IT Governance

APRIL 12, 2022

IT Governance discovered 266 security incidents between January and March 2022, which accounted for 75,099,482 breached records. We also place ransomware in its own category, due in part to the frequency of attacks and in order to differentiate it from intrusions that may be harder to detect, such as password breaches.

Data breaches 115

Data breaches Ransomware Government Retail 115

IT Governance

OCTOBER 19, 2022

IT Governance identified 285 publicly disclosed security incidents between July and September 2022, which accounted for 232,266,148 compromised records. We also place ransomware in its own category, due in part to the frequency of attacks and in order to differentiate it from intrusions that may be harder to detect, such as password breaches.

Data breaches 116

Data breaches Ransomware Phishing Government 116

IT Governance

JULY 11, 2022

IT Governance discovered 237 security incidents between April and June 2022, which accounted for 99,019,967 breached records. We also place ransomware in its own category, due in part to the frequency of attacks and in order to differentiate it from intrusions that may be harder to detect, such as password breaches.

Data breaches 105

Data breaches Ransomware Phishing Government 105

IT Governance

JANUARY 9, 2023

IT Governance discovered 1,063 security incidents in 2022, which accounted for 480,014,323 breached records. We also give ransomware its own category, due in part to the frequency of attacks and to differentiate it from intrusions that may be harder to detect, such as password breaches. That represents an 14.8%

Data breaches 126

Data breaches Ransomware Government Passwords 126

IT Governance

FEBRUARY 21, 2024

ALPHV/BlackCat ransomware gang adds 2.7 TB of ASA Electronics data to its leak site The ALPHV/BlackCat ransomware gang is attempting to extort a ransom from ASA Electronics for 2.7 It is not known how long the database was publicly available, nor whether anyone else accessed it. Date breached: 384,658,212 records. Data breached: 2.7

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

IT Governance

JULY 13, 2021

IT Governance discovered 377 security incidents between April and June 2021, which accounted for 1,224,539,395 breached records. We also place ransomware in its own category, due in part to the frequency of attacks and in order to differentiate it from intrusions that may be harder to detect, such as password breaches.

Data breaches 98

Data breaches Retail Ransomware Government 98

IT Governance

FEBRUARY 14, 2024

GB City of Clemson, South Carolina Source New Public USA Yes 21,056 DGX-Dependable Hawaiian Express Source New Professional services USA Yes 20 GB Verdimed Source New Agricultural Spain Yes 19 GB Watchmax Source New Retail UK Yes 15,000 Del-Tron Precision Source New Manufacturing India Yes 8.9 GB Signature Performance, Inc.

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

IT Governance

APRIL 12, 2023

Overview IT Governance discovered 310 security incidents between January and March 2023, which accounted for 349,171,305 breached records. We also place ransomware in its own category, due in part to the frequency of attacks and in order to differentiate it from intrusions that may be harder to detect, such as password breaches.

Data breaches 59

Data breaches Ransomware Government Encryption 59

IT Governance

JANUARY 9, 2024

LockBit claims responsibility for Capital Health security incident The LockBit ransomware group has claimed responsibility for an attack on Capital Health , a healthcare provider in Pennington, New Jersey, last November. The compromised data allegedly includes names, email addresses and phone numbers. Data breached: 41,500,000 records.

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

IT Governance

JANUARY 9, 2020

Ransomware will continue to increase. The complexity of ransomware is such that there have been decoders released by attackers that have bugs that prevent the decryption of the data. The retail and hospitality industries will continue to have their POS equipment targeted. Open banking will be targeted.

Security 98

Security IoT Phishing Ransomware 98

IT Governance

DECEMBER 20, 2022

April saw a ransomware gang bucking the much-repeated advice given by cyber security researchers that criminal hackers target vulnerabilities rather than specific organisations. By comparison, a report published last year found that US firms pay $6 million on average in ransomware demands. Source: Security Affairs.

Security 132

Security Data breaches Ransomware Military 132

KnowBe4

DECEMBER 6, 2022

The users were able to impersonate an infinite number of entities (such as banks, retail companies and government institutions) for financial gain and substantial losses to victims. Ransomware, Ransom-war and Ran-some-where: What We Can Learn When the Hackers Get Hacked. Ransomware strikes organizations almost every two seconds.

Security awareness 95

Security awareness Phishing Risk Insurance 95

Hunton Privacy

DECEMBER 15, 2017

Consideration was given to whether the same factors apply in both the privacy and security contexts, the risk of potential injury versus realized injury and when government intervention is warranted. Panelists were then asked at which stage of the hypotheticals they believed government intervention should occur.

