Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide. .

Energy and Utilities 100

Energy and Utilities Military Government Phishing 100

Security Affairs

JANUARY 24, 2024

Impacted customers include Sweden’s largest cinema chain Filmstaden (the attack disrupted its online ticket system) and the discount retail chain Rusta. ” BleepingComputer first reported that the security breach was the result of an Akira ransomware attack. Tietoevry notified law enforcement and impacted customers.

Ransomware 111

Ransomware Government Retail Cloud 111

The Last Watchdog

JULY 13, 2023

Is business becoming dulled to the cyber security threat As cyber fears decrease, the technological risk landscape has fragmented, with executives nearly as concerned about the perceived threat posed by disruptive new technologies, such as AI, as the risk of cybercrime.

Risk 189

Risk Insurance Energy and Utilities Marketing 189

Security Affairs

AUGUST 28, 2019

Recent campaigns show t hreat actors behind the Dridex and Locky malware families , the TA505 group, have updated tactics and expanded its target list. Trend Micro revealed that the TA505 group that is behind the Dridex and Locky malware families continue to make small changes to its operations. ” continues the report.

e-Delivery 73

e-Delivery Insurance Retail Government 73

Security Affairs

MAY 1, 2023

Researchers from Elastic Security Labs spotted a new remote access trojan dubbed LOBSHOT was being distributed through Google Ads. While investigating the malware distribution, the researchers noticed the use of an infrastructure known to belong to cybercrime group TA505. ” reads the report published by Elastic Security Labs.

Retail 89

Retail Access Education Security 89

IT Governance

DECEMBER 20, 2022

Although there have still been a few surprises, with the death of Queen Elizabeth II and blazing heatwaves across the UK to name but two, it was a familiar year in the cyber security landscape. Google , Clearview AI , and Meta all receives hefty penalties in 2022, demonstrating the continued important of effective information security.

Security 132

Security Data breaches Ransomware Military 132

Security Affairs

OCTOBER 6, 2021

Both cybercriminal groups and actors involved in espionage operations use this RAT due to Agent Tesla’s stability, flexibility and functionality that allows for the collection of sensitive data and exfiltration from the victim. . Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, malware).

Financial Services 137

Financial Services Retail Education Information Security 137

Security Affairs

MAY 5, 2021

The group targeted the organization with phishing attacks aimed at spreading at least three new sophisticated malware strains. FireEye’s Mandiant unit observed two distinct waves of attacks carried out by the cybercrime group in December 2020. orgs with 3 malware appeared first on Security Affairs. Pierluigi Paganini.

Manufacturing 103

Manufacturing Phishing Military Retail 103

IT Governance

JUNE 1, 2022

We identified 77 security incidents during the month, resulting in 49,782,129 compromised records. Meanwhile, be sure to subscribe to our Weekly Round-up to receive the latest cyber security news and advice delivered straight to your inbox. If you’re facing a cyber security disaster, IT Governance is here to help.

Data breaches 126

Data breaches Ransomware Phishing Education 126

Security Affairs

OCTOBER 28, 2020

Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries. The post Steelcase office furniture giant hit by Ryuk ransomware attack appeared first on Security Affairs. Pierluigi Paganini.

Ransomware 103

Ransomware Computer and Electronics Manufacturing Mining 103

IT Governance

APRIL 12, 2022

Welcome to our first quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. In this article, you’ll find an overview of the cyber security landscape from the past three months, including the latest statistics and our observations.

Data breaches 115

Data breaches Ransomware Government Retail 115

Security Affairs

FEBRUARY 9, 2020

Extra security measures have been taken to protect (scientific) data. “Since the cyber attack on 23 December 2019, UM has been working hard: on the one hand, to repair the damage and, on the other hand, to make education and research p ossible again as soon as p ossible.” stated a notice published by the UM in December. “UM

Ransomware 109

Ransomware Encryption Passwords Retail 109

The Last Watchdog

NOVEMBER 26, 2018

I was recently privileged to be part of a group of journalists covering the 2018 North American International Cyber Summit at Detroit’s Cobo Convention Center. Merit is an acronym for the Michigan Educational Research Information Triad. Cobo Center. Getting proactive. I just wanted to be proactive about it,” he told me.

