IT Governance

NOVEMBER 6, 2023

When MOVEit was hacked by the Russian Cl0p ransomware gang in May, email addresses and links to government employee surveys were compromised. At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks.

Data Privacy 97

Data Privacy Privacy Libraries Security 97

eSecurity Planet

MARCH 27, 2023

Follina , is a vulnerability in Microsoft Diagnostics Tool (MDST), exploited by persuading victims to open Word documents, which can enable the attacker to execute arbitrary code. Also read: Network Protection: How to Secure a Network Follina State-Sponsored Campaigns CVE-2022-30190, a.k.a.

Cloud 103

Cloud Ransomware Risk Access 103

Krebs on Security

FEBRUARY 22, 2024

Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation’s burgeoning and highly competitive cybersecurity industry. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government 259

Government Cybersecurity Sales Blockchain 259

Data Protection Report

AUGUST 11, 2022

The proposed changes mark a turn by NYDFS toward more specific, granular and prescriptive requirements notably with respect to governance, risk assessments and asset inventories (detailed below). Governance. NYDFS will release the official proposed changes at a later date, and they will be subject to the usual 60-day comment period.

Cybersecurity 59

Cybersecurity Risk Passwords Compliance 59