COVID-19 vaccine manufacturer suffers a data breach

Security Affairs

Indian COVID-19 vaccine manufacturer Dr. Reddy’s Laboratories was hit with a cyber attack that forced it to shut down its plants in Brazil, India, Russia, the U.K., According to The Economic Times the company suffered a data breach.

Tesla, SpaceX Parts Manufacturer Suffers Data Breach

Dark Reading

Visser Precision has confirmed a security incident likely caused by the data-stealing DoppelPaymer ransomware

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Cybersecurity in manufacturing

OpenText Information Management

Not long ago, many manufacturing CIOs thought that cybersecurity was something only the financial sector had to worry about. Why would anyone want to hack a manufacturing plant? How times have changed – now, cybersecurity in manufacturing is definitely front and center. I … The post Cybersecurity in manufacturing appeared first on OpenText Blogs.

Gaming hardware manufacturer Razer suffered a data leak

Security Affairs

Gaming hardware manufacturer Razer suffered a data leak, an unsecured database managed by the company containing gamers’ info was exposed online. Gaming hardware manufacturer Razer has suffered a data leak, this is the discovery made by the security researcher Bob Diachenko.

Airbus data breach exposes some employees’data

Security Affairs

The European airplane manufacturer Airbus announced to have suffered a data breach that exposed some employees’ data. The European airplane manufacturer Airbus announced to have suffered a data breach, hackers broke into the company “Commercial Aircraft business” information systems and gained access to some of its employees’ personal information. and to mitigate the potential impact of the data breach.

Mitsubishi Electric discloses data breach, media blame China-linked APT

Security Affairs

Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate information. Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. The breach was detected almost eight months ago, on June 28, 2019, with the delay being attributed to the increased complexity of the investigation caused by the attackers deleting activity logs. SecurityAffairs – data breach, hacking).

List of data breaches and cyber attacks in June 2020 ­– 7 billion records breached

IT Governance

The first half of 2020 ended on a familiarly bad note, with 92 security incidents accounting for at least 7,021,195,399 breached records. The only saving grace for the organisation – which didn’t do itself any favours by initially denying the story and threatening to sue people who reported on it – is that the leaked database comprised a list of records from past data breaches. You can take a look at every data breach and cyber attack that we recorded in June in this blog.

Swiss rail vehicle manufacturer Stadler hit by a malware-based attack

Security Affairs

Stadler, a Swiss manufacturer of railway rolling stock disclosed a data breach, hackers attempted to blackmail the company. International rail vehicle manufacturer, Stadler , disclosed a security breach that might have also allowed the attackers to steal company data. Attackers confirmed that attackers compromised the IT network of the company and deployed some of its machines with malware that was used to exfiltrate data from the infected devices.

List of data breaches and cyber attacks in August 2020 – 36.6 million records breached

IT Governance

There were a massive 99 data breaches and cyber attacks in August, making it the third-biggest monthly total of the year by number of security incidents. Data breaches. The post List of data breaches and cyber attacks in August 2020 – 36.6

Fortune 500 tech giant General Electric (GE) discloses data breach after Canon hack

Security Affairs

General Electric (GE) s a data breach that exposed personally identifiable information of current and former employees, as well as beneficiaries. The technology giant General Electric (GE) disclosed a data breach that exposed personally identifiable information of current and former employees, as well as beneficiaries. The data breach was caused by a security breach suffered by one of GE’s service providers, Canon Business Process Services.

Adidas data breach

IT Governance

On 28 June 2018, athletic apparel company Adidas announced that its US website had suffered a data breach , exposing online customers’ personal data. The breach was detected on 26 June. In its statement , Adidas said: “According to the preliminary investigation, the limited data includes contact information, usernames and encrypted passwords.

Toyota suffers second data breach in five weeks

IT Governance

Toyota has disclosed a data breach that may have affected up to 3.1 It’s the second time the car manufacturer has been breached in the last five weeks. Few details have emerged about the breach, with Toyota stating that it is still investigating what data might have been breached, or if anything has been compromised at all. million customers.

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

But prior to launching their ransomware, it has become common practice for these extortionists to offload as much sensitive and proprietary data as possible.

List of data breaches and cyber attacks in July 2018 – 139,731,894 million records leaked

IT Governance

There were some incredibly sensitive breaches this month, the majority of which were caused by human error. I imagine human error will continue to be the main cause of data breaches for decades to come – damn humans. Thousands of patient records held for ransom in Ontario home care data breach, attackers claim. Data breach. Owners of 3 small IT firms arrested for leaking data . State survey leads to Vermont Health Connect email breach.

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com.

