Data breaches, Manufacturing, Meeting and Security

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The company is a globally recognised industrial explosives manufacturer, it provides complete blasting solutions, including packaged, bulk explosives and initiating systems to meet its customer needs across the globe. “The data leakage affected all products and classified documents of the company.

Military

Military Manufacturing Ransomware Mining

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

IT Governance

MAY 7, 2024

Plus, a further 3,029,461 known records newly breached Welcome to this week’s global round-up of the biggest and most interesting news stories. At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Data breached: 395 GB.

Data breaches

Data breaches Education Manufacturing Retail

Cybersecurity in manufacturing

OpenText Information Management

JUNE 19, 2019

Not long ago, many manufacturing CIOs thought that cybersecurity was something only the financial sector had to worry about. Why would anyone want to hack a manufacturing plant? How times have changed – now, cybersecurity in manufacturing is definitely front and center.

Manufacturing

Manufacturing Cybersecurity Data breaches Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

NIST Proposes Revised Security Guidelines For Federal Contractors

Data Protection Report

MAY 18, 2023

The draft proposal would significantly change the guidelines included in SP 800-171, keeping the 110 security controls in total, but removing or consolidating some older requirements while adding certain new requirements and providing additional explanations and details for many existing controls.

Security

Security Compliance Risk Authentication

NSA publishes guidance on UEFI Secure Boot customization

Security Affairs

SEPTEMBER 16, 2020

The US National Security Agency (NSA) published guidance on the Unified Extensible Firmware Interface (UEFI) Secure Boot customization. The United States National Security Agency (NSA) has published guidance on how the Unified Extensible Firmware Interface (UEFI) Secure Boot feature that can be customized organizations.

Security

Security Manufacturing IT Data breaches

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

IT Governance

NOVEMBER 28, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. We’ve also included more details on the top 3 biggest breaches of the week. Breached records: about 9 million. Only 3 definitely haven’t had data breached.

Data Privacy

Data Privacy Privacy Energy and Utilities Data breaches

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

Thales Cloud Protection & Licensing

APRIL 29, 2024

However, a relentless barrage of data breaches, ransomware attacks, and sophisticated cyber threats steadily erodes this trust. Comprehensive cybersecurity legislation is imperative to build and maintain confidence in the future and ensure a secure digital landscape. There is yet to be a clear timeline for implementing PSD3.

Compliance

Compliance Cybersecurity Risk Manufacturing

How to Secure Access for your Seasonal Workers

Thales Cloud Protection & Licensing

NOVEMBER 20, 2022

How to Secure Access for your Seasonal Workers. As the holiday season approaches, many retail, hospitality, logistics, and food manufacturing organizations hire seasonal workers to meet increasing demand. On the other hand, access rights mismanagement is a security risk that may create ripple effects if exploited.

Access

Access Retail Security Authentication

LockBit ransomware gang leaked data stolen from Boeing

Security Affairs

NOVEMBER 13, 2023

The LockBit ransomware group published data allegedly stolen from the aerospace giant Boeing in a recent attack. The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. In 2022, Boeing recorded $66.61 billion in sales, the aerospace giant has 156,000 (2022).

Ransomware

Ransomware Authentication Manufacturing Sales

City of Dallas shut down IT services after ransomware attack

Security Affairs

MAY 4, 2023

The City confirmed the security incident and is working to recover from the ransomware attack that impacted its services, including the police department. MILES/CBS NEWS TEXAS The Royal ransomware group is behind the attack and threatens to publish stolen data if the City will not meet its ransom demand. Source J.D.

Ransomware

Ransomware IT Encryption Education

New Guidance Published on Cybersecurity and Medical Devices

Data Matters

JANUARY 13, 2020

New European medical device guidance will require manufacturers to carefully review cybersecurity and IT security requirements in relation to their devices and in their product literature. The Guidance acknowledges that even though the Regulations impose legal obligations only on the manufacturer of the device, all other actors (e.g.,

Cybersecurity

Cybersecurity Manufacturing GDPR Privacy

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

The City confirmed the security incident and is working to recover from the ransomware attack that impacted its services, including the police department. MILES/CBS NEWS TEXAS The Royal ransomware group is behind the attack and threatens to publish stolen data if the City will not meet its ransom demand.

Ransomware

Ransomware Encryption Systems administration Cybersecurity

Key aerospace player Safran Group leaks sensitive data

Security Affairs

MARCH 15, 2023

It collaborates with Airbus, the second-largest aerospace company globally after Boeing, to manufacture aerospace equipment. Also, the company manufactures surface-to-air defense systems and missiles. It is crucial to ensure that leaked keys are in longer bit-lengths and encoded using secure encryption/hashing algorithms.

