On June 27, TeamViewer issued a statement stating that it had detected an irregularity in its internal corporate environment. The statement emphasized that the internal corporate environment is completely independent from its product environment. An update issued on June 28 stated that current findings pointed to an attack tied to the credentials of a standard […]
In late January, Lurie Children’s Hospital took its phones, email, electronic health records system, and patient portal offline to deal with a ransomware attack. As a result, some patient care was disrupted or delayed. The hospital would not meet the threat actor’s demands for more than $3 million, and it wasn’t until a month later […]
Yet another ransomware group is causing major damage and headaches. Bleeping Computer has a helpful write-up on Brain Cipher. It begins: The new Brain Cipher ransomware operation has begun targeting organizations worldwide, gaining media attention for a recent attack on Indonesia’s temporary National Data Center. Indonesia is building out National Data Centers to securely store […]
Occasionally, a business giant with the funds to fight the government will challenge a federal agency’s enforcement action. This time, it is MGM taking on the FTC. Law.com reports: The Federal Trade Commission this week defended its investigation of MGM Resort International’s data security practices as the Las Vegas-based casino is seeking a court order […]
Once again, threat actors are jumping to exploit a newly identified vulnerability in Progress MOVEit Transfer software. As Bleeping Computer reports, exploit attempts were noted less than 24 hours after the vendor disclosed the vulnerability. The new security issue received the identifier CVE-2024-5806 and allows attackers to bypass the authentication process in the Secure File Transfer Protocol […]
No matter how many warnings are issued and how many times employees may be trained to avoid phishing attacks, some will fall for it. But 25 departments of a county government? Was this a failure of training or are the phishing attacks getting harder to detect because of the use of AI to compose the […]
GB Hackers on Security notes a listing on Breach Forums that claims to be leaking data from former and current employees of Accenture. The listing, by a user calling themself “@888” states: In June 2024, Accenture suffered a data breach from a third party that exposed 32,826 employees/former employees. Breached by @888 The Compromised Data […]
Data Breach Review – What is It, Who Does It, and What to Watch Out For As noted in the Overview of this series, if an investigation into a breach indicates that personally identifiable information (PII) or protected health information (PHI) was involved, a data breach review is required. The Data Breach Times turned to […]
A series of articles on the processes involved in responding to a data breach. Overview By now, most business owners know that it is not a question of whether, but rather, when, your business will suffer a data breach. Depending on what laws apply to your business, you may only have a matter of days […]
The devastating impact of data breaches on brand reputation
Hariom Seth, the founder of Tagglabs, writes: Any company handling data is susceptible to data breaches. IBM in 2023 conducted a study of 553 companies on the cost of data breaches, according to which a majority of organisations within the study had at least 1 major data breach in the past year. Healthcare was the […]