LATEST POST
Cloud Backup Security Incident Investigation Complete and Strengthened Cyber Resilience
SonicWall reports: In early September, SonicWall detected suspicious activity related to the downloading of backup firewall configuration files stored in a specific cloud environment. Our incident response team immediately activated our established response protocols, engaged Mandiant, a leading cybersecurity response firm, and notified our global partners and customers directly about the incident and remediation steps to protect their customers. In addition to frequent and transparent communication with partners and customers, SonicWall […]
CBO systems accessed in ‘security incident’ possibly tied to foreign hackers
NextGov reports: The Congressional Budget Office, Capitol Hill’s nonpartisan accounting service that delivers financial assessments for legislation, was accessed in a hack potentially tied to a foreign hacker group. “The Congressional Budget Office has identified the security incident, has taken immediate action to contain it, and has implemented additional monitoring and new security controls to […]
Investigation finds KT lax femtocell security leaked data of 22,227 and hid infected servers
A breach affecting South Korea’s second largest mobile carrier, KT, continues to have ramifications for the carrier. Chosun Biz reports: The joint public-private investigation team (hereafter, the investigation team) operated by the Ministry of Science and ICT announced interim findings on the KT hacking and breach incident on the 6th. The investigation team said that, […]
Nearly half of retail ransomware attacks stem from unknown security gaps: Report
The Economic Times reports: Cybersecurity firm Sophos has released its fifth annual State of Ransomware in Retail report, highlighting how visibility gaps across retail networks continue to leave businesses vulnerable. The survey of 361 IT and security leaders across 16 countries found that 46% of ransomware attacks in the sector originated from previously unknown security […]
Lawsuits, Investigations Piling Up in Conduent Hack
Bank Info Security reports: Proposed federal class action litigation is piling up against Conduent Business Solutions following its recent public disclosure that an October 2024 hacking incident potentially compromised personal and health information of more than 10.5 million people. As of Tuesday, at least nine proposed class action lawsuits have been filed since Oct. 27 […]
Credentials and Misconfigurations Behind Most Cloud Breaches, Says AWS
HackRead reports: Read more at HackRead.
Chicago firm that offers ransomware incident response had rogue workers carrying out their own hacks, FBI says
Chicago Sun-Times reports: Rogue employees of a Chicago company that specializes in negotiating ransoms to mitigate cyber attacks were carrying out their own piracy in a plot to extort millions of dollars from a series of companies, prosecutors say. Kevin Tyler Martin, a ransomware threat negotiator for River North-based DigitalMint at the time of the […]
Penn hacker claims to have stolen 1.2 million donor records in data breach
Bleeping Computer reports: A hacker has taken responsibility for last week’s University of Pennsylvania “We got hacked” email incident, saying it was a far more extensive breach that exposed data on 1.2 million donors and internal documents. On Friday, University of Pennsylvania alumni and students began receiving multiple offensive emails from Penn.edu addresses claiming the university […]