#IncidentResponsePlan

Five Eyes tell critical infra orgs: take these actions now to protect against China’s Volt Typhoon

by

March 20, 2024 at 06:21AM The US government and international partners issued another warning about China’s Volt Typhoon cyber gang targeting critical infrastructure, advising protection measures. They emphasized guidance for non-technical senior leaders, urged cybersecurity best practices, and highlighted the importance of incident response plans and securing the supply chain. The advisory reiterated the gang’s … Read more

Ex-Uber CISO Advocates ‘Personal Incident Response Plan’ for Security Execs

by

December 12, 2023 at 09:28AM Former Uber CISO Joe Sullivan disclosed details of the 2016 data breach at Black Hat Europe, reflecting on his firing and legal issues. The breach compromised 57 million accounts, and a $100,000 payment to attackers was considered a bug bounty. Sullivan emphasizes the importance of personal protections for security professionals … Read more

ALPHV/BlackCat Take Extortion Public

by

November 17, 2023 at 01:35PM ALPHV/BlackCat ransomware gang has changed their tactics by filing a complaint with the SEC against their victim, MeridianLink, for not disclosing a breach within the required timeframe. This is an attempt to pressure MeridianLink to pay the ransom sooner. Businesses should consider having an incident response plan, deciding on paying … Read more