Manufacturing

Manufacturing Access Risk IT

Organisations need to prepare for “cyber shocks”

IT Governance

JANUARY 22, 2018

Strengthening digital society against cyber shocks , which analyses key findings from the 2018 Global State of Information Security ® Survey (GSISS), focuses on the effects of massive incidents such as NotPetya and WannaCry. Loss or compromise of sensitive data (39%). Negative impact to quality of products produced (32%).

Security awareness

Security awareness Information Security Manufacturing Data breaches

More than half of consumers would consider legal action if their data was compromised during a breach

Thales Cloud Protection & Licensing

NOVEMBER 26, 2018

Our research has highlighted that 86% of consumers would consider switching to another company if a breach were to occur, with 35% of consumers stating that a data breach under the GDPR would ‘definitely’ give them a negative perception of a company. Gaining and maintaining consumer trust. The cost to business.

GDPR

GDPR Data breaches Retail Manufacturing

Accelerating manufacturers’ time-to-market through open innovation

Thales Cloud Protection & Licensing

NOVEMBER 23, 2023

Accelerating manufacturers’ time-to-market through open innovation madhav Fri, 11/24/2023 - 05:09 The manufacturing industry is in the midst of a significant digital transformation, where organizations are leveraging all different types of technologies to stay competitive and meet customer demands.

Manufacturing

Manufacturing Marketing Authentication Access

AI governance: What it is, why you need it, and why it’s essential for your AI initiatives

Collibra

JUNE 21, 2023

Outlier misinterpretation: Outliers and data anomalies can significantly impact AI models. Security/Privacy risks: Poor data quality can expose sensitive information, which can inadvertently lead to security breaches and the unauthorized use of personal information. GDPR) and industry-specific standards.

Government

Government IT Risk Privacy

2019 end-of-year review part 1: January to June

IT Governance

DECEMBER 27, 2019

A royal baby, a fire at Notre-Dame, the highest grossing film of all time and more than 12 billion breached data records: 2019 has been quite a year. IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Mumsnet disclosed a data breach affecting 4,000 people. million (£4.2

Data breaches

Data breaches GDPR Passwords Personal data

Treating cybersecurity like workplace safety

CGI

JULY 5, 2018

When I worked with a major global chemical manufacturer, every meeting began with a PowerPoint presentation on safety, highlighting the importance of the topic. Heaven help the person whose power cord was stretched across the pathway where someone could trip and fall in one of those meetings. Tips to prioritize cybersecurity.

Cybersecurity

Cybersecurity Digital transformation Manufacturing Government

Treating cybersecurity like workplace safety

CGI

APRIL 19, 2018

When I worked with a major global chemical manufacturer, every meeting began with a PowerPoint presentation on safety, highlighting the importance of the topic. Heaven help the person whose power cord was stretched across the pathway where someone could trip and fall in one of those meetings. Tips to prioritize cybersecurity.

Cybersecurity

Cybersecurity Digital transformation Manufacturing Government

Treating cybersecurity like workplace safety

CGI

MAY 15, 2018

When I worked with a major global chemical manufacturer, every meeting began with a PowerPoint presentation on safety, highlighting the importance of the topic. Heaven help the person whose power cord was stretched across the pathway where someone could trip and fall in one of those meetings. Tips to prioritize cybersecurity.

Cybersecurity

Cybersecurity Digital transformation Manufacturing Government

Proposed Changes to FDA Guidance for the Content of Premarket Submissions for Management of Cybersecurity in Medical Devices: What you Should Know

HL Chronicle of Data Protection

OCTOBER 25, 2018

Department of Homeland Security (DHS) earlier this month. The new draft premarket cybersecurity guidance provides information designed to aid manufacturers in determining how to meet the agency’s expectations during premarket review of medical devices. Consistent with the U.S. Tiers of risk.

Cybersecurity

Cybersecurity Manufacturing Risk Communications

The Five Biggest Trends Driving Software Licensing and Entitlement Management

Thales Cloud Protection & Licensing

JANUARY 9, 2023

Oxford relied on Thales SM to help drive its monetization efforts because they are the market leader and because of Thales SM’s deep history in software security. Originally, the company's software was hosted on-site at their customers' locations, lowering the likelihood of data breaches.

Marketing

Marketing Cloud B2C B2B

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

66,702,148 known records breached in 103 newly disclosed incidents Welcome to this week’s global round-up of the biggest and most interesting news stories. At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Data breached: 6.9

Data Privacy

Data Privacy Privacy Security Data breaches

Network Encryption Keeps Our Data in Motion Secure for Business Services

Thales Cloud Protection & Licensing

JULY 24, 2023

Network Encryption Keeps Our Data in Motion Secure for Business Services madhav Tue, 07/25/2023 - 04:59 The demand for high-speed networks and fast data transfers is increasing due to cloud adoption, digital transformation, and hybrid work. Why do you need network encryption in business services?

