From the Harvard Business Review: In December of 2020, SolarWinds learned that they had fallen victim to hackers. Unknown actors had inserted malware called SUNBURST into a software update, potentially granting hackers access to thousands of its customers’ data, including government agencies across the globe and the US military. General Counsel Jason Bliss needed to […]
Reuters reports: Veon, the parent company of Ukraine’s largest mobile operator Kyivstar, will take a hit of around 3.6 billion hryvnias ($95 million) in revenue in 2024 due to a massive cyberattack in December, the Dutch telecoms group estimated on Thursday. The estimated lost revenue is associated with measures Kyivstar has taken to compensate customers […]
In connection with the settlement, Genesis Global Trading will surrender its BitLicense New York State Department of Financial Services (DFS) Superintendent Adrienne A. Harris today announced that Genesis Global Trading, Inc. (“Genesis Global Trading”) will pay an $8 million penalty to New York State for compliance failures that violated DFS’s virtual currency and cybersecurity regulations […]
BakerHostetler law firm is well-known for data breach incident response. They write, “Three years ago we set a new industry standard by creating our Digital Assets and Data Management (DADM) practice group, which now has more than 100 attorneys and technologists. Every year we organize and publish our collective insights in this report. It is […]
Emsisoft reports: In 2023, the U.S. was once again battered by a barrage of financially-motivated ransomware attacks that denied Americans access to critical services, compromised their personal information, and probably killed some of them. In total, 2,207 U.S. hospitals, schools and governments were directly impacted by ransomware over the course of the year, with many […]
Bleeping Computer reports: 2023 was a big year for cybersecurity, with significant cyberattacks, data breaches, new threat groups emerging, and, of course, zero-day vulnerabilities. Some stories, though, were more impactful or popular with our 22 million readers than others.Below are fourteen of what BleepingComputer believes are the most impactful cybersecurity stories of 2023, with a […]
Ticker.tv reports: A recent report released cybersecurity service provider Sophos reveals a significant rise in remote encryption attacks conducted some of the most active ransomware groups. The study, titled “CryptoGuard: An Asymmetric Approach to the Ransomware Battle,” identifies ransomware groups including Akira, ALPHV/BlackCat, LockBit, Royal, and Black Basta as perpetrators of remote encryption attacks. In […]
A small round-up of posts and analyses of the past year, and predictions for the year ahead. Looking Back at 2023: Data Breaches and Breach Laws Passed Washington State Attorney General Ferguson AG report: Data breaches decline for the second consecutive year, remain historically high List of Data Breaches and Cyber Attacks in 2023 2023 […]
Constangy, Brooks, Smith & Prophete, LLP writes: As we near the end of another year, it is time to look ahead to developments in the information security and privacy landscape. One area of particular importance is the development of regulations implementing the Cyber Incident Reporting for Critical Infrastructure Act of 2022. CIRCIA, which was signed into […]
‘Punishing the victims’: Would banning ransom payments stop hospital cyberattacks?
In its The State of Ransomware in the U.S. report for 2023, Emsisoft opined that the only solution to the ransomware crisis is to completely ban ransomware payments. That recommendation has generated some discussion, and now Becker’s has also reached out to health system CISOs to get their reaction to the recommendation. The majority’s opinion […]