LATEST POST
Feds brace for implementation of SEC cyber disclosure rules
The Record reports: The U.S. government is readying to implement contentious new disclosure rules for digital attacks that could both create headaches for the private sector and law enforcement and shed invaluable light on the state of ransomware and online threats. On December 18, a rule passed earlier this year by the Securities and Exchange […]
INTERPOL operation reveals further insights into ‘globalization’ of cyber scam centres
A December 8 press release from Interpol begins: Read more at INTERPOL.
Kentucky healthcare giant says 2.5 million people affected by May ransomware attack
The Record reports: A ransomware attack in May exposed 2.5 million patients of hospitals connected to healthcare giant Norton Healthcare. In notices submitted to regulators in Maine and California last week, the company said it discovered the attack on May 9 and later confirmed that it was dealing with a ransomware incident. After an investigation, the company said the […]
Disgruntled Cloud Engineer Sentenced to Two Years in Prison for Intentionally Damaging His Former Employer’s Computer Network After He Was Fired
Miklos Daniel Brody Retaliated Against His Former Employer, a Bank, byDamaging the Bank’s Cloud System and Stealing Valuable Computer Code SAN FRANCISCO – Miklos Daniel Brody was sentenced to 24 months in prison todayfor a network intrusion and for making false statements to a governmentagency, announced United States Attorney Ismail J. Ramsey and United StatesSecret […]
Ukraine’s top mobile operator hit by biggest cyber attack of war so far
Reuters reports: Ukraine’s biggest mobile network operator, Kyivstar, was hit on Tuesday by what appeared to be the biggest cyber attack of the war with Russia so far, knocking out mobile and internet services for millions. Kyivstar has 24.3 million mobile subscribers – more than half of Ukraine’s population – as well as over 1.1 […]
Threat Actor Targets Recruiters With Malware
Infosecurity Magazine reports: Proofpoint has warned recruiters of a skilled threat actor targeting them with emails designed to deploy malware. TA4557 is a financially motivated threat actor known to distribute the More_Eggs backdoor, which is designed to establish persistence, profile the targeted machine and drop additional payloads. Throughout 2022 and most of 2023 the actor has […]
Navigating the complexities of regulatory data incident investigations
From the law firm of Troutman Pepper Hamilton Sanders LLP: It is indeed a tangled regulatory web woven to potentially trap an organization in the wake of a data incident. Navigating this web can involve significant resources, time, and stress. As we discussed in part two of this series, “Your organization has suffered a data incident: […]
North Korean hackers Lazarus Group takes new Telegram tactics
SiliconAngle reports: Cisco Systems Inc.’s Talos Intelligence unit posted today new findings about the North Korean hacking group called Lazarus that outline new ways it’s targeting attacks. “We have observed Lazarus target companies in the manufacturing, agricultural and physical security sectors,” their analysts wrote in the post. The group has been around since 2010 and was responsible most recently […]