IT Governance

JANUARY 4, 2021

Ransomware. Ransomware. We’ll have a separate post looking at the year’s data breaches and cyber attacks in more detail, but in the meantime, you can find the full list of December’s incidents below. As usual, incidents affecting UK organisations are in bold. Cyber attacks. Data breaches. Financial information. In other news….

Data breaches 116

Data breaches Ransomware Energy and Utilities Computer and Electronics 116

eSecurity Planet

JANUARY 5, 2023

After a year that saw massive ransomware attacks and open cyber warfare, the biggest question in cybersecurity for 2023 will likely be how much of those attack techniques get commoditized and weaponized. 2022 was notable for the spread of ransomware as a service (RaaS). Trade Cyberthreats. RaaS and CaaS Continue to Grow.

Security 145

Security Ransomware Cybersecurity Privacy 145

IT Governance

JANUARY 9, 2020

Ransomware will continue to increase. The complexity of ransomware is such that there have been decoders released by attackers that have bugs that prevent the decryption of the data. The retail and hospitality industries will continue to have their POS equipment targeted. Open banking will be targeted.

Security 98

Security IoT Phishing Ransomware 98

IT Governance

OCTOBER 9, 2018

Malware is often associated with card transactions, because it offers the most direct returns (financial information), and POS (point-of-sale) systems have historically been plagued with vulnerabilities. But there are many types of malware you need to be aware of, including adware, spyware, bots, ransomware, Trojan horses, viruses and worms.

Data breaches 96

Data breaches Ransomware Phishing Retail 96

IT Governance

DECEMBER 20, 2022

April saw a ransomware gang bucking the much-repeated advice given by cyber security researchers that criminal hackers target vulnerabilities rather than specific organisations. The story only became more curious when the group put the information up for sale on the dark web for a little over $64,000 (about £51,000) in bitcoin.

Security 132

Security Data breaches Ransomware Military 132

IT Governance

JUNE 8, 2023

An Office for National Statistics report revealed that UK organisations have experienced a 57% increase in “consumer and retail fraud” compared to pre-pandemic levels. A UK government study found that half of adults said they had received a phishing message in the previous month. Email phishing accounts for 90% of ransomware attacks.

Phishing 111

Phishing Data breaches Communications Government 111

IT Governance

DECEMBER 30, 2019

The NHS was criticised for signing a deal with Amazon that allowed patients to access their health information via its Alexa voice assistant – potentially granting the online retail giant access to vast amounts of sensitive personal data. The Mexican oil company Pemex suffered a ransomware attack that demanded US$4.9 million (£3.82

Data breaches 78

Data breaches Personal data GDPR Ransomware 78

Krebs on Security

DECEMBER 29, 2022

Big Yellow and Avira weren’t the only established brands cashing in on crypto hype as a way to appeal to a broader audience: The venerable electronics retailer RadioShack wasted no time in announcing plans to launch a cryptocurrency exchange. Penchukov was arrested after leaving Ukraine to meet up with his wife in Switzerland.

Passwords 240

Passwords Ransomware Computer and Electronics Encryption 240

IT Governance

SEPTEMBER 30, 2019

US Secret Service investigating after its systems found for sale on the dark web (unknown). Ransomware. Police investigate after ransomware found on Sherman School, CT, systems (unknown). Flagstaff, AZ, school district hit by ransomware (unknown). Thousands of Linux servers infected with new Lilocked ransomware (unknown).

Data breaches 22

Data breaches Ransomware Personal data Military 22

IT Governance

JUNE 1, 2023

IT Governance is dedicated to helping organisations tackle the threat of cyber crime and other information security weaknesses. A month later, a ransomware attack shut down the company’s operations in Italy and China. However, PharMerica has made no mention of ransomware in neither public statements nor its breach disclosure.

Data breaches 122

Data breaches Insurance Personal data Ransomware 122

IT Governance

MARCH 11, 2024

million OpenSea records for sale on hacking forum A cyber criminal known as ‘bossmoves90004’ claims to have exfiltrated 6.9 million data records from the NFT (non-fungible token) marketplace OpenSea, which they have offered for sale on a hacking forum. Source (New) Retail Italy Yes 436,932 Toner-dumping.de TB Paysign, Inc.

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

IT Governance

FEBRUARY 1, 2022

Ransomware. If you find yourself facing a cyber security disaster, IT Governance is here to help. Ransomware. Meanwhile, you might also be interested in our 2021 data breach infographic , which summarises the information from our monthly reports and reviews the year’s key statistics. Cyber attacks. Data breaches. In other news….

