LATEST POST
CISA forced to take two systems offline last month after vendor compromise
Microsoft was one of two heavy hitters that reported being compromised recently. The Cybersecurity and Infrastructure Security Agency (CISA) also disclosed that it was recently compromised and had to take two systems offline due to vulnerabilities in IIvanti products. A CISA spokesperson confirmed to Recorded Future News that CISA “identified activity indicating the exploitation of […]
Microsoft admits Russian state hack still not contained. ‘This has tremendous national security implications’
Even companies that invest a lot in security can get hit — and hit hard. In this week’s news, perhaps the biggest story involves Microsoft and Russia. The Associated Press reports: Microsoft said Friday it’s still trying to evict the elite Russian government hackers who broke into the email accounts of senior company executives in November […]
HHS Statement Regarding the Cyberattack on Change Healthcare
Published by the U.S. Department of Health and Human Services on March 5, 2024:
BBC licence fee collector Capita slumps to £107m loss after cyber attack
There are many instances where businesses take a hit on their revenues after a breach, but then bounce back fairly quickly. Here’s an example where one victim hasn’t bounced back after a costly breach. The Telegraph reports: The outsourcing giant that collects the BBC licence fee has slumped to a £107m loss after it was hacked […]
Change Healthcare ransomware attack: AHA and AMA urgently seek more financial support for hospitals and providers
UnitedHealth’s response to ongoing problems from a ransomware attack are being criticized by the American Hospital Association (AHA) and American Medical Association (AMA). Both organizations have issued letters or press releases. Modern Healthcare reports: AHA President and CEO Richard Pollack said Change Healthcare parent company UnitedHealth Group’s temporary loan program misses the mark in a letter sent Monday […]
American Express Credit Card Data Exposed in Third-Party Breach
DarkReading reports: American Express is notifying its customers that their credit cards were exposed in a breach involving a third-party service provider. In a data breach notification filed with the state of Massachusetts, the American bank holding and financial services company notes that its own systems were not compromised by the incident. The breach instead occurred through […]
CryptoChameleon Phishing Scam Targets Crypto Users and FCC Employees
So far, the CryptoChameleon phishing scam has successfully phished over 100 victims, with many still active. Lookout has discovered a multi-pronged phishing campaign, dubbed “CryptoChameleon,” that mimics legitimate login pages for cryptocurrency platforms and the Federal Communications Commission (FCC) via mobile devices. The kit uses carbon copies of SSO pages and phishing via email, SMS, and […]
A hacker just called your office. Do your front-line personnel know what to say or do?
Regardless of whether you work for a big corporation or a small- or medium-sized business, you need to have a plan as to how you will respond in the event of a data security incident. Many plans begin with what to do once you discover a breach, but do not neglect to ensure you have […]