November 4, 2023 at 12:30PM
SecurityWeek’s weekly cybersecurity roundup highlights several significant developments. Stanford University suffered a ransomware attack, resulting in 430 GB of data being stolen. The MOVEit hack compromised around 632,000 email addresses from the US Justice and Defense Departments. The Henry Schein cyberattack was claimed by the BlackCat ransomware group. A link shortening service called Prolific Puma was discovered facilitating malicious activities. Two Russians were charged over a hacking scheme at JFK airport. New York City launched a vulnerability disclosure program, and 40 countries pledged not to pay ransom to cybercriminals. The FTC will require non-banking financial institutions to report data breaches. Mandiant and Google Cloud released the Threat Horizons Report, focusing on the healthcare industry. The UK provided guidance on post-quantum cryptography, and CISA requested public comment on a software identification ecosystem paper. Oracle enabled multi-factor authentication by default in Oracle Cloud.
From the meeting notes, here are the key takeaways for this week:
1. Stanford University suffered a ransomware attack, with the breach primarily affecting its Department of Public Safety.
2. The MOVEit hack compromised approximately 632,000 email addresses associated with the US Justice Department and Defense Department. The attack is believed to have impacted numerous organizations and millions of individuals.
3. The BlackCat/Alphv ransomware group claimed responsibility for attacking healthcare solutions giant Henry Schein, encrypting files and stealing sensitive data.
4. A link shortening service called Prolific Puma has been discovered to facilitate malicious activities without detection for 18 months.
5. Two Russians have been charged in connection with hacking the taxi dispatch system at John F. Kennedy International Airport. The two individuals remain at large.
6. New York City has launched a vulnerability disclosure program to enhance the resilience of its systems against cyberattacks.
7. An alliance of 40 countries, led by the United States, has pledged not to pay ransoms to cybercriminals as part of an anti-ransomware initiative.
8. The FTC has announced an amendment that requires non-banking financial institutions to report data breaches affecting 500 or more people.
9. Mandiant and Google Cloud have released the 2023 Threat Horizons Report focusing on cybersecurity in the healthcare industry.
10. The UK’s National Cyber Security Centre has published guidance on how organizations can prepare for the migration to post-quantum cryptography.
11. The US cybersecurity agency CISA is seeking public comment on a Software Identification Ecosystem Option Analysis paper until December 11, 2023.
12. Oracle Cloud Infrastructure (OCI) has enabled multi-factor authentication (MFA) by default to enhance security.
These are the main stories from this week’s meeting notes.