March 19, 2024 at 10:02AM The evolving cybersecurity landscape is reshaping the responsibilities of CISOs. To adapt, they must meticulously create and document security protocols. Based on the meeting notes, it’s clear that the evolving cybersecurity landscape is impacting the role of the Chief Information Security Officer (CISO). The emphasis was put on the need … Read more
March 18, 2024 at 10:01AM Fujitsu, world’s 6th largest IT services provider, disclosed a major cybersecurity incident, revealing malware infection and customer data theft. The tech giant operates in 100+ countries, with strong ties to the Japanese government. Though no customer data misuse is reported, Fujitsu is investigating the breach and preparing individual notices for … Read more
March 15, 2024 at 05:14PM The new GhostRace exploit, similar to Spectre, allows attackers to access sensitive information from system memory and perform malicious actions. Based on the meeting notes, it seems that the discussion was about the new GhostRace exploit, which, similar to Spectre, poses a threat by allowing attackers to access sensitive information … Read more
March 15, 2024 at 04:45PM Cybersecurity vulnerabilities in Ireland and Scotland highlight the precarious nature of protecting sensitive private healthcare data. From the meeting notes, it appears that there are concerns about vulnerabilities in cyber protections for sensitive private healthcare data in Ireland and Scotland, specifically referencing “whoopsies.” This suggests a potential fragility or uncertainty … Read more
March 13, 2024 at 04:59PM MarineMax disclosed a “cybersecurity incident” to the SEC, reporting a third-party’s unauthorized access to its information systems. Despite the disruption, the company stated the incident had not materially impacted its operations, with no sensitive data compromised. The investigation is ongoing, and law enforcement has been notified. The company filed a … Read more
March 13, 2024 at 08:33AM Stanford University notified 27,000 individuals of a ransomware attack on its Department of Public Safety. The attack, discovered in September 2023, occurred in May, and the Akira ransomware group claimed responsibility for stealing personal information. Stanford is providing identity theft protection services and has no evidence of misuse of the … Read more
March 5, 2024 at 06:45AM Group-IB findings show over 225,000 compromised OpenAI ChatGPT credentials up for sale on underground markets. The credentials were linked to LummaC2, Raccoon, and RedLine malware, with a 36% increase in infiltrated hosts between June and October 2023. Nation-state actors are using AI and large language models for cyber attacks, posing … Read more
March 4, 2024 at 05:25PM American Express notified customers of a breach involving a third-party service provider. The company’s own systems were not compromised, but credit card information such as account numbers and names are at risk. Potentially affected users are advised to monitor their accounts for fraudulent activity and enable notifications on the American … Read more
March 1, 2024 at 03:39PM Taiwan’s Defense Ministry urges Chunghwa Telecom to enhance cybersecurity after a data breach compromised government-related information. Hackers, allegedly linked to the Chinese government, stole 1.7TB of data, including documents from various government units, and offered it for sale on the Dark Web. The Defense Ministry confirmed the breach and instructed … Read more
March 1, 2024 at 12:35AM NTT West president, Masaaki Moribayashi, announced his resignation effective end of March, following the leak of data of 9.28 million customers. He expressed the importance of social responsibility and took the blame for the incident at a widely reported press conference. The company apologized, revealed investigation results, and outlined measures … Read more