Business Services, Data, Information Security and Security

The Week in Cyber Security and Data Privacy: 30 October – 5 November 2023

IT Governance

NOVEMBER 6, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. When MOVEit was hacked by the Russian Cl0p ransomware gang in May, email addresses and links to government employee surveys were compromised.

Data Privacy

Data Privacy Privacy Libraries Security

China issues Personal Information Security Specification

Data Protection Report

FEBRUARY 5, 2018

On 29 December 2017 the Standardization Administration of China issued an Information Security Technology – Personal Information Security Specification ?GB/T In this blog post we address the key requirements of the Specification in relation to collecting personal data from either employees or third parties.

Information Security

Information Security Security Compliance Personal data

Over 500,000 people were impacted by a ransomware attack that hit Morley

Security Affairs

FEBRUARY 4, 2022

Business services firm Morley was hit by a ransomware attack that may have exposed data of +500,000 individuals. Business services company Morley was victim of a ransomware attack that may have resulted in a data breach impacting more than 500,000 individuals. Pierluigi Paganini.

Ransomware

Ransomware Business Services Data breaches Insurance

10 things you must do to become cyber secure

IT Governance

NOVEMBER 19, 2018

Preparing your organisation for cyber attacks and data breaches is complicated, and you should look for advice wherever you can get it. One of the most trusted resources is the NCSC’s (National Cyber Security Centre) ten-step guide. A risk management regime is a top-level framework for addressing security issues.

Security

Security Data breaches Risk Phishing

8Base ransomware operators use a new variant of the Phobos ransomware

Security Affairs

NOVEMBER 19, 2023

The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. Security experts attributed 67 attacks to the group in May 2023, most of the victims are in the U.S. and Brazil.

Ransomware

Ransomware Encryption Metadata Manufacturing

Experts warn of a spike in May and June of 8Base ransomware attacks

Security Affairs

JUNE 28, 2023

The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. ” Security experts attributed 67 attacks to the group in May 2023, most of the victims are in the U.S. and Brazil. and Brazil.

Ransomware

Ransomware Encryption Manufacturing Business Services

TinyNuke banking malware targets French organizations

Security Affairs

DECEMBER 13, 2021

The TinyNuke malware is back and now was used in attacks aimed at French users working in manufacturing, technology, construction, and business services. “In the most recent campaigns, the threat actor uses invoice-themed lures purporting to be logistics, transportation, or business services entities.”

Manufacturing

Manufacturing Business Services Communications IT

Telco service provider giant Syniverse had unauthorized access since 2016

Security Affairs

OCTOBER 5, 2021

Syniverse service provider discloses a security breach, threat actors have had access to its databases since 2016 and gained some customers’ credentials. The company is a privileged target for threat actors that could hit the firm to access their customers’ information. ” states Motherboard.

Access

Access Cybersecurity Business Services Security

Over 39K unauthenticated Redis services on the internet targeted in cryptocurrency campaign

Security Affairs

SEPTEMBER 22, 2022

Redis, is a popular open source data structure tool that can be used as an in-memory distributed database, message broker or cache. This may allow hackers to gain server privileges, delete or steal data, or even lead to an encryption extortion, critically endangering normal business services.” bash_history).

Mining

Mining Data structuring Business Services Encryption

Ransomware infected systems at Xchanging, a DXC subsidiary

Security Affairs

JULY 6, 2020

Global IT services and solutions provider DXC Technology disclosed a ransomware attack that infected systems at its Xchanging subsidiary. Xchanging is a business process and technology services provider and integrator, which provides technology-enabled business services to the commercial insurance industry.

Ransomware

Ransomware Insurance Financial Services Manufacturing

Yahoo! Agrees to Settle Data Breach Class Actions with $50 Million Fund and Credit Monitoring

Hunton Privacy

NOVEMBER 7, 2018

Customer Data Security Breach Litigation pending in the Northern District of California and the parties in the related litigation pending in California state court filed a motion seeking preliminary approval of a settlement related to breaches of the company’s data. On October 23, 2018, the parties in the Yahoo!

Data breaches

Data breaches Sales Business Services Communications

Vera to Power Canon Solutions America’s New Security Solutions and Services Strategy

Info Source

FEBRUARY 13, 2018

– Canon Solutions America’s Enterprise Services and Solutions group will leverage Vera’s advanced data protection and rights management platform for secure data capture, detailed auditing, and data privacy. MELVILLE, N.Y. and PALO ALTO, Calif., a wholly owned subsidiary of Canon U.S.A.,

Security

Security Encryption Authentication Access

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. ” reads the analysis published by the experts.

Healthcare

Healthcare Phishing Manufacturing Government

Draft E-Commerce Standards Published for Comment in China

Hunton Privacy

MARCH 29, 2016

On March 22, 2016, the Ministry of Commerce of the People’s Republic of China published drafts of its proposed (1) Specifications for Business Services in Mobile E-commerce (“Mobile E-commerce Specifications”) and (2) Specifications for Business Services in Cross-border E-commerce (“Cross-border E-commerce Specifications”).

Personal data

Personal data Business Services Encryption Sales

FCA Publishes Wholesale Banks and Asset Management Cyber Multi-Firm Review Findings

Data Matters

FEBRUARY 28, 2019

The review aimed to look more closely at how wholesale banking and asset management firms oversee and manage their cybersecurity, including the extent to which firms identify and mitigate relevant cyber risks and their current capability to respond to and recover from data security incidents.

Cybersecurity

Cybersecurity Risk Marketing Financial Services

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

A new data leak that appears to have come from one of China’s top private cybersecurity firms provides a rare glimpse into the commercial side of China’s many state-sponsored hacking groups. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Cybersecurity Sales Blockchain

Weekly podcast: banks, Thomas Cook, London cyber court and Facebook

IT Governance

JULY 13, 2018

This week, we discuss operational resilience in the banking and financial market infrastructures sectors, a data breach affecting Thomas Cook subsidiaries, London’s proposed new court building and the latest development in the Facebook/Cambridge Analytica scandal. Hello and welcome to the IT Governance podcast for Friday, 13 July.

Marketing

Marketing Business Services Data breaches Paper

Security Affairs newsletter Round 273

Security Affairs

JULY 19, 2020

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 273 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Security

Security Sales Business Services Personal data

Information Management Today

The Week in Cyber Security and Data Privacy: 30 October – 5 November 2023

China issues Personal Information Security Specification

Trending Sources

Over 500,000 people were impacted by a ransomware attack that hit Morley

10 things you must do to become cyber secure

8Base ransomware operators use a new variant of the Phobos ransomware

Experts warn of a spike in May and June of 8Base ransomware attacks

TinyNuke banking malware targets French organizations

Telco service provider giant Syniverse had unauthorized access since 2016

Over 39K unauthenticated Redis services on the internet targeted in cryptocurrency campaign

Ransomware infected systems at Xchanging, a DXC subsidiary

Yahoo! Agrees to Settle Data Breach Class Actions with $50 Million Fund and Credit Monitoring

Vera to Power Canon Solutions America’s New Security Solutions and Services Strategy

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Draft E-Commerce Standards Published for Comment in China

FCA Publishes Wholesale Banks and Asset Management Cyber Multi-Firm Review Findings

New Leak Shows Business Side of China’s APT Menace

Weekly podcast: banks, Thomas Cook, London cyber court and Facebook

Security Affairs newsletter Round 273

Stay Connected