Privacy 42

Privacy Retail Risk Insurance 42

IT Governance

MARCH 11, 2024

Source (New) Retail Italy Yes 436,932 Toner-dumping.de Source (New) Retail Germany Yes 334,000 Yakima Valley Radiology, PC Source 1 ; source 2 (New) Healthcare USA Yes 235,249 Consorzio Innovation Source (New) Professional services Italy Yes 225 GB Northeast Orthopaedics & Sports Medicine Source (New) Healthcare USA Yes 177,276 Strike.me

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

IT Governance

APRIL 22, 2024

million records from World-Check, a screening database used to screen potential customers for links to illegal activity and government sanctions. Mobile Guardian, which is used to help parents manage their children’s device usage, was hacked on 19 April, according to the Singaporean Ministry of Education.

Data Privacy 52

Data Privacy Privacy Manufacturing Security 52

IT Governance

JANUARY 30, 2024

Compromised data includes victims’ names, addresses, phone numbers and Aadhaar numbers (a 12-digit government identification number). It remains unclear how the data breach occurred, but the attackers apparently suggested it was the result of “exploiting vulnerabilities within government databases of telecommunication systems”.

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

IT Governance

DECEMBER 11, 2023

suffers second ransomware attack in months Having been struck by a ransomware attack in October by the BlackSuit group , which led to operations and appointments being postponed, Akumin Inc. has suffered a second attack, this time by the BianLian ransomware group. Source (New) Retail USA Yes 2,469 Three GreatStar Industrial Co.

Data Privacy 101

Data Privacy Energy and Utilities Privacy Manufacturing 101

IT Governance

DECEMBER 5, 2023

The company’s description of the incident suggested ransomware. This was confirmed about a fortnight later, in early November, when the ALPHV/BlackCat ransomware group took responsibility for the attack , claiming to have encrypted Henry Schein’s files and exfiltrated 35 TB of data. Source (New) Education USA Yes 1,493 Kimber Mfg.,

Data Privacy 106

Data Privacy Privacy Manufacturing Retail 106

IT Governance

OCTOBER 3, 2022

Ransomware. If you’re facing a cyber security disaster, IT Governance is here to help. Ransomware. Costa Rica’s Junta De Proteccion Social hit by ransomware (unknown) Former students and staff at Savannah College of Art and Design affected by security incident (unknown) Ransomware attack takes down L.A.

Data breaches 143

Data breaches Ransomware Education Phishing 143

IT Governance

JANUARY 23, 2024

Known records breached Naz.API (likely belonging to multiple organisations) Source (New) Unknown Unknown Yes 70,840,771 VF Corporation Source 1 ; source 2 (Update) Retail USA Yes 35,500,000 Pastelería Mozart Source (New) Hospitality Chile Yes 10,870,524 Foxsemicon Integrated Technology, Inc. Organisation(s) Sector Location Data breached?

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

JANUARY 3, 2024

GB Universidad de La Punta Source (New) Education Argentina Yes 47,562 (95,123 lines; probably half repeated) Unfallkasse Thüringen Source (New) Insurance Germany Yes 45 GB Protektor24.ru Source (New) Manufacturing USA Yes >400 GB Hafez Insurance Co. Source 1 ; source 2 (New) Manufacturing Australia Yes 95.19

Data Privacy 107

Data Privacy Insurance Manufacturing Retail 107

IT Governance

FEBRUARY 27, 2024

TB The Peddie School Source (New) Education USA Yes 1.2 GB Tiete Automobile Source (New) Retail Brazil Yes 68.5 TB The Peddie School Source (New) Education USA Yes 1.2 GB Tiete Automobile Source (New) Retail Brazil Yes 68.5 TB Roncelli Plastics Source (New) Manufacturing USA Yes 1.6

Data Privacy 52

Data Privacy Manufacturing Privacy Data breaches 52

IT Governance

JUNE 1, 2023

IT Governance is dedicated to helping organisations tackle the threat of cyber crime and other information security weaknesses. A month later, a ransomware attack shut down the company’s operations in Italy and China. However, PharMerica has made no mention of ransomware in neither public statements nor its breach disclosure.

Data breaches 122

Data breaches Insurance Personal data Ransomware 122

IT Governance

APRIL 9, 2024

TB Allium UPI, UAB, Apotheka, Apotheka Beauty and PetCity Source (New) Manufacturing Estonia Yes 1,190,000 Aero Dynamic Machining, Inc. TB Allium UPI, UAB, Apotheka, Apotheka Beauty and PetCity Source (New) Manufacturing Estonia Yes 1,190,000 Aero Dynamic Machining, Inc. Source (New) Manufacturing USA Yes 1.1

Data Privacy 52

Data Privacy Privacy Security Manufacturing 52

ForAllSecure

MAY 17, 2023

Small to Medium Business are, today, the target of APTs and ransomware. MUSIC} VAMOSI: In EP 49, I talked with Huntress, a managed service provider that discovered the ransomware affecting customers of Keysea. And because they were plugged into those clients, they were able to limit the spread of the ransomware.