Cybersecurity 167

Cybersecurity Military Education Government 167

erwin

JUNE 11, 2020

Educators can provide a more valuable learning experience and environment for students. With the use of data intelligence tools, educational institutes can provide teachers with a more holistic view of a student’s academic performance. Blockchain enables more secure and complex transaction record-keeping for businesses.

Analytics 103

Analytics Blockchain Artificial Intelligence Big data 103

Armstrong Archives

DECEMBER 19, 2023

No matter the size of a business, a well-defined record retention policy serves multiple purposes: ensuring compliance with legal and regulatory requirements, aiding in efficient document management, and securing sensitive information. However, they also require IT infrastructure to facilitate secure storage and backup.

Compliance 52

Compliance Archiving Digital transformation Sales 52

KnowBe4

DECEMBER 6, 2022

Live Demo] Ridiculously Easy Security Awareness Training and Phishing. Join us TOMORROW, Wednesday, December 7 @ 2:00 PM (ET) , for a live demo of how KnowBe4 introduces a new-school approach to security awareness training and simulated phishing. Vet, manage and monitor your third-party vendors' security risk requirements.

Security awareness 92

Security awareness Phishing Risk Insurance 92

IT Governance

APRIL 22, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight Criminal hackers threaten to leak World-Check screening database A criminal group known as GhostR claims to have stolen 5.3 Compromised data includes names, passport numbers, Social Security numbers, online crypto account identifiers and bank account numbers.

Data Privacy 52

Data Privacy Privacy Manufacturing Security 52

IT Governance

MARCH 11, 2024

Source (New) Retail Italy Yes 436,932 Toner-dumping.de Source (New) Retail Germany Yes 334,000 Yakima Valley Radiology, PC Source 1 ; source 2 (New) Healthcare USA Yes 235,249 Consorzio Innovation Source (New) Professional services Italy Yes 225 GB Northeast Orthopaedics & Sports Medicine Source (New) Healthcare USA Yes 177,276 Strike.me

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

IT Governance

FEBRUARY 27, 2024

The breached data includes names, addresses, emails, phone numbers, dates of birth, and financial account and Social Security numbers. The breached data may include names, Social Security numbers and health insurance information. For some victims, the stolen data also included Social Security numbers and health insurance information.

Data Privacy 52

Data Privacy Manufacturing Privacy Data breaches 52

IT Governance

MARCH 5, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight Millions of Pure Incubation Ventures records listed on hacking forum 183,754,481 records apparently belonging to the venture capital and private equity group Pure Incubation Ventures have been listed for sale on a hacking forum. The claim is yet to be verified.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

JANUARY 3, 2024

billion records The security researcher Jeremiah Fowler discovered an unprotected database exposing more than 1.5 Fowler contacted the company, which secured the database. The security researcher Bob Diachenko identified the leak in September and contacted TuneFab, which fixed the misconfiguration within 24 hours.

Data Privacy 107

Data Privacy Insurance Manufacturing Retail 107

CGI

OCTOBER 16, 2017

Early 2018 will mark the beginning of a new era for the UK’s retail banks. Using the Open Banking API, new entrants and smaller players will have a structured and secure way to access customer account information and challenge the established institutions by creating new customer offers. p.butler@cgi.com. Tue, 10/17/2017 - 01:03.

IT 40

IT Retail Marketing Data Privacy 40

IT Governance

DECEMBER 5, 2023

The security researcher Bob Diachenko of SecurityDiscovery first identified the exposed information in mid-September. This was confirmed about a fortnight later, in early November, when the ALPHV/BlackCat ransomware group took responsibility for the attack , claiming to have encrypted Henry Schein’s files and exfiltrated 35 TB of data.

