Bank Info Security reports: Montana state regulators are investigating a data breach affecting 462,000 Blue Cross Blue Shield of Montana members involving one of the health insurer’s third-party services providers – and they want to know why nearly 10 months have gone by without notifying the breach victims. It took nearly four months for the […]
The Record reports: The cyberattack that disrupted production at Jaguar Land Rover (JLR) for more than a month is estimated to have cost the British economy £1.9 billion ($2.5 billion), according to a monitoring group. An analysis by the Cyber Monitoring Centre (CMC), a nonprofit that aims to examine the cost of cyber incidents, said […]
The Sun reports: RUSSIAN cybercriminals have stolen hundreds of military documents and posted them on the dark web in a ‘catastrophic’ hack. The security breach compromised eight RAF and Royal Navy bases as well as emails and names of Ministry of Defence staff, as reported in The Mail on Sunday. The breach has been labelled ‘catastrophic’ and the MoD are investigating the […]
The Daily Beast reports: Four airports across the U.S. and Canada were hacked to display a series of pro-Hamas and anti-Trump messages, causing flights to be delayed. Videos posted by passengers at Harrisburg International Airport in Pennsylvania showed loudspeakers blasting pro-Palestinian messages in Arabic while flight information screens broadcast messages reading “Israel lost the war, […]
The Record reports: The federal government has issued an emergency directive ordering all civilian agencies to update products from F5 after the security company said a nation-state actor had long-term persistent access to source code and information about undisclosed vulnerabilities during a breach discovered in August. The Cybersecurity and Infrastructure Security Agency (CISA) said it “has identified […]
From the New York Attorney General’s Office:
The Register reports: Cyberattacks that meet upper severity thresholds set by the UK government’s cyber agents have risen 50 percent in the last year, despite almost zero change in the volume of cases handled. GCHQ’s cyber arm, the National Cyber Security Centre’s (NCSC), said in its annual review published today that its incident management team handled 429 […]
KrebsOnSecurity.com reports: The world’s largest and most disruptive botnet is now drawing a majority of its firepower from compromised Internet-of-Things (IoT) devices hosted on U.S. Internet providers like AT&T, Comcast and Verizon, new evidence suggests. Experts say the heavy concentration of infected devices at U.S. providers is complicating efforts to limit collateral damage from the botnet’s attacks, which shattered […]
Hunton Andrews Kurth writes: When a cyber incident occurs and the insurer pays out the claim, they often face the frustrating reality that pursuing the actual criminals – the threat actors – for indemnification is virtually impossible. Thus, insurers are now turning to subrogation claims against the very cybersecurity vendors entrusted by policyholders to protect […]
John Bolton Indictment Provides Interesting Details About Hack of His AOL Account and Extortion Attempt
Kim Zetter writes: The investigation into former national security advisor John Bolton’s handling of classified material stemmed in part from an admission Bolton made to the FBI in July 2021 that hackers – believed to be from Iran – had breached his private AOL email account and tried to extort him over classified information contained […]