LATEST POST
Right back atcha: CrowdStrike sues Delta Air Lines
Days after Delta Air Lines sued cybersecurity vendor CrowdStrike for $500 million in losses that it attributes to the vendor’s outage, CrowdStrike countersued its customer. CyberDaily reports CrowdStrike’s statement, previously reported by The Times of India, but adds CrowdStrike’s counterclaim that Delta delayed its own recovery by refusing assistance from it and its partner, Microsoft: […]
Free S.A.S., France’s second largest ISP, confirms data breach after data put up for auction
Customers’ personal information has been stolen from one of France’s major ISPs. Free S.A.S. confirmed the breach this past weekend. According to the firm, no passwords, bank card information, or the contents of communications (emails, SMS, or voicemails) were involved, and operations were not affected. But Bitdefender reports that the situation may be more serious […]
RedLine, META infostealer malware operations disrupted by “Operation Magnus”
An announcement by Dutch police in conjunction with their law enforcement partners had cyberdefenders smiling yesterday. Law enforcement had seized the source code and network infrastructure for RedLine and META infostealers. In what has been called “Operation Magnus,” law enforcement warned cybercriminals that they got their data, too. In a “final update” video, law enforcement […]
Dozens under investigation in Italy amid scandal over hacked government databases and illegal dossiers
The Record reports: Four people were arrested in Italy on Friday, with dozens more under investigation, in connection with an alleged conspiracy that links current and former officials in the country’s security services to a private intelligence agency for the purposes of building illegal dossiers. The alleged creation of such dossiers has been a growing […]
Exemptions from the Drug Supply Chain Security Act Enhanced Drug Distribution Security Requirements
Christopher R. Smith of Epstein Becker & Green, P.C. writes: On July 12, 2024, the FDA provided small dispensers—those employing 25 or fewer full-time pharmacists or pharmacy technicians—with an exemption from the Drug Supply Chain Security Act’s (“DSCSA”) enhanced drug distribution security (“EDDS”) requirements until November 27, 2026.[1] The FDA had previously announced a stabilization period effectively delaying […]
Delta sues CrowdStrike over “catastrophic” software update that prompted mass flight disruptions
The Times of India reports that Delta Air Line sued CrowdStrike over the firm’s faulty software update in July that resulted in widespread outages for CrowdStrike customers. Delta had to cancel 7,000 flights for 1.3 million customers and suffered $500 million in losses. CrowdStrike responded to the lawsuit, which was filed in Georgia state court […]
77% of CISOs fear next big breach will get them fired
CSO reports that increased pressures are putting CISOs in the hot seat, but should they bear all the blame when the inevitable comes? Should the entire C-suite have skin n the game? When security vendor Portnox reported in a survey that 77% of CISOs say they are either very or extremely worried about losing their job when […]
Change Healthcare notifies OCR that it sent 100 million notices following since February ransomware attack
Eight months after the biggest breach ever involving patient data, Change Healthcare informed the U.S. Department of Health & Human Services Office of Civil Rights (HHS OCR) that it has sent individual notifications to 100 million affected patients. This is the first time they have revealed any actual number since an April update where they […]