December 11, 2024 at 05:38PM Krispy Kreme experienced a cybersecurity incident affecting online ordering while retail operations remain unaffected. An SEC filing revealed unauthorized access to its IT systems, prompting ongoing investigations and external expert assistance. The company anticipates material business impact, though losses may be mitigated by cyber insurance. Customer data compromise remains unconfirmed. … Read more
December 11, 2024 at 01:23PM Krispy Kreme confirmed a cyberattack that disrupted operations, including online ordering, referencing a “cybersecurity incident.” The company took immediate steps with cybersecurity experts to investigate and mitigate the impact. The incident, likely a data-extortion ransomware attack, is expected to materially affect business operations until resolved. ### Meeting Takeaways: Krispy Kreme … Read more
November 22, 2024 at 03:44AM The SafePay ransomware gang has attacked UK telematics firm Microlise, demanding payment within 24 hours to prevent data leaks of 1.2 TB stolen. Major clients, including DHL and Serco, suffered service disruptions. Microlise reports most customer systems are back online, denying major data compromises while assessing the incident’s overall impact. … Read more
November 19, 2024 at 07:35AM Maryland AI company iLearningEngines reported a $250,000 loss from a wire transfer fraud linked to a business email compromise scheme. Following the incident, the company activated its cybersecurity response plan and engaged external experts. Despite containing the situation, iLearningEngines faces potential legal scrutiny and adverse impacts on operations and stock … Read more
September 5, 2024 at 06:05AM The Transport for London (TfL) “cyber incident” enters its third day, with suspicions that a popular appliance served as the access point for hackers. TfL, while tight-lipped, denies evidence of customer data compromise. Reports point to a potential breach through a Cisco VPN or Netscaler appliance. TfL’s containment measures hint … Read more
August 2, 2024 at 12:37PM The US State and Local Cybersecurity Grant Program (SLCGP) aims to enhance cybersecurity for public entities. However, by promoting monoculture through standardizing on a single cybersecurity vendor, it may create a perfect storm for major cyber incidents, risking widespread disruption. Instead, promoting diverse layers of defense architecture is crucial to … Read more
July 31, 2024 at 12:34PM Fresnillo PLC, a leading silver and gold producer, reported unauthorized access to its IT systems during a recent cyberattack. The mining giant immediately initiated response measures and confirmed that its operations were unaffected. It is coordinating with IT experts and external specialists to investigate the incident, stating that it takes … Read more
July 19, 2024 at 07:01AM Major outages are reported worldwide, potentially caused by a flawed update from cybersecurity company CrowdStrike. Windows systems experience a Blue Screen of Death due to a recent CrowdStrike Falcon sensor update. Workarounds are being recommended, but the incident is causing problems for airports and other organizations. This incident is causing … Read more
July 12, 2024 at 07:58PM CDK Global faced a ransomware attack leading to a reported $25 million Bitcoin ransom payment. Services were restored to US car dealerships after a two-week outage. The ransom payment was made to the BlackSuit ransomware operators. The financial impact exceeded the ransom and unresolved issues persist. CDK has not provided … Read more
June 30, 2024 at 11:44PM Microsoft has revealed that Russian cybercriminals stole more emails than initially acknowledged, including sensitive US government data. Alongside this, critical vulnerabilities in Johnson Controls IP cameras have been reported. Additionally, a cyber incident at CDK continues to impact US car dealers, and analysis suggests Facebook users are common targets for … Read more