IT Governance

DECEMBER 5, 2023

The security researcher Bob Diachenko of SecurityDiscovery first identified the exposed information in mid-September. Data breached: over 300 million records. The company’s description of the incident suggested ransomware. We’ve also found 9 organisations providing a significant update on a previously disclosed incident.

Data Privacy 106

Data Privacy Privacy Manufacturing Retail 106

IT Governance

JANUARY 30, 2024

Mobile network database breach exposes 750 million Indians’ personal data The Indian security company CloudSEK claims to have found the personal data of 750 million Indians for sale on an “underground forum”. TB Four Hands Source (New) Manufacturing USA Yes 1.5 TB Four Hands Source (New) Manufacturing USA Yes 1.5

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

IT Governance

APRIL 22, 2024

Compromised data includes names, passport numbers, Social Security numbers, online crypto account identifiers and bank account numbers. million accounts compromised in Le Slip Français data breach The French underwear manufacturer Le Slip Français has suffered a data breach. Data breached: 5,300,000 records.

Data Privacy 52

Data Privacy Privacy Manufacturing Security 52

IT Governance

MARCH 11, 2024

Source (New) Retail Italy Yes 436,932 Toner-dumping.de Source (New) Retail Germany Yes 334,000 Yakima Valley Radiology, PC Source 1 ; source 2 (New) Healthcare USA Yes 235,249 Consorzio Innovation Source (New) Professional services Italy Yes 225 GB Northeast Orthopaedics & Sports Medicine Source (New) Healthcare USA Yes 177,276 Strike.me

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

IT Governance

FEBRUARY 27, 2024

The breached data includes names, addresses, emails, phone numbers, dates of birth, and financial account and Social Security numbers. The breached data may include names, Social Security numbers and health insurance information. For some victims, the stolen data also included Social Security numbers and health insurance information.

Data Privacy 52

Data Privacy Manufacturing Privacy Data breaches 52

IT Governance

APRIL 9, 2024

Kid Security breached again: children’s live GPS locations exposed on the Internet Last November , the parental control app Kid Security, which allows parents to monitor and control their children’s online safety, was found to have exposed more than 300 million records via misconfigured Elasticsearch and Logstash instances.

Data Privacy 52

Data Privacy Privacy Security Manufacturing 52

IT Governance

JANUARY 23, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight More than 70 million email addresses added to Have I Been Pwned The security researcher Troy Hunt has added more than 70 million email addresses from the Naz.API data set to his Have I Been Pwned data breach notification service. VF Corporation confirms 35.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

DECEMBER 19, 2023

An investigation determined that personal data, including names, addresses, phone numbers, Social Security numbers, dates of birth and bank account numbers, belonging to nearly 15 million people was obtained by an unauthorised party between 30 October and 1 November. GB Coca-Cola Singapore Source (New) Manufacturing Singapore Yes 413.92

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

Security Affairs

MARCH 3, 2024

Camera doorbells manufactured by the Chinese company Eken Group Ltd under the brands EKEN and Tuck are affected by major vulnerabilities. Researchers from Consumer Reports (CR) discovered severe vulnerabilities in doorbell cameras manufactured by the Chinese company Eken Group Ltd. ” reads the report published by CR.

Manufacturing 126

Manufacturing Retail Sales Communications 126

IT Governance

JANUARY 16, 2024

Source (New) Manufacturing USA Yes 42 GB Auto-Motion Shade Inc. Drug Mart Source 1 ; source 2 (Update) Healthcare USA Yes 36,749 Elliott Group Source (New) Manufacturing USA Yes 31.5 Source (New) Transport Canada Yes 38 GB U.S. Source (New) Transport Canada Yes 38 GB U.S.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

MARCH 5, 2024

Source (New) Engineering Japan Yes >5 TB Array Networks Source (New) Cyber security USA Yes 2.5 TB LDLC Source (New) Retail France Yes 1,500,000 APROA Source (New) Professional services Argentina Yes 1,197,562 Petrus Resources Ltd.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. It has since been confirmed by Anukul Peedkaew, the permanent secretary of social development and human security.

