Education, Energy and Utilities, Manufacturing and Security

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

IT Governance

FEBRUARY 21, 2024

Fowler sent a responsible disclosure notice when he discovered the database and it was secured the following day. Source New Manufacturing USA Yes 20,415 TECA Srl Source New Transport Italy Yes 16.7 Known records breached Zenlayer Source New Telecoms USA Yes 384,658,212 ASA Electronics Source New Engineering USA Yes 2.7

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. In fact, the U.S. ” continues the alert. ” U.S. ” U.S.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. In fact, the U.S. continues the alert.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

“InfraGard connects critical infrastructure owners, operators, and stakeholders with the FBI to provide education, networking, and information-sharing on security threats and risks,” the FBI’s InfraGard fact sheet reads. . That InfraGard member, who is head of security at a major U.S. Department of Defense.

Sales

Sales Energy and Utilities Communications Data breaches

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. It has since been confirmed by Anukul Peedkaew, the permanent secretary of social development and human security.

Data Privacy

Data Privacy Manufacturing Privacy Security

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

The NCA and its global partners have secured over 1,000 decryption keys that will allow victims of the gang to recover their files for free. Today, additional criminal charges against Kondratyev were unsealed in the Northern District of California related to his deployment in 2020 of ransomware against a victim located in California.”

Energy and Utilities

Energy and Utilities Ransomware Agriculture Manufacturing

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide. .

Energy and Utilities

Energy and Utilities Military Government Phishing

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

The NCA and its global partners have secured over 1,000 decryption keys that will allow victims of the gang to recover their files for free. Today, additional criminal charges against Kondratyev were unsealed in the Northern District of California related to his deployment in 2020 of ransomware against a victim located in California.”

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Agriculture

News alert: Beazley reports on how AI, new tech distract businesses as cyber risk intensifies

The Last Watchdog

JULY 13, 2023

Is business becoming dulled to the cyber security threat As cyber fears decrease, the technological risk landscape has fragmented, with executives nearly as concerned about the perceived threat posed by disruptive new technologies, such as AI, as the risk of cybercrime.

Risk

Risk Insurance Energy and Utilities Marketing

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

IT Governance

NOVEMBER 28, 2023

The post The Week in Cyber Security and Data Privacy: 20 – 26 November 2023 appeared first on IT Governance UK Blog. We’ll be back next week with the biggest and most interesting news stories, all rounded up in one place for you. In the meantime, if you missed it, check out last week’s round-up.

Data Privacy

Data Privacy Privacy Energy and Utilities Data breaches

China Publishes Draft Regulations on Protecting the Security of Key Information Infrastructure

Hunton Privacy

JULY 11, 2017

On July 10, 2017, the Cyberspace Administration of China published a new draft of its Regulations on Protecting the Security of Key Information Infrastructure (the “Draft Regulations”), and invited comment from the general public. This post has been updated. .

Energy and Utilities

Energy and Utilities Security Cybersecurity Manufacturing

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

SEPTEMBER 15, 2020

CISA published a security advisory warning of a wave of attacks carried out by China-linked APT groups affiliated with China’s Ministry of State Security. ” reads the security advisory. Government agencies.” CVE-2019-19781 enabled the actors to execute directory traversal attacks.[ 1 ] continues the advisory.

Government

Government Energy and Utilities Healthcare Access

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

Researchers from the German cyber security company Aplite discovered 3,806 servers from 111 countries accessible on the Internet. million LivaNova Source 1 ; source 2 (New) Manufacturing UK Yes 2.2 million LivaNova Source 1 ; source 2 (New) Manufacturing UK Yes 2.2 Source (New) Manufacturing Canada Yes 1.2

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

IT Governance

MARCH 5, 2024

Source (New) Engineering Japan Yes >5 TB Array Networks Source (New) Cyber security USA Yes 2.5 TB Turtlemint Source (New) Insurance India Yes 1,800,000 Chunghwa Telecom Source (New) Telecoms Taiwan Yes 1.7

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

IT Governance

DECEMBER 5, 2023

The security researcher Bob Diachenko of SecurityDiscovery first identified the exposed information in mid-September. Data breached: over 300 million records. The company’s description of the incident suggested ransomware. We’ve also found 9 organisations providing a significant update on a previously disclosed incident.

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

IT Governance

JANUARY 3, 2024

billion records The security researcher Jeremiah Fowler discovered an unprotected database exposing more than 1.5 Fowler contacted the company, which secured the database. The security researcher Bob Diachenko identified the leak in September and contacted TuneFab, which fixed the misconfiguration within 24 hours.

Data Privacy

Data Privacy Insurance Manufacturing Retail

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

IT Governance

JANUARY 30, 2024

Mobile network database breach exposes 750 million Indians’ personal data The Indian security company CloudSEK claims to have found the personal data of 750 million Indians for sale on an “underground forum”. TB Four Hands Source (New) Manufacturing USA Yes 1.5 Data breached: 2 PB.

Data Privacy

Data Privacy Retail Privacy Manufacturing

How Red Hat OpenShift on AWS (ROSA) accelerates enterprise modernization initiatives on cloud, delivering business application innovation

IBM Big Data Hub

MAY 26, 2023

Similar use cases in other industries include integrated member experience in Healthcare, smart asset performance and security in Energy & Utilities, connected vehicle services in Automotive, operations and process optimization as part of industry 4.0

Cloud

Cloud Energy and Utilities Financial Services Digital transformation

The Hacker Mind Podcast: Reverse Engineering Smart Meters

ForAllSecure

MAY 13, 2022

For example, in 2009, the Obama administration provided financial incentives to utilities in the United States. And again, smart meters were positioned squarely as making the environment more friendly by knowing how and when energy is being used by individual customers. But we all know how security by obscurity works in the end.

Energy and Utilities

Energy and Utilities Computer and Electronics IT Communications

The Hacker Mind Podcast: Hacking Industrial Control Systems

ForAllSecure

APRIL 26, 2022

So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. In a moment I’ll introduce you to someone who is trying to do that--bring ICS equipment to security conferences. Van Norman: Right right.

Energy and Utilities

Energy and Utilities Manufacturing Risk IT

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

Info Source

DECEMBER 8, 2023

The demand in the Manufacturing industry is just slightly smaller and in a similar lower maturity stage Opportunities in the Finance Sector Financial institutions adopted Capture and IDP solutions earlier than other verticals, building on their traditional usage of check imaging solutions.

Marketing

Marketing Customer Experience Energy and Utilities Digital transformation

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

IT Governance

DECEMBER 19, 2023

An investigation determined that personal data, including names, addresses, phone numbers, Social Security numbers, dates of birth and bank account numbers, belonging to nearly 15 million people was obtained by an unauthorised party between 30 October and 1 November. GB Coca-Cola Singapore Source (New) Manufacturing Singapore Yes 413.92

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Information Management Today

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

Operation Cronos: law enforcement disrupted the LockBit operation

Webinars

Trending Sources

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Webinars

FBI chief says China is preparing to attack US critical infrastructure

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

More details about Operation Cronos that disrupted Lockbit operation

News alert: Beazley reports on how AI, new tech distract businesses as cyber risk intensifies

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

China Publishes Draft Regulations on Protecting the Security of Key Information Infrastructure

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

How Red Hat OpenShift on AWS (ROSA) accelerates enterprise modernization initiatives on cloud, delivering business application innovation

The Hacker Mind Podcast: Reverse Engineering Smart Meters

The Hacker Mind Podcast: Hacking Industrial Control Systems

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

Stay Connected