Pure Storage pwned, claims data plundered by crims who broke into Snowflake workspace

June 11, 2024 at 02:10PM Pure Storage confirmed a data breach involving a single Snowflake data analytics workspace. No customer data was compromised, but telemetry information such as company names and email addresses was accessed. Security firm Mandiant identified a common factor in the breaches as the lack of Multi-Factor Authentication. Pure Storage stated that … Read more

Ultimate Cyber Hygiene Guide: Learn How to Simplify Your Security Efforts

June 7, 2024 at 12:06PM In 2023, cyberattacks caused substantial damage, but many could have been prevented with basic cyber hygiene. An upcoming webinar, “Better Basics Win the Cybersecurity Threat War: Defend, Deter, and Save,” will cover the latest cybersecurity trends, the power of CIS Controls and Benchmarks, and the benefits of CIS SecureSuite Membership. … Read more

PoC Published for Exploited Check Point VPN Vulnerability

June 3, 2024 at 08:45AM SecurityWeek Network provides cybersecurity news, webcasts, and virtual events. Their content covers various topics including malware, cyberwarfare, data breaches, ransomware, and more. Additionally, they focus on areas such as incident response, risk management, and CISO strategy, as well as industrial cybersecurity and funding/M&A in the cybersecurity industry. It seems like … Read more

Snowflake Data Breach Impacts Ticketmaster, Other Organizations

June 3, 2024 at 07:45AM SecurityWeek Network provides cybersecurity news, webcasts, virtual events, and covers various topics including malware, cyberwarfare, data breaches, fraud, ransomware, vulnerabilities, incident response, and more. It also addresses security in areas such as IoT, cloud, mobile, network, and offers insights on risk management, cyber insurance, and CISO strategy, among other subjects. … Read more

ABN Amro Client Data Possibly Stolen in AddComm Ransomware Attack

May 28, 2024 at 11:12AM ABN Amro reported a ransomware attack on third-party services provider AddComm, potentially compromising client data. AddComm confirmed containment and restoration of systems but couldn’t specify the stolen data. ABN Amro stopped using AddComm’s services and is focusing on informing clients and minimizing the impact of the breach. The bank’s systems … Read more

Windows Quick Assist abused in Black Basta ransomware attacks

May 15, 2024 at 01:10PM Financially-motivated cybercriminals are exploiting the Windows Quick Assist feature for social engineering attacks, deploying Black Basta ransomware on victims’ networks. Microsoft, Rapid7, and other security firms have observed the tactics of the threat group Storm-1811 and advise network defenders to block or uninstall Quick Assist and train employees to recognize … Read more

What to do in the age of the critical breach

April 25, 2024 at 05:19AM In March 2024, the UK government faced criticism for its response to cyber-espionage attacks by group APT31. The National Cyber Security Centre reported inadequate resilience in critical infrastructure. The upcoming webinar by Tim Phillips and Rubrik CISO Richard Cassidy will address cyber security threats and recovery strategies for organizations. Sign … Read more

FBI: Cybercrime Losses Exceeded $12.5 Billion in 2023

March 7, 2024 at 09:34AM The FBI’s IC3 reported a 10% increase in cybercrime complaints in 2023, totaling over 880,000 in the US with $12.5 billion in losses, a 22% rise from 2022. Phishing dominates complaints, with investment fraud and BEC causing the highest losses. Ransomware affected critical sectors, with LockBit and BlackCat being active … Read more

Passwords are Costing Your Organization Money – How to Minimize Those Costs

March 5, 2024 at 10:56AM Passwords are crucial for security but can also incur significant costs. Forgotten passwords and resets affect productivity, costing organizations time and money. Help desk queries and support staff add to expenses. Weak passwords also pose security risks, leading to data breaches and financial implications. Using MFA, SSO, training employees, and … Read more

How to Prioritize Cybersecurity Spending: A Risk-Based Strategy for the Highest ROI

February 29, 2024 at 07:09AM Staying ahead in cybersecurity is crucial for IT leaders in protecting organizations. The text discusses the impact of data breaches, increasing cybersecurity spending, and maximizing cybersecurity resources. It highlights the importance of a risk-based approach, focusing on external attack surfaces, end user credentials, vulnerability remediation, and threat intelligence to optimize … Read more