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

IT Governance

FEBRUARY 21, 2024

Fowler sent a responsible disclosure notice when he discovered the database and it was secured the following day. Source New Manufacturing USA Yes 20,415 TECA Srl Source New Transport Italy Yes 16.7 Known records breached Zenlayer Source New Telecoms USA Yes 384,658,212 ASA Electronics Source New Engineering USA Yes 2.7

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

Security Affairs

JANUARY 19, 2024

This group primarily focused its attacks on the construction, manufacturing/industrial, and retail industries. The data shows a shift in ransomware targets over the past three years. Previously dominated by the construction industry, the IT sector now claims the top spot in 2023.

Ransomware 124

Ransomware Manufacturing Retail Insurance 124

Security Affairs

AUGUST 9, 2021

The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 The Australian Cyber Security Centre (ACSC) warns of an escalation in LockBit 2.0 Experts warn of active exploitation of the CVE-2018-13379 , a security bug heavily exploited by LockBit to breach networks. ransomware. in Australia since 2020.

Ransomware 112

Ransomware Retail Security Manufacturing 112

Security Affairs

MAY 22, 2020

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. This actor was first spotted by PaloAlto’s UNIT42 in 2018 during wide scale operations against technology, retail, manufacturing, and local government industries in the US, Europe and Asia.

Manufacturing 135

Manufacturing e-Delivery IT Security 135

Security Affairs

MAY 12, 2024

The alert provides Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) obtained from law enforcement investigations and reports from third-party security firms. Most of the victims are in the manufacturing, engineering and construction, and retail sectors. The average ransom payment was $1.2

Ransomware 79

Ransomware Blockchain Retail Insurance 79

IT Governance

JANUARY 9, 2024

LockBit claims responsibility for Capital Health security incident The LockBit ransomware group has claimed responsibility for an attack on Capital Health , a healthcare provider in Pennington, New Jersey, last November. KG Source 1 ; source 2 (New) Manufacturing Germany Yes 1.1 They accessed 41.5 Data breached: 41,500,000 records.

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

IT Governance

FEBRUARY 6, 2024

Known records breached Eye4Fraud Source (New) Finance USA Yes 14,900,000 Gumtree Source (New) IT services South Africa Yes 13,300,000 Schneider Electric Source (New) Energy France Yes “terabytes” of data BeatBase ApS Source (New) IT services Denmark Yes 1,648,030 Football Australia Source 1 ; source 2 (New) Leisure Australia Yes 1,421,804 Indian Bank (..)

Data Privacy 88

Data Privacy Privacy Insurance Security 88

Thales Cloud Protection & Licensing

NOVEMBER 20, 2022

How to Secure Access for your Seasonal Workers. As the holiday season approaches, many retail, hospitality, logistics, and food manufacturing organizations hire seasonal workers to meet increasing demand. The Bureau of Labor Statistics reports a 7% job rise in the retail industry. Mon, 11/21/2022 - 05:36.

Access 71

Access Retail Security Authentication 71

The Last Watchdog

FEBRUARY 15, 2024

Paul Greene , CIPP/US, CIPP/E, CIPM, FIP, Harter Secrest & Emery’s Privacy and Data Security practice group helps clients respond to data security incidents of all kinds. NetDiligence-authorized Breach Coach ® firms are selected based on their experience, competency, thought leadership, and industry engagement.

Data breaches 100

Data breaches Financial Services Big data Retail 100

Security Affairs

DECEMBER 21, 2022

CyberNews researchers reported that Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Original post @ [link]. It’s no use carrying an umbrella if your shoes are leaking, an old Irish proverb says.

Retail 99

Retail Manufacturing Sales Phishing 99

The Last Watchdog

AUGUST 31, 2023

The strategic funding round was led by global manufacturing industry leader Rite-Hite with participation from existing investors Eclipse Ventures and World Innovation Lab. Voxel software is transforming operations in warehousing, manufacturing, retail, transportation, construction, and oil & gas.

Artificial Intelligence 100

Artificial Intelligence Manufacturing B2B Retail 100

IT Governance

MAY 7, 2024

Source (New) IT services USA Yes 1,382 Worthen Industries Source 1 ; source 2 (Update) Manufacturing USA Yes 1,277 R.J. Source (New) Construction USA Yes 489 ClearVision Optical Source (New) Retail USA Yes 261 Symphony Financial, LLC. Source (New) Manufacturing USA Yes Unknown Human Events.

Data breaches 59

Data breaches Education Manufacturing Retail 59

Rocket Software

DECEMBER 22, 2021

With EDI, businesses were able to exchange documents and intellectual property (IP) across disparate systems quickly, securely and transparently. Automotive companies, general manufacturers, retailers and wholesalers, among others, are now looking to improve their EDI processes. Manage all EDI in a single place.

