October 24, 2024 at 01:17AM Hong Kong’s government has revised infosec guidelines, banning the use of Chinese app WeChat, along with Meta and Google products, on official computers due to concerns over security risks associated with encryption. The restrictions take effect at the end of October, with some exceptions allowed through departmental approval. ### Meeting … Read more
October 22, 2024 at 01:13PM The SEC has imposed penalties on Unisys, Avaya, Check Point, and Mimecast for minimizing the consequences of the SolarWinds Orion hack in their disclosures. This action highlights the importance of transparency in reporting cybersecurity incidents. **Meeting Takeaways:** 1. **SEC Penalties Announced**: The Securities and Exchange Commission (SEC) has imposed penalties … Read more
October 21, 2024 at 05:08PM Cisco has disabled public access to its DevHub after threat actors stole and listed sensitive customer data for sale, including source code and credentials from major companies. Investigations revealed no personal data was compromised, but the incident highlights the importance of securing public-facing environments against potential vulnerabilities. ### Meeting Takeaways: … Read more
October 21, 2024 at 09:16AM ESET is investigating a situation where a product distributor in Israel sent emails containing wiper malware. This incident involved the abuse of the distributor’s systems. The details are reported in a post by SecurityWeek. ### Meeting Notes Takeaways: 1. **Investigation Initiated**: ESET has launched an investigation regarding a security incident … Read more
October 21, 2024 at 08:11AM Cisco confirmed a security incident involving stolen files from its DevHub environment after a hacker attempted to sell the information. The company is addressing the situation following the breach. **Meeting Notes Summary:** 1. **Incident Confirmation**: Cisco has acknowledged that a security breach occurred, resulting in the theft of certain files … Read more
October 21, 2024 at 04:52AM The Internet Archive experienced an email hack while trying to restore services affected by recent cyberattacks. This incident highlights ongoing security challenges faced by the organization during its recovery efforts. **Meeting Notes Summary:** – **Subject:** Internet Archive Incident Update – **Key Takeaways:** – The Internet Archive has experienced an email … Read more
October 18, 2024 at 06:24PM Cisco has taken its public DevHub portal offline due to a leak of “non-public” data by a threat actor. However, the company maintains that there is no evidence of a system breach. Here are the key takeaways from the meeting notes: 1. **DevHub Portal Taken Offline**: Cisco has removed its … Read more
October 18, 2024 at 05:02AM Omni Family Health has announced a data breach that affects nearly 470,000 current and former patients and employees. This incident has raised significant concerns regarding data security. **Meeting Takeaways:** 1. **Incident Overview**: Omni Family Health experienced a data breach. 2. **Impact Scope**: The breach affects approximately 470,000 individuals, including both … Read more
October 16, 2024 at 08:56AM Varsity Brands has reported a data breach affecting over 65,000 individuals. The details of the incident have been disclosed, highlighting the company’s commitment to transparency amidst the security challenge. **Meeting Takeaways:** 1. **Company Involved**: Varsity Brands 2. **Issue Reported**: Data breach 3. **Impact**: More than 65,000 individuals affected 4. **Source … Read more
October 15, 2024 at 09:57AM CISOs Julien Soriano from Box and Chris Peake from Smartsheet share insights on the journey to becoming a successful CISO, their roles, and future trends in cybersecurity leadership. The discussion emphasizes the evolving nature of the CISO position within organizations. **Meeting Takeaways: CISO Conversations featuring Julien Soriano (Box) and Chris … Read more