Commentaries and Analyses, Legal News, News
December 10, 2024
127 views 35 secs 0

Should regulators do more naming and shaming?

The U.K. Information Commissioner’s Office did an interesting two-year trial and the results suggest that publicly reprimanding public sector entities over breaches and data leaks is an effective strategy — even without any monetary penalties. Infosecurity Magazine reports: The publication of reprimands following data leaks has been cited as an “effective” deterrent for public authorities. […]

Commentaries and Analyses, Vendor News
December 03, 2024
144 views 12 secs 0

Tips for Vacation Rental, Property Mgmt. Businesses Facing Vendor Cybersecurity Risk

Lawyers at JacksonLewis write: Last year, as reported on the Maine Attorney General’s Office website, Resort Data Processing (RDP) experienced a data breach affecting over 60,000 individuals caused by a “SQL injection vulnerability which allowed an unauthorized third party to redirect payment card information from in-process transactions on our RDP’s clients’ on-premises Internet Reservation Module (“IRM”) […]

Commentaries and Analyses, Cyberattack, Data Breach News, News
December 02, 2024
120 views 44 secs 0

Vodka maker Stoli Group files for bankruptcy protection in U.S., cyberattack contributing to woes

CBS reports that the owner of Stoli brand vodka and Kentucky Owl bourbon has filed for Chapter 11 bankruptcy protection. Stoli Group (USA) “is experiencing financial difficulties,” according to the court filing.  The firm claims it has assets estimated between $100 million and $500 million, and liabilities between $50 million and $100 million. The company’s […]

News, Commentaries and Analyses, Vulnerabilities
November 19, 2024
147 views 21 secs 0

Majority of firms using generative AI experience related security incidents – even as it empowers security teams

How many times do we read about something new and think, “What can possibly go wrong, right?” Some new research by the Capgemini Research Institute found that 97% of organizations using generative AI were affected by data breaches or security concerns linked to generative AI, and most do not have an adequate budget to deal with […]

Severity of Ransomware Attacks Rose 68% in First Half of 2024, Report Shows

Claims Journal reports: Ransomware claims severity spiked by 68% to an average loss of $353,000, according to a new report by a cyber insurance provider. Coalition published its 2024 Cyber Claims Report: Mid-year Update, which details emerging cyber trends and their impact on policyholders through the first half of 2024. The frequency of using ransomware as […]

Vendor News, Commentaries and Analyses
October 10, 2024
233 views 44 secs 0

The problem with third-party breaches – a data protection dilemma

Commentary by Clyde Williamson, Security Architect at Protegrity. There has been a notable increase in third-party breaches, with headlines featuring Snowflake, Santander and Ticketmaster as recent victims. These incidents highlight that vulnerabilities are inherent in our systems, making no organisation immune to such attacks. Unsurprisingly, 98% of organisations have experienced a third-party breach within the past two years. These breaches […]

Commentaries and Analyses, Data Breach News
September 03, 2024
177 views 14 secs 0

The high cost of cybersecurity breaches on corporate reputation

Even when customers do not leave following a data breach, they may still lose confidence. A new survey confirms the reputation hit corporations fear suffering. FinTech Global reports: A recent study highlighted by ISACA points to a staggering 78% of industry professionals ranking the reputational impact as the paramount concern following cyberattacks. Given the digital […]

Commentaries and Analyses, New Threats, Vulnerabilities
September 02, 2024
255 views 56 secs 0

Microsoft says North Korean hackers stole crypto through Chromium

A vulnerability on multiple web browsers was exploited by the Citrine Sleet threat actor to steal crypto from its victims, according to Microsoft. A Microsoft report claims a North Korean threat actor has been exploiting a flaw on Chromium to steal cryptocurrency. The company’s security blog attributed the exploitation of this bug “with medium confidence” […]