B2B 87

B2B Manufacturing e-Delivery Cloud 87

Security Affairs

MAY 8, 2022

The guidance details the risks at all levels of the organizations, it provides information about major security controls and practices that organizations should adopt to identify, assess, and respond to these threats. The experts highlighted the importance of the security of supply chain for modern products and services.

Risk 83

Risk Manufacturing Cybersecurity Retail 83

Thales Cloud Protection & Licensing

JULY 15, 2021

Key Developments in IoT Security. The rush to market for consumers to enjoy the modern conveniences offered by these devices shocked the security community. Security experts were concerned that these devices were built with no security in mind. Has the security of these devices gotten better, or remained the same?

IoT 100

IoT Security Data Privacy Encryption 100

Thales Cloud Protection & Licensing

MARCH 10, 2021

What’s driving the security of IoT? The Urgency for Security in a Connected World. There are so many reasons why manufacturers connect their products to the Internet, whether it’s industrial machines, medical devices, consumer goods or even cars. Device Security is Hard. Guest Blog: TalkingTrust. Thu, 03/11/2021 - 07:39.

IoT 77

IoT Security Manufacturing Encryption 77

Security Affairs

OCTOBER 8, 2023

Cybersecurity researchers at Human Security discovered a global network of consumer products, dubbed BADBOX, with firmware backdoors installed and sold through a compromised hardware supply chain. ” reads the report published by Human Security. “This module is one component of PEACHPIT, the ad fraud portion of BADBOX.

e-Discovery 144

e-Discovery Retail Manufacturing Security 144

Security Affairs

AUGUST 6, 2021

As of 2018, Ermenegildo Zegna operated 480 retail stores (267 of which company-owned) across the world. This week the ransomware gang RansomEXX ransomware gang hit the Taiwanese manufacturer and distributor of computer hardware GIGABYTE and claims to have stolen 112GB of data. The revenge of the company was €1.159 billion as 2018.

Ransomware 119

Ransomware Archiving Retail Manufacturing 119

Security Affairs

MAY 20, 2023

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. The investigation into the security breach is still ongoing. “We

Data breaches 92

Data breaches Retail Sales Ransomware 92

Security Affairs

SEPTEMBER 22, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Luxottica Group S.p.A. Its best known brands are Ray-Ban, Persol, and Oakley.

Retail 141

Retail Manufacturing Ransomware Security 141

Schneier on Security

OCTOBER 13, 2021

The plaintiffs claim that Cloudflare contributes to the underlying copyright infringement by providing infringers with caching, content delivery, and security services. ” Chhabria continued, “In an effort to more effectively stamp out infringement, the plaintiffs now go after a service common to many of the infringers: Cloudflare.

Retail 105

Retail Manufacturing IT Security 105

Security Affairs

DECEMBER 11, 2020

Since at least 2014, experts at FireEye have observed the APT32 group targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. Now the Facebook security team has revealed the real identity of APT32 , linking the group to an IT company in Vietnam named CyberOne Group. .

Agriculture 128

Agriculture IT Retail Manufacturing 128

IBM Big Data Hub

JANUARY 30, 2024

Finance: Optimized for high-speed transactions and can assist in providing robust security, harnessing AI for fraud detection and real-time risk management. Retail: Manage e-commerce platforms, customer data analytics and supply chain logistics, where data analysis often must occur at the edge.

Analytics 78

Analytics Cloud Manufacturing Retail 78

The Last Watchdog

MARCH 26, 2019

Pick any company in any vertical – financial services, government, defense, manufacturing, insurance, healthcare, retailing, travel and hospitality – and you’ll find employees, partners, third-party suppliers and customers all demanding remote access to an expanding menu of apps — using their smartphones and laptops.

Security 145

Security Digital transformation Financial Services Risk 145

IT Governance

NOVEMBER 28, 2023

The post The Week in Cyber Security and Data Privacy: 20 – 26 November 2023 appeared first on IT Governance UK Blog. We’ll be back next week with the biggest and most interesting news stories, all rounded up in one place for you. In the meantime, if you missed it, check out last week’s round-up.

Data Privacy 52

Data Privacy Privacy Energy and Utilities Data breaches 52