Security Affairs

APRIL 8, 2020

On March 21, the Maze ransomware operators published some of the stolen files on their “leak site,” after the refusal of the research firm of paying the ransom. The attack took place on March 14th, 2020, when the Maze Ransomware operators exfiltrated data from the HMR’s network and then encrypt their systems.

Ransomware 103

Ransomware Data breaches Encryption Financial Services 103

Data Matters

OCTOBER 8, 2020

Treasury Department’s Office of Foreign Assets Control (OFAC) published an advisory that highlights the risk of potential U.S. individuals and businesses comply with ransomware payment demands. Payment is often demanded in bitcoin, and thus third-party services are often used to make such payments.

Ransomware 68

Ransomware Compliance Risk Government 68

Data Matters

JANUARY 28, 2022

A few days after the Advisory, Ukrainian government websites were attacked by Russian actors while the Russian government simultaneously arrested members of the notorious ransomware gang REvil. MFA was also expressly named by both Microsoft and Mandiant as one of the most important recommendations to mitigate risk.

Cybersecurity 157

Cybersecurity Financial Services Authentication Government 157

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. enable companies to identify cybersecurity risks and incidents.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

Security Affairs

APRIL 20, 2023

If malicious actors accessed the exposed data, the company could have faced devastating consequences and put their clients at risk, as financial services are the main target for cybercriminals. Employees, businesses, and individuals whose data were exposed could be at risk of spear phishing campaigns,” added researchers.

Personal data 97

Personal data Phishing Risk Financial Services 97

eSecurity Planet

JUNE 16, 2022

Encrypted threats spiked 167%, ransomware increased 105%, and 5.4 These new attacks affect everything from private citizens and businesses to government systems; healthcare organizations; public services; and food, water, and fuel supply chains. Ransomware. Ransomware is the fastest-growing trend. Mobile attacks.

Ransomware 145

Ransomware Cybersecurity Phishing Encryption 145

KnowBe4

MARCH 28, 2023

Not until an employee sends a reply, runs an attachment, or fills in a form is sensitive information at risk. This enormous security gap leaves you open to business email compromise, session hijacking, ransomware and more. I've written quite a few times about specific cyber insurance claim cases that required going to court to settle.

Phishing 82

Phishing Security awareness Insurance Cybersecurity 82

KnowBe4

FEBRUARY 14, 2023

In addition to mandatory and routine training and security tools, the best way to ensure employees are vigilant about potential risks is to help them reframe their online mindset while encouraging them to leverage critical thinking in evaluating and defending against internal and external threats," Watson says. businesses.

Phishing 80

Phishing Security awareness Compliance Risk 80

DLA Piper Privacy Matters

JULY 30, 2019

Some states – such as Alabama, Massachusetts and New York (for financial services companies) – prescribe particular requirements of a “reasonable” cybersecurity program. At least nine states expressly extend these requirements to service providers. Proof of adequate cyber insurance coverage. Proactive steps.

Data breaches 45

Data breaches Cybersecurity Financial Services Risk 45

Data Matters

APRIL 23, 2018

A high-profile cyber incident may cause substantial financial and reputational losses to an organization, including the disruption of corporate business processes, destruction or theft of critical data assets, loss of goodwill, and shareholder and consumer litigation. Aligning cyber risk with corporate strategy.

Cybersecurity 60

Cybersecurity Risk Passwords Authentication 60

IT Governance

DECEMBER 11, 2023

suffers second ransomware attack in months Having been struck by a ransomware attack in October by the BlackSuit group , which led to operations and appointments being postponed, Akumin Inc. has suffered a second attack, this time by the BianLian ransomware group. Data breached: more than 59 million data records. Akumin Inc.

Data Privacy 98

Data Privacy Energy and Utilities Privacy Manufacturing 98

IT Governance

JANUARY 23, 2024

Source (New) Real estate USA Yes 46,906 Hampton-Newport News Community Services Board Source 1 ; source 2 ; source 3 (New) Healthcare USA Yes 44,312 Air Methods Source 1 ; source 2 (New) Healthcare USA Yes 34,016 GREYHOURS Source (New) Retail France Yes 18,700 Groveport Madison Schools Source 1 ; source 2 ; source 3 (Update) Education USA Yes 15.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

KnowBe4

JUNE 20, 2023

Overall, the use of stolen credentials is the overwhelming leader in data breaches, being involved in nearly 45% of breaches – this is more than double the second-place spot of "Other" (which includes a number of types of threat actions) and ransomware, which sits at around 20% of data breaches.

Data breaches 72

Data breaches Phishing Security awareness Ransomware 72

KnowBe4

MAY 31, 2023

That's right – the financial services industry, at least according to cybersecurity vendor Armorblox's 2023 Email Security Threat Report. According to the report, the financial services industry as a target has increased by 72% over 2022 and was the single largest target of financial fraud attacks, representing 49% of all such attacks.

Phishing 75

Phishing File names Security awareness Risk 75

IT Governance

APRIL 29, 2024

Known data breached Discord (via Spy.pet) Source (New) IT services USA Yes 4,186,879,104 Baidu, Inc.,

Data Privacy 91

Data Privacy Privacy Manufacturing Security 91

eSecurity Planet

JANUARY 11, 2022

Boasting itself as the world’s first Code Risk Platform, Apiiro Security offers risk visibility across design, code, and cloud segments. Apiiro can connect across hybrid infrastructure through a read-only API and promises real-time inventory and actionable remediation for risks in addressing DevSecOps. Apiiro Security.

Cybersecurity 142

Cybersecurity Cloud Compliance Analytics 142