June 20, 2024 at 05:56PM Consulting Radiologists recently suffered a cyberattack in which unauthorized parties accessed personal and medical information for 512,000 patients. The breached data included names, addresses, social security numbers, and medical records. The company is providing affected individuals with free credit monitoring and has employed cybersecurity assistance as part of its incident … Read more
June 20, 2024 at 11:54AM Symantec reports that telecommunications companies in an unnamed Asian country have been targeted by Chinese espionage groups since at least 2021. The campaign included the use of custom backdoors such as Coolclient, Quickheal, and Rainyday, associated with known Chinese state-sponsored threat actors. The motive and collaboration among the threat actors … Read more
May 22, 2024 at 03:38PM The New York Stock Exchange’s parent company, Intercontinental Exchange (ICE), was fined $10 million by the SEC for failing to immediately report a cyber intrusion in 2021. The SEC alleges ICE and its subsidiaries violated Regulation Systems Compliance and Integrity (Regulation SCI) reporting rules. The settlement includes no admission of … Read more
April 25, 2024 at 05:11PM Cyber threats to elections are increasingly complex, with attackers combining tactics like DDoS attacks, fake news, and leaks. Mandiant’s report highlights how these combined attacks can magnify each other’s impact. Chained cyberattacks have disrupted elections in Ukraine and targeted US states’ voting-related websites. Not only state-sponsored actors, but also insiders, … Read more
April 3, 2024 at 09:18AM A review board appointed by the Biden administration heavily criticized Microsoft’s corporate security and transparency. The report highlighted a cascade of errors that allowed state-backed Chinese cyber operators to breach email accounts of senior U.S. officials. The board urged substantial security improvements and a cultural change at Microsoft to prevent … Read more
March 4, 2024 at 03:07PM North Korean government spies have conducted digital intrusions into chipmakers, stealing product designs to promote their domestic semiconductor industry. The South Korean National Intelligence Service (NIS) warned of ongoing cyber espionage, suspecting North Korea’s preparation for semiconductor production due to procurement difficulties. The NIS has notified victim companies and is … Read more
February 7, 2024 at 03:39AM The commercial spyware economy is thriving despite government and big tech crackdowns. Google’s Threat Analysis Group discovered numerous smaller surveillance vendors in addition to major players like NSO Group and Intellexa. Western governments are taking steps to curb the $12-billion-a-year industry, but the spyware business continues to grow. The lack … Read more
January 24, 2024 at 06:07AM Microsoft revealed a second breach by Russian cyber spies, Cozy Bear, who stole emails and files from the tech giant’s leadership and security teams. The company is uncertain about the breach’s financial impact but has faced similar incidents before. Concerns about Microsoft’s security practices were raised by a US Senator, … Read more
December 18, 2023 at 02:47PM VF Corp experienced a cyber intrusion, disrupting operations and order fulfillment for its major brands, including The North Face and Vans. While stores remain open and orders are accepted, fulfillment is impacted. The incident, possibly ransomware, prompted immediate containment and remediation efforts. Similar cyberattacks affected Clorox and MGM Resorts, resulting … Read more
December 18, 2023 at 08:45AM Mr. Cooper has reported a data breach incident, affecting 14.7 million customers. The breach, discovered on November 1, 2023, exposed personal information, including names, addresses, phone numbers, SSNs, birth dates, and bank account numbers. The company took immediate action to mitigate the incident and is offering identity protection services to … Read more