Insurance 40

Insurance Privacy Ransomware GDPR 40

IT Governance

FEBRUARY 6, 2024

Schneider Electric hit by Cactus ransomware The Sustainability Business division of the energy company Schneider Electric suffered a ransomware attack on 17 January, disrupting the company’s Resource Advisor platform. Data breached: 13,300,000 records.

Data Privacy 88

Data Privacy Privacy Insurance Security 88

IT Governance

MAY 4, 2021

Ransomware was again one of the biggest contributors to that total, accounting for almost one in three data breaches. Ransomware. Ransomware. It was another busy month in the cyber security sector, as we discovered 143 incidents that resulted in 1,098,897,134 breached records. Cyber attacks. Data breaches. Financial information.

Data breaches 115

Data breaches Ransomware Computer and Electronics Healthcare 115

eSecurity Planet

FEBRUARY 16, 2021

Ransomware. Unlike ransomware, it might be a criminal operation that does not involve the collection of a ransom. User education is one of the most powerful tools for preventing malicious mobile apps. Email is also usually how ransomware works. Since 2008, RAM scraping has been a boon for retailers. Ransomware.

Phishing 105

Phishing Ransomware Passwords Access 105

IT Governance

AUGUST 29, 2019

Australian education provider TAFE NSW hit by phishing scam (30). Multiple sites affiliated with the University of Florida student government hacked (unknown). Ransomware. Ransomware strain targets German organisations, wipes files (unknown). Oklahoma-based Broken Arrow school system hit by ransomware (unknown).

Data breaches 111

Data breaches Phishing Ransomware Personal data 111

eSecurity Planet

JANUARY 27, 2022

As threats mount from ransomware gangs , Russian-backed hacker groups , and other nation-sponsored attackers and as the growth in remote work makes security management increasingly complicated, many companies are finding it makes sense to turn to a managed security service provider (MSSP) for help with handling an extremely complex threat landscape.

Security 109

Security Cloud Compliance Analytics 109

IT Governance

SEPTEMBER 17, 2018

It has been reported that a speculative ransomware attack on the airport resulted in its information screens being taken offline, and flight information being written on whiteboards, although no flights were delayed. Ransomware is a type of malicious programme that demands payment after launching a cyber attack on a computer system.

Ransomware 84

Ransomware Phishing Education Risk 84

IT Governance

APRIL 29, 2024

Source (New) Manufacturing Taiwan Yes 4,715,133 Mustafa Centre Source 1 ; source 2 (Update) Retail Singapore Yes >3,5000,000 TRAXERO Source (New) Software USA Yes 2,634,753 Piping Rock Health Products Source 1 ; source 2 ; source 3 (New) Manufacturing USA Yes 2,103,100 FBCS, Inc. Source 1 ; source 2 (Update) Finance USA Yes 498,686 J.P.

Data Privacy 92

Data Privacy Privacy Manufacturing Security 92

IT Governance

DECEMBER 19, 2023

8 TB of data exfiltrated from Advantage Group International Following an outage affecting its leak site (see the ‘Enforcement’ section below), the ALPHV/BlackCat ransomware group is listing only a single incident: a data breach affecting the business management consultant Advantage Group International. Source (New) Finance USA Yes 1.1

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

KnowBe4

MARCH 7, 2023

The most critical affected Ukraine: Several thousand satellite systems that President Volodymyr Zelenskiy's government depended on were all down, making it much tougher for the military and intelligence services to coordinate troop and drone movements in the hours after the invasion." government. Ukrainians paid the price.

Phishing 87

Phishing Ransomware Cybersecurity Security awareness 87

Security Affairs

NOVEMBER 25, 2020

The most severe financial damage has occurred as a result of ransomware activity. The stand-off between various pro-government hacker groups saw new players come onto the scene, while some previously known groups resumed their operations. Group-IB: The ransomware plague cost the world over $1 billion.

Ransomware 129

Ransomware Phishing Sales Manufacturing 129

IT Governance

AUGUST 2, 2021

Ransomware. If you find yourself facing a cyber security disaster, IT Governance is here to help. Ransomware. As always, you can find the full list of incidents below, with those affecting UK organisations listed in bold. And don’t forget to subscribe to our Weekly Round-up to receive the latest industry news and advice.

Data breaches 105

Data breaches Ransomware Insurance Personal data 105