Data breaches 132

Data breaches Ransomware Phishing Retail 132

IT Governance

JANUARY 30, 2024

Mobile network database breach exposes 750 million Indians’ personal data The Indian security company CloudSEK claims to have found the personal data of 750 million Indians for sale on an “underground forum”. Compromised data includes victims’ names, addresses, phone numbers and Aadhaar numbers (a 12-digit government identification number).

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

IT Governance

MAY 4, 2021

Ransomware was again one of the biggest contributors to that total, accounting for almost one in three data breaches. Ransomware. Ransomware. It was another busy month in the cyber security sector, as we discovered 143 incidents that resulted in 1,098,897,134 breached records. Cyber attacks. Data breaches. Financial information.

Data breaches 115

Data breaches Ransomware Computer and Electronics Healthcare 115

IT Governance

DECEMBER 11, 2023

suffers second ransomware attack in months Having been struck by a ransomware attack in October by the BlackSuit group , which led to operations and appointments being postponed, Akumin Inc. has suffered a second attack, this time by the BianLian ransomware group. Source (New) Retail USA Yes 2,469 Three GreatStar Industrial Co.

Data Privacy 101

Data Privacy Energy and Utilities Privacy Manufacturing 101

IT Governance

JANUARY 3, 2020

Hackers break into government system used by the country’s schools (unknown). Singapore-based retailer Love, Bonito apologises to customers after malware infection (unknown). Chinese government-linked hacking group has been bypassing 2FA in a wave of attacks (unknown). Ransomware. Henry Co.,

Data breaches 116

Data breaches Ransomware Phishing Government 116

IT Governance

MAY 24, 2024

For example, not so long ago, LockBit [an infamous ransomware gang] got taken down. And various other ransomware groups, including Ragnar Locker and Black Basta , suffered the same fate. If you’re a retailer, you’re going to see way more web traffic than usual. We had a client that had been compromised with ransomware.

Risk 118

Risk Security Ransomware Phishing 118

eSecurity Planet

FEBRUARY 16, 2021

Ransomware. Unlike ransomware, it might be a criminal operation that does not involve the collection of a ransom. Email is also usually how ransomware works. RAM scraper malware, also known as Point-of-Sale (POS) malware , harvests data temporarily stored in a system’s memory, also known as random access memory (RAM).

Phishing 104

Phishing Ransomware Passwords Access 104

IT Governance

FEBRUARY 6, 2024

million Gumtree user records allegedly for sale A user database from the classified advertising platform Gumtree has allegedly been offered for sale on a hacking forum. According to Bleeping Computer, the Cactus ransomware gang stole “terabytes of corporate data”, which it’s threatening to leak if a ransom isn’t paid.

Data Privacy 88

Data Privacy Privacy Insurance Security 88

Security Affairs

NOVEMBER 29, 2019

While 2017 was the year of WannaCry , NotPetya , and BadRabbit ransomware epidemics, 2018 revealed a lack of preparedness for side-channel attacks and threats related to microprocessor vulnerabilities. Many telecom operators are Managed Service Providers and provide security services to government and commercial organizations.

IT 84

IT Military Cybersecurity Phishing 84

IT Governance

DECEMBER 19, 2023

8 TB of data exfiltrated from Advantage Group International Following an outage affecting its leak site (see the ‘Enforcement’ section below), the ALPHV/BlackCat ransomware group is listing only a single incident: a data breach affecting the business management consultant Advantage Group International. GB Goa Natural Gas Pvt.Ltd.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

Security Affairs

NOVEMBER 25, 2020

The most severe financial damage has occurred as a result of ransomware activity. The stand-off between various pro-government hacker groups saw new players come onto the scene, while some previously known groups resumed their operations. Group-IB: The ransomware plague cost the world over $1 billion.

Ransomware 131

Ransomware Phishing Sales Manufacturing 131

IT Governance

APRIL 29, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight Data scraping site taken offline after billions of Discord users’ messages offered for sale A data scraping website called Spy.pet has been taken offline after harvesting more than 4 billion messages made by almost 630 million Discord users and offering them for sale.

Data Privacy 94

Data Privacy Privacy Manufacturing Security 94

KnowBe4

MARCH 7, 2023

The most critical affected Ukraine: Several thousand satellite systems that President Volodymyr Zelenskiy's government depended on were all down, making it much tougher for the military and intelligence services to coordinate troop and drone movements in the hours after the invasion." government. Ukrainians paid the price.

Phishing 80

Phishing Ransomware Cybersecurity Security awareness 80

IT Governance

AUGUST 2, 2021

Ransomware. If you find yourself facing a cyber security disaster, IT Governance is here to help. Ransomware. As always, you can find the full list of incidents below, with those affecting UK organisations listed in bold. And don’t forget to subscribe to our Weekly Round-up to receive the latest industry news and advice.

Data breaches 105

Data breaches Ransomware Insurance Personal data 105