Why you should be concerned about payment card data breaches

IT Governance

In this blog, we look at the ongoing threat of debit and credit card fraud, explaining why it appeals to cyber criminals, what they do with the stolen information and how implementing the requirements of the PCI DSS (Payment Card Industry Data Security Standard) can thwart crooks’ schemes. The electrical retailer admitted to a breach involving 5.9 That makes it the biggest breach involving a British organisation.

List of data breaches and cyber attacks in September 2020 – 267 million records breached

IT Governance

Because organisations can rarely calculate the extent of the damage, these attacks accounted for relatively few of the 267,277,828 breached records that we tallied, but incidents can have much wider-reaching consequences. Data breaches.

Researchers found alleged sensitive documents of NATO and Turkey

Security Affairs

Researchers from the US-based firm Cyble recently came across a post shared by an unknown threat actor that goes online with the moniker Spectre123, where he has allegedly leaked the sensitive documents of NATO and Havelsan (Turkish Military/defence manufacturer).

Bad actor sells Huiying Medical Technology’s source code for AI-assisted COVID-19 detection

Security Affairs

Experts from Cyble identified a threat actor attempting to sell Huiying Medical Technology’s source code for AI-assisted COVID-19 detection and experimental data. Researchers from the data breach notification firm Cyble have identified a credible bad actor that goes online with moniker ‘THE0TIME’ claiming to have gained access to Huiying Medical Technology’s COVID-19 detection’s technology. researches, develops, manufactures, and distributes medical imaging devices.

Sales 73

NSA publishes guidance on UEFI Secure Boot customization

Security Affairs

The Secure Boot mechanism allows the execution of only software that is trusted by the Original Equipment Manufacturer (OEM). . Customization enables administrators to realize the benefits of boot malware defenses, insider threat mitigations, and data-at-rest protections.”states

Security Affairs newsletter Round 282

Security Affairs

Breaking News APT data breach Hacking hacking news information security news IT Information Security malware Newsletter Pierluigi Paganini ransomware Security Affairs Security NewsA new round of the weekly SecurityAffairs newsletter arrived!

Honda Hit By Possible Ransomware Attack

Adam Levin

Japanese automotive manufacturer Honda is investigating a possible ransomware attack that has caused company-wide network outages. Data Security Data breach featured ransomware honda EKANS icsSeveral news outlets have reported that the company’s servers have been infected with the EKANS ransomware which led to network connectivity issues in Europe and Japan over the weekend.

List of data breaches and cyber attacks in May 2020 – 8.8 billion records breached

IT Governance

We have just seen 8,801,171,594 breached data records in one month. Indeed, it bears reminding relatively small breaches can often be the most damaging – such as an email gaffe this month in which the identities of 250 abuse survivors in Northern Ireland were exposed. Take a look at every data breach and cyber attack that we recorded in May in this blog. Outsourcing group Interserve is recovering after hackers steal employee data (100,000). Data breaches.

Sodinokibi ransomware gang stole 1TB of data from Brown-Forman

Security Affairs

Sodinokibi (REvil) ransomware operators announced last week to have breached the network of the Brown-Forman, one of the largest U.S. Threat actors claim to have exfiltrated 1TB of confidential data and plan to put it up for auction the most sensitive info and leak the rest.

Security Affairs - Untitled Article

Security Affairs

Toyota Motor Corporation (TMC) sales subsidiary and its affiliates suffered a data breach that exposed personal information of millions of customers in Japan. The week closes with the news of a data breach suffered by Toyota Motor Corporation (TMC) sales subsidiary and its affiliates that exposed personal information belonging to millions of customers in Japan. The car manufacturer pointed out that there is no evidence that hackers have stolen the data.

Sales 69

Top Australia Defence company Austal notifies a serious security breach

Security Affairs

Austal, a top Australia defence firm reports also working with the United States Navy has suffered a serious security breach. Austal, a top Australia defence firm reports working with the US Navy has suffered a serious security breach, hackers accessed to personnel files and that it was the subject of an extortion attempt. ” reads the data breach notification published by the company. Security Affairs – Austal, data breach).

Sales 83

Japan suspects HGV missile data leak in Mitsubishi security breach

Security Affairs

it suspects a possible leak of data including details of a prototype missile. In January, the company disclosed a security breach that might have exposed personal and confidential corporate data, at the time, it claimed that attackers did not obtain sensitive information about defense contracts. Mitsubishi revealed that personal data on some 8,000 people also might have been leaked.

Hacker breached Perceptics, a US maker of license plate readers

Security Affairs

Perceptics, a maker of vehicle license plate scanning solutions used in the US, has been hacked, attackers stole data and offered for free on the dark web. The company was hacked and attackers stole data and offered business plans, financial documents, and personal information for free on the dark web. The hacker stole hundreds of gigabytes of files along with Microsoft Exchange and Access databases, ERP databases, HR records, and Microsoft SQL Server data stores.