Business Services

Business Services Encryption Manufacturing Security

NIST Plans To Examine Internet of Things (IoT) For Its Cybersecurity Framework

Privacy and Cybersecurity Law

MAY 17, 2017

Topics in this breakout may include: existing IoT definitions and taxonomies and their consistency with the Framework; IoT specific threats and constraints; sector-specific considerations for IoT security; and the integration of IoT – specific threats into the Framework model.

IoT

IoT Cybersecurity IT Manufacturing

Weekly podcast: Equifax once more, Bristol Airport, Smeg and Mirai creators

IT Governance

SEPTEMBER 20, 2018

million customers , most of them American, was compromised in the 2017 data breach – including their names, dates of birth, passwords, and driving licence and financial details. She added: “Multinational data companies like Equifax must understand what personal data they hold and take robust steps to protect it.

Personal data

Personal data Manufacturing Information Security Risk

List of data breaches and cyber attacks in September 2020 – 267 million records breached

IT Governance

OCTOBER 1, 2020

You can find our full list of publicly disclosed data breaches from September in this blog, with incidents affecting UK organisations listed in bold. Notably, a patient at Dusseldorf University Hospital died during a ransomware infection after the facility was unable to provide urgent medical assistance.

Data breaches

Data breaches Ransomware Government IoT

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

IT Governance

JANUARY 3, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. We’ll also soon publish our 2023 review of publicly disclosed incidents and records known to be breached across the year, as well as our quarterly report, so keep an eye on our blog.

Data Privacy

Data Privacy Insurance Manufacturing Retail

GUEST ESSAY: The many ways your supply chain is exposing your company to a cyber attack

The Last Watchdog

MAY 16, 2022

You and your cybersecurity team do everything correctly to safeguard your infrastructure, yet the frightening alert still arrives that you’ve suffered a data breach. Supply chains have vulnerabilities at touchpoints with manufacturers, suppliers, and other service providers.”. Related: Third-party audits can hold valuable intel.

Artificial Intelligence

Artificial Intelligence Cybersecurity Manufacturing Risk

Article 29 Working Party and EDPS Release Opinions on the ePrivacy Directive

Hunton Privacy

JULY 29, 2016

According to the Working Party, “take it or leave it” approaches that do not give users free choice regarding processing rarely meet the requirements for freely given consent. Deletion of specific data breach notification. Enforcement.

Communications

Communications GDPR Marketing Metadata

Top GRC Tools & Software for 2021

eSecurity Planet

JANUARY 21, 2021

It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Like other competitive GRC solutions, it speeds the process of aggregating and mining data, building reports, and managing files. IT governance and security. Audit management. Business resiliency.

Compliance

Compliance Risk Government Retail

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Like other competitive GRC solutions, it speeds the process of aggregating and mining data, building reports, and managing files. IT governance and security. Audit management. Business resiliency.

Compliance

Compliance Risk Government Retail

White House Proposes Cybersecurity Legislation

Hunton Privacy

MAY 19, 2011

If enacted, this legislation will affect many government and private-sector owners and operators of cyber systems, including all critical infrastructure, such as energy, financial systems, manufacturing, communications and transportation. Homeland Security Provisions. National Data Breach Notification Law.

Cybersecurity

Cybersecurity Risk Privacy Data breaches

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Hunton Privacy

OCTOBER 14, 2021

During the week of October 4, 2021, California Governor Gavin Newsom signed into law bills amending the California Privacy Rights Act of 2020 (“CPRA”), California’s data breach notification law and California’s data security law. Genetic Data: California Data Breach Notification and Data Security Law Amendment Bill.

Privacy

Privacy Insurance Security Data breaches

Cybersecurity Risks of 5G – And How to Control Them

eSecurity Planet

SEPTEMBER 1, 2021

Service providers and 5G-enabled device manufacturers both have critical roles to play in the success and sustainability of this wireless network rollout. Whether it’s a misconfiguration or inadequate security or patching , new vulnerabilities found in IoT systems seem to make the news every week. Attacks at the Network Edge.

Risk

Risk Cybersecurity IoT Computer and Electronics

5 ways to detect a phishing email – with examples

IT Governance

JUNE 6, 2019

According to Verizon’s 2019 Data Breach Investigations Report , 32% of all cyber attacks involved phishing. The manufactured sense of urgency is equally effective in workplace scams. It uses deceptive messages to trick victims into clicking bogus links, downloading malicious attachments or sending sensitive information.

