linux and macOS Users run commands as Root. Google mistakenly shared private videos of some users with others in 2019. IoT devices at major Manufacturers infected with crypto-miner.

Security 77

Security Ransomware IoT Manufacturing 77

Security Affairs

MAY 21, 2020

The breach was detected almost eight months ago, on June 28, 2019, with the delay being attributed to the increased complexity of the investigation caused by the attackers deleting activity logs. The intrusion took place on June 28, 2019, and the company launched an investigation in September 2019.

Security 74

Security Military Manufacturing Personal data 74

Security Affairs

NOVEMBER 11, 2022

The campaigns involved a new piece of malware called BadBazaar and new variants of the MOONSHINE surveillance software discovered by Citizen Lab in 2019 and employed in attacks against Tibetan activists. . The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information.

Communications 87

Communications Manufacturing Government Security 87

Schneier on Security

FEBRUARY 13, 2021

The US government has known about it for almost as long, and has tried to keep the attack secret: China’s exploitation of products made by Supermicro, as the U.S. US-only design and manufacturing isn’t an option; the tech world is far too internationally interdependent for that. It’s been going on since at least 2008.

Cybersecurity 143

Cybersecurity Manufacturing Government Communications 143

Info Source

MAY 3, 2023

Nevertheless, despite the significant challenges faced, the Turkish economy has demonstrated resilience and continued to grow at a robust pace, primarily due to the lax monetary policy implemented by the government. units in 2019. units in 2019 (the last pre-pandemic year) and 0.4K unit sales. in 2021 and +22.5% units in 2020.

Marketing 52

Marketing Sales Manufacturing Paper 52

Security Affairs

NOVEMBER 18, 2020

Targeted sectors include: Automotive Clothing Conglomerates Electronics Engineering General Trading Company Government Industrial Products Managed Service Providers Manufacturing Pharmaceutical Professional Services. The latest campaign has been active since mid-October in 2019 and appears to be still ongoing.

Healthcare 93

Healthcare Archiving Cloud Manufacturing 93

Info Source

APRIL 18, 2022

About The Crowley Company The Crowley Companyis a world leader in digital scanning technologies manufacture and resale and provides an extensive number of digital document and film conversion services to the library, academic, publishing, commercial, government and archive sectors.

Manufacturing 40

Manufacturing Sales Archiving Marketing 40

Security Affairs

MARCH 16, 2021

Most targeted sectors have been Government/Military (17% of all exploit attempts), followed by Manufacturing (14%), and then Banking (11%). We have tested this tool across Exchange Server 2013, 2016, and 2019 deployments.” ” reads the post published by Microsoft.

Military 88

Military Manufacturing Access Security 88

Collibra

JANUARY 27, 2021

In 2019, we caught up with Roberto Maranca, Vice President Data Excellence at Schneider Electric, where digital transformation is at its core. Collibra : Roberto, when we met with you in 2019, not long after GDPR was implemented, you were early in your journey with Collibra – and we were all relatively new to GDPR for that matter.

Digital transformation 69

Digital transformation Data Privacy GDPR Manufacturing 69

Security Affairs

AUGUST 15, 2019

Data was collected by the UK Metropolitan police, small local businesses and governments globally. Currently, the BioStar 2 is used by more than 6,000 organizations, including businesses, governments, financial organizations and the UK Metropolitan Police. Phoenix Medical – Medical products manufacturer. United Kingdom.

Archiving 79

Archiving Passwords Manufacturing Access 79