Customs and Border Protection (CBP) confirms hack of a subcontractor

Security Affairs

At the end of May the company Perceptics, a leader in license plate readers (LPRs), license plate recognition systems and vehicle identification products, announced to have suffered a security breach. The attackers stole data and offered business plans, financial documents, and personal information for free on the dark web. CBP said that stolen data are not available online or in the Dark Web.

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Krebs on Security

The email allowed the intruders to install malware on the victim’s PC and to compromise a second computer at the bank that had access to the STAR Network , a system run by financial industry giant First Data that the bank uses to handle debit card transactions for customers. National Bank said the first breach began Saturday, May 28, 2016 and continued through the following Monday. The bank’s total reported loss from that breach was $1,833,984.

Japanese defense contractors Pasco and Kobe Steel disclose security breaches

Security Affairs

Japanese defense contractors Pasco and Kobe Steel have disclosed security breaches that they have suffered back in 2016 and 2018. Pasco is Japan’s largest geospatial provider and Kobe Steel is one of the major steel manufacturers. Just last week, Japan’s Ministry of Defense announced in addition to Mitsubishi Electric and the NEC defense business division other two unnamed contractors suffered a data breach.

New Guidance Published on Cybersecurity and Medical Devices

Data Matters

New European medical device guidance will require manufacturers to carefully review cybersecurity and IT security requirements in relation to their devices and in their product literature. This new guidance comes at the same time as a draft guidance on privacy by design has been published by the European Data Protection Board requiring product developers to implement privacy into the design of their products.

Data of Indian defence contractor Bharat Earth Movers Limited (BEML) available online

Security Affairs

The company manufactures a variety of heavy equipment (bulldozers, dump trucks, hydraulic excavators, wheel loaders, rope shovels, walking draglines, motor graders and scrapers), such as that used for earthmoving, transport and mining. According to the researchers, the data breach has occurred in May 2020 and the data was published on May 25.

Orange Business Services hit by Nefilim ransomware operators

Security Affairs

Researchers from Cyble came across a post of Nefilim ransomware operators which were claiming to have stolen sensitive data of Orange S.A., and have published a portion of the sensitive data as proof of the attack. The gang gained access to twenty Orange Pro/SME customers’ data. “A However, this attack seems to have allowed hackers to access the data of around 20 PRO / SME customers hosted on the platform.

440M records found online in unprotected database belonging to Estée Lauder

Security Affairs

Estée L auder is an American multinational manufacturer and marketer of p restige skincare, makeup, fragrance and hair care p roducts, it owns multiple brands, distributed internationally through both digital commerce and retail channels. ” The exposed data included user email addresses in plain text, the archive also contained Internal email addresses from the @estee.com domain. . SecurityAffairs – Data Leak, Estée Lauder). Breaking News Data Breach data leak EST?E

Security Affairs newsletter Round 265

Security Affairs

Breaking News data breach Hacking information security news it security it security affairs it security news malware Newsletter Pierluigi Paganini Security NewsA new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

These hackers have breached FBI-affiliated websites and leaked data online

Security Affairs

Hackers publish personal data on thousands of US police officers and federal agents. Media outlet Techcrunch reported that a hacker group has breached several FBI-affiliated websites and leaked the stolen info online. According to TechCrunch, the hacker has breached at least three websites associated with the FBI National Academy Association. Now we are structuring all the data, and soon they will be sold. SecurityAffairs – FBI, Data leak).

Biometric data of 1M leaked via an unsecured Suprema owned database

Security Affairs

Researchers from vpnMentor discovered the personal and biometric data (i.e. The 23-GB ElasticSearch archive was discovered earlier in August, data contained in the database were collected from customers utilizing BioStar 2. Data was collected by the UK Metropolitan police, small local businesses and governments globally. Suprema developed the BioStar 2 software that allows to implement control access using biometric data, including facial recognition and fingerprinting.

Security Affairs newsletter Round 264

Security Affairs

Breaking News data breach information security news it security news malware Newsletter Pierluigi Paganini Security Affairs Security NewsA new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

PCI DSS: Lessons to learn from recent payment card breaches

IT Governance

Over the past month or so, we’ve been discussing the threats associated with payment card breaches, and why it’s important to comply with the PCI DSS (Payment Card Industry Data Security Standard). In this week’s blog, we examine some recent examples of payment card breaches to help you understand common problems that organisations run into and how you can avoid them. Further reading: Why you should be concerned about payment card data breaches.