Phishing

Phishing IT Communications Access

Part 1: OMG! Not another digital transformation article! Is it about understanding the business drivers?

ARMA International

SEPTEMBER 13, 2021

In other words, a CDP integrates data from different repositories to help meet customers’ expectations of a unified and seamless experience. CDP is essential for digital marketing and a cornerstone of marketing technology (colloquially called “martech”) because much of the data is digitally generated.

Digital transformation

Digital transformation Blockchain IT Computer and Electronics

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

The CCPA imposes obligations on for-profit “businesses” that meet specific threshold requirements. Determining what is medical information and who is a provider of health care under the CMIA have long been complicated assessments for health and life science companies such as pharmaceutical and device manufacturers.

Privacy

Privacy Healthcare Sales Insurance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

The CCPA imposes obligations on for-profit “businesses” that meet specific threshold requirements. Determining what is medical information and who is a provider of health care under the CMIA have long been complicated assessments for health and life science companies such as pharmaceutical and device manufacturers.

Privacy

Privacy Healthcare Sales Insurance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

The CCPA imposes obligations on for-profit “businesses” that meet specific threshold requirements. Determining what is medical information and who is a provider of health care under the CMIA have long been complicated assessments for health and life science companies such as pharmaceutical and device manufacturers.

Privacy

Privacy Healthcare Sales Insurance

The Hacker Mind Podcast: Hacking Healthcare

ForAllSecure

JANUARY 15, 2021

Microsoft, for example, stopped patching Windows XP for security vulnerabilities in 2014. I’m Robert Vamosi and this episode about best practices in information security, and how critical life services, in particular, remain at risk today -- in the middle of a global pandemic. Especially in the world of security standards.

IT

IT Manufacturing Government Paper

The Hacker Mind Podcast: Hacking Healthcare

ForAllSecure

JANUARY 15, 2021

Microsoft, for example, stopped patching Windows XP for security vulnerabilities in 2014. I’m Robert Vamosi and this episode about best practices in information security, and how critical life services, in particular, remain at risk today -- in the middle of a global pandemic. Especially in the world of security standards.

IT

IT Manufacturing Government Paper

What will 2023 bring in the realms of cybersecurity and privacy?

Thales Cloud Protection & Licensing

JANUARY 4, 2023

Large-scale layoffs may impact security. Business security risk is significant and adds to reputational risk. In the Thales 2022 Data Threat Report 78% of respondents ranked accidental or human error in their top four threats posing the greatest security risks. Data sovereignty hits the road.

Privacy

Privacy Cybersecurity Cloud Ransomware

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

Webinars

Trending Sources

Cybersecurity in manufacturing

Webinars

NIST Proposes Revised Security Guidelines For Federal Contractors

NSA publishes guidance on UEFI Secure Boot customization

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

How to Secure Access for your Seasonal Workers

LockBit ransomware gang leaked data stolen from Boeing

City of Dallas shut down IT services after ransomware attack

New Guidance Published on Cybersecurity and Medical Devices

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Key aerospace player Safran Group leaks sensitive data

Organisations need to prepare for “cyber shocks”

More than half of consumers would consider legal action if their data was compromised during a breach

Accelerating manufacturers’ time-to-market through open innovation

AI governance: What it is, why you need it, and why it’s essential for your AI initiatives

2019 end-of-year review part 1: January to June

Treating cybersecurity like workplace safety

Treating cybersecurity like workplace safety

Treating cybersecurity like workplace safety

Proposed Changes to FDA Guidance for the Content of Premarket Submissions for Management of Cybersecurity in Medical Devices: What you Should Know

The Five Biggest Trends Driving Software Licensing and Entitlement Management

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

Network Encryption Keeps Our Data in Motion Secure for Business Services

NIST Plans To Examine Internet of Things (IoT) For Its Cybersecurity Framework

Weekly podcast: Equifax once more, Bristol Airport, Smeg and Mirai creators

List of data breaches and cyber attacks in September 2020 – 267 million records breached

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

GUEST ESSAY: The many ways your supply chain is exposing your company to a cyber attack

Article 29 Working Party and EDPS Release Opinions on the ePrivacy Directive

Top GRC Tools & Software for 2021

Top 10 Governance, Risk and Compliance (GRC) Vendors

White House Proposes Cybersecurity Legislation

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Cybersecurity Risks of 5G – And How to Control Them

5 ways to detect a phishing email – with examples

Part 1: OMG! Not another digital transformation article! Is it about understanding the business drivers?

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

The Hacker Mind Podcast: Hacking Healthcare

The Hacker Mind Podcast: Hacking Healthcare

What will 2023 bring in the realms of cybersecurity and privacy?

Stay Connected