Disruptions at Many Car Dealerships Continue as CDK Hack Worsens

June 21, 2024 at 05:33AM CDK Global, a software provider for US car dealerships, faced a cyber incident, leading to substantial disruptions. With over 15,000 dealers affected, operations were halted, and some resorted to pen and paper. Initially working on restoring systems post-hack, CDK subsequently encountered another cyber incident, intensifying disruptions. Expectations suggest the systems … Read more

US, Allies Publish Guidance on Securing Network Access

June 19, 2024 at 08:39AM US, New Zealand, and Canada government agencies release guidance for organizations to adopt modern security solutions like Secure Service Edge (SSE) and Secure Access Service Edge (SASE) to enhance network access security. The document advises transitioning beyond VPNs due to recent cyber incidents and advocates for approaches aligned with zero … Read more

Scathing report on Medibank cyberattack highlights unenforced MFA

June 18, 2024 at 01:32PM Australia’s Information Commissioner’s report identified operational failures that allowed a breach of Medibank’s network, exposing data from 9.7 million individuals. A contractor’s compromised credentials were exploited, granting unauthorized access. The breach involved a ransomware gang and a sanctioned Russian national. The report highlights the importance of implementing multi-factor authentication to … Read more

Blackbaud has to cough up a few million dollars more over 2020 ransomware attack

June 17, 2024 at 01:50PM Cloud software company Blackbaud has agreed to settle with California’s attorney general, paying a $6.75 million fine for its cybersecurity failings after a 2020 ransomware attack. The settlement aims to improve data protection and security measures. This follows a previous settlement with 49 other state AGs and the District of … Read more

Hackers use F5 BIG-IP malware to stealthily steal data for years

June 17, 2024 at 01:41PM The group Velvet Ant, believed to be Chinese cyberespionage actors, deployed custom malware on F5 BIG-IP appliances to establish persistent connections and steal data