June 28, 2024 at 02:14PM IMS, a multinational corporation specializing in business consulting and IT services, experienced a LockBit ransomware attack in November 2023, compromising sensitive data of over 6 million individuals. The impacted data includes personal and financial information, prompting IMS to offer identity protection and credit monitoring services. The incident affected organizations such … Read more
June 28, 2024 at 07:12AM Hundreds of thousands of individuals were informed by Ann & Robert H. Lurie Children’s Hospital of Chicago that their personal and health information was compromised in a ransomware attack. Cybercriminals accessed the hospital’s systems between January 26 and 31, 2024, stealing a wide range of sensitive data. The hospital refused … Read more
June 27, 2024 at 10:04AM Healthcare revenue cycle management services provider Designed Receivable Solutions (DRS) reported an increase in the number of individuals affected by a recent data breach to 585,000. The compromised information includes sensitive personal and health data. DRS is notifying individuals and offering identity protection services at no cost for 12 months. … Read more
June 27, 2024 at 10:03AM Summary: The commentary emphasizes the importance of secure social norms in cybersecurity. It highlights the need for individuals, including security professionals, to adopt secure behaviors to reduce the risk of breaches. It explains steps for establishing secure social norms, such as educating people on protecting personal identifiable information and promoting … Read more
June 24, 2024 at 11:28AM LivaNova USA is notifying 130,000 individuals of a data breach compromising personal information. In October 2023, hackers gained unauthorized access to the network, with the incident identified in November. The LockBit ransomware gang claimed responsibility in December, stealing 2.2 terabytes of data. LivaNova is offering affected individuals two years of … Read more
June 20, 2024 at 08:32AM Semperis, an enterprise identity protection company based in New Jersey, has secured a $120 million growth financing round from JP Morgan and Hercules Capital. The company added three new executives to its C-suite, each with cybersecurity IPO and public company experience. This round brings their total funding to $373 million. … Read more
June 19, 2024 at 03:50PM Advance Auto Parts confirmed a data breach as a threat actor attempted to sell stolen data on a hacking forum. The breach affected personal information of current and former employees, job applicants, and possibly customers. The company will provide breach notifications, identity restoration services, and has incurred $3 million in … Read more
June 14, 2024 at 10:27AM Ascension disclosed a ransomware attack compromising the personal and health information of unknown patients. The incident disrupted their electronic health record system, leading to patient diversions and an ongoing investigation. The attack exfiltrated files from seven servers, potentially containing PHI and PII. Ascension is offering free credit monitoring and identity … Read more
June 14, 2024 at 03:00AM AWS made several security announcements at its re:Inforce conference, including new features for identity and malware protection services. These include support for passkeys as part of multi-factor authentication, IAM Access Analyzer enhancements, Amazon GuardDuty Malware Protection for S3, and a preview of natural language query generation in AWS CloudTrail Lake. … Read more
May 29, 2024 at 11:48AM Okta warns of ongoing credential stuffing attacks targeting Customer Identity Cloud (CIC) cross-origin authentication feature since April. The company has identified affected endpoints and advised customers to review logs for specific events, rotate compromised user credentials, and implement passwordless, phishing-resistant authentication. Okta is offering further support through its Customer Support … Read more