U.S. org suffered four month intrusion by Chinese hackers

December 5, 2024 at 05:20PM A major U.S. organization with a strong presence in China experienced a data breach by China-based threat actors, who infiltrated its networks and maintained access from April to August 2024. **Meeting Notes Takeaways:** 1. **Incident Overview**: A large U.S. organization with a strong presence in China has experienced a security … Read more

British hospitals hit by cyberattacks still battling to get systems back online

December 5, 2024 at 07:31AM NHS trusts in Wirral and Liverpool are recovering from separate cyberattacks. NHS Wirral downgraded its incident status; systems are still being restored, causing longer wait times. Alder Hey Children’s Hospital confirmed a data breach, with attackers posting personal information online, while investigations are ongoing. Ransom payments are not anticipated. **Meeting … Read more

Chemonics International Data Breach Impacts 260,000 Individuals

December 5, 2024 at 07:01AM Chemonics International has notified over 260,000 individuals about a data breach compromising personal information, including names, addresses, and Social Security numbers. Discovered on December 15, 2023, investigators found attackers had accessed data from May 2023 to January 2024. Chemonics is offering 24 months of free identity protection services. ### Meeting … Read more

BT Group confirms attackers tried to break into Conferencing division

December 5, 2024 at 06:17AM BT Group confirmed an attempted attack by the Black Basta ransomware group on its BT Conferencing unit. The incident affected specific platform elements, which were quickly isolated, with no impact on live services. Black Basta claims to have stolen around 500 GB of outdated data, prompting an ongoing investigation. ### … Read more

BT Investigating Hack After Ransomware Group Claims Theft of Sensitive Data

December 5, 2024 at 05:55AM BT is investigating a ransomware attack by the Black Basta group, which claims to have stolen 500 GB of sensitive data. The group threatens to leak the data unless a ransom is paid. BT affirmed that only specific elements of its Conferencing platform were affected, and services remain operational. ### … Read more

Navigating the Changing Landscape of Cybersecurity Regulations

December 4, 2024 at 10:06AM In 2024, cybersecurity regulations evolved significantly worldwide, with new rules targeting advanced threats. Businesses are increasing budgets and integrating cybersecurity into core strategies. The legal landscape is also changing, requiring proactive compliance. Public-private partnerships enhance information sharing, while organizations must continuously adapt to emerging risks to secure their digital futures. … Read more

Vendors Unveil New Cloud Security Products, Features at AWS re:Invent 2024

December 3, 2024 at 09:06AM At AWS re:Invent 2024, new cloud security products were announced including AWS’s incident response service and enhanced threat detection for Amazon GuardDuty using AI. Wiz launched Wiz Defend for real-time threat detection, while Sweet Security introduced a unified platform. Skyhawk Security announced interactive detection capabilities for suspicious activities. ### Meeting … Read more

AWS Launches New Incident Response Service

December 3, 2024 at 06:55AM Amazon Web Services (AWS) launched a new incident response service that aids security teams in faster threat response and recovery using machine learning. It automates triage and analysis of security signals, offers preconfigured notifications, and allows collaboration with third-party vendors. The service is available in 12 AWS regions globally. ### … Read more

Energy Sector Contractor ENGlobal Targeted in Ransomware Attack

December 3, 2024 at 06:35AM ENGlobal Corporation has reported that its operations were impacted by a ransomware attack discovered on November 25. The company is investigating the incident while restricting IT system access, allowing only essential operations. Recovery efforts are ongoing, but they have not determined the financial impact or confirmed any data theft. ### … Read more

AWS unveils cloud security IR service for a mere $7K a month

December 2, 2024 at 08:36PM Amazon Web Services (AWS) has launched a new incident response service, combining automation and human intervention, with a starting price of $7,000 per month. The service offers 24/7 support, threat analysis, and centralized tools for managing security incidents, available in 12 global regions. Pricing increases with AWS spending tiers. ### … Read more