Data Privacy 106

Data Privacy Privacy Manufacturing Retail 106

IT Governance

JANUARY 23, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight More than 70 million email addresses added to Have I Been Pwned The security researcher Troy Hunt has added more than 70 million email addresses from the Naz.API data set to his Have I Been Pwned data breach notification service. VF Corporation confirms 35.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

JANUARY 30, 2024

Mobile network database breach exposes 750 million Indians’ personal data The Indian security company CloudSEK claims to have found the personal data of 750 million Indians for sale on an “underground forum”. Data breached: 2 PB. TB Four Hands Source (New) Manufacturing USA Yes 1.5 TB Four Hands Source (New) Manufacturing USA Yes 1.5

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

Data Matters

SEPTEMBER 4, 2019

Securities and Exchange Commission on June 5, 2019, broker-dealers and associated persons are required to act in the best interest of a retail customer when recommending a securities transaction or investment strategy involving securities to a retail customer.

Insurance 68

Insurance Paper Risk Analytics 68

IT Governance

JANUARY 16, 2024

Source 1 ; source 2 (Update) Professional services USA Yes 56,457 Highlands Oncology Group Source 1 ; source 2 ; source 3 (Update) Healthcare USA Yes 55,297 Charm Sciences, Inc. Drug Mart Source 1 ; source 2 (Update) Healthcare USA Yes 36,749 Elliott Group Source (New) Manufacturing USA Yes 31.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

APRIL 9, 2024

Kid Security breached again: children’s live GPS locations exposed on the Internet Last November , the parental control app Kid Security, which allows parents to monitor and control their children’s online safety, was found to have exposed more than 300 million records via misconfigured Elasticsearch and Logstash instances.

Data Privacy 52

Data Privacy Privacy Security Manufacturing 52

IT Governance

DECEMBER 11, 2023

Researchers from the German cyber security company Aplite discovered 3,806 servers from 111 countries accessible on the Internet. suffers second ransomware attack in months Having been struck by a ransomware attack in October by the BlackSuit group , which led to operations and appointments being postponed, Akumin Inc. Akumin Inc.

Data Privacy 101

Data Privacy Energy and Utilities Privacy Manufacturing 101

eSecurity Planet

JANUARY 27, 2022

As threats mount from ransomware gangs , Russian-backed hacker groups , and other nation-sponsored attackers and as the growth in remote work makes security management increasingly complicated, many companies are finding it makes sense to turn to a managed security service provider (MSSP) for help with handling an extremely complex threat landscape.

Security 109

Security Cloud Compliance Analytics 109

Positively RIM

JANUARY 5, 2017

Today’s Blog is sponsored by MER 2017, Cohasset Associates’ 25 th annual educational conference on electronic records management, in Chicago, May 8-10. U ser beware: amid the security and budgetary advantages of the Cloud, risks lurk, ready to sabotage the unprepared or unsuspecting. Make sure you are not caught unaware.

Cloud 40

Cloud Risk Records Management Compliance 40

IT Governance

FEBRUARY 6, 2024

Source 1 ; source 2 (New) Professional services USA Yes 11,556 Poder Judicial de Santa Cruz Source (New) Legal Argentina Yes 8,732 J.D.

Data Privacy 88

Data Privacy Privacy Insurance Security 88

IT Governance

OCTOBER 3, 2022

Compared to August, it was a comparatively quiet month, as we identified 88 publicly disclosed security incidents and 35,566,046 compromised records. Welcome to our September 2022 list of data breaches and cyber attacks. Ransomware. Data breaches. Malicious insiders and miscellaneous incidents. Cyber attacks.

Data breaches 143

Data breaches Ransomware Education Phishing 143

The Last Watchdog

MARCH 21, 2022

But as cyber-crime groups and adversarial nations invest money, time and effort in cracking these defenses, traditional protections are no longer adequate. It’s time to rethink your security stack and priorities. You almost certainly need a chief information security officer (CISO). Educate employees.

Encryption 215

Encryption Cloud Privacy GDPR 215

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. Those amendments were the subject of a contentious battle between interested stakeholders.

Privacy 58

Privacy Sales Education Compliance 58

IT Governance

JUNE 1, 2023

On this page, you will find all our usual information breaking down the month’s security incidents. Meanwhile, you can subscribe to our Weekly Round-up to receive the latest cyber security news and advice delivered straight to your inbox. However, we’ve decided to consolidate our records onto a single page.

Data breaches 122

Data breaches Insurance Personal data Ransomware 122

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. Those amendments were the subject of a contentious battle between interested stakeholders.

Privacy 58

Privacy Sales Compliance Cybersecurity 58