LATEST POST
Meet Brain Cipher — The new ransomware behind Indonesia’s data center attack
Yet another ransomware group is causing major damage and headaches. Bleeping Computer has a helpful write-up on Brain Cipher. It begins: The new Brain Cipher ransomware operation has begun targeting organizations worldwide, gaining media attention for a recent attack on Indonesia’s temporary National Data Center. Indonesia is building out National Data Centers to securely store […]
FTC Defends Investigation Into Cyberattack on MGM as Casino Giant Seeks to Block Probe
Occasionally, a business giant with the funds to fight the government will challenge a federal agency’s enforcement action. This time, it is MGM taking on the FTC. Law.com reports: The Federal Trade Commission this week defended its investigation of MGM Resort International’s data security practices as the Las Vegas-based casino is seeking a court order […]
Another MOVEit vulnerability: PATCH immediately!
Once again, threat actors are jumping to exploit a newly identified vulnerability in Progress MOVEit Transfer software. As Bleeping Computer reports, exploit attempts were noted less than 24 hours after the vendor disclosed the vulnerability. The new security issue received the identifier CVE-2024-5806 and allows attackers to bypass the authentication process in the Secure File Transfer Protocol […]
Chinese hackers are increasingly deploying ransomware – researchers
Researchers at Sentinel Labs and Recorded Future report that Chinese-linked cyberespionage campaigns are increasingly deploying ransomware. CyberScoop reports that their research suggests that ransomware is reportedly used in the final stage of cyberespionage operations to either make money, distract adversaries, or make it more difficult to attribute their work: The report that Chinese hackers are […]
Los Angeles County says 25 departments affected by February phishing incident
No matter how many warnings are issued and how many times employees may be trained to avoid phishing attacks, some will fall for it. But 25 departments of a county government? Was this a failure of training or are the phishing attacks getting harder to detect because of the use of AI to compose the […]
The devastating impact of data breaches on brand reputation
Hariom Seth, the founder of Tagglabs, writes: Any company handling data is susceptible to data breaches. IBM in 2023 conducted a study of 553 companies on the cost of data breaches, according to which a majority of organisations within the study had at least 1 major data breach in the past year. Healthcare was the […]
Threat Actors Claiming Breach of Accenture Employee Data
GB Hackers on Security notes a listing on Breach Forums that claims to be leaking data from former and current employees of Accenture. The listing, by a user calling themself “@888” states: In June 2024, Accenture suffered a data breach from a third party that exposed 32,826 employees/former employees. Breached by @888 The Compromised Data […]
Supreme Court Restricts Ability of Federal Agencies To Issue Fines
The Supreme Court issued a decision today that could limit federal agencies attempting to impose fines for data security violations or breaches. Although the decision in Securities and Exchange Commission v. Jarkesy did not involve data security or a data breach, the issue before the court involved the agency’s authority to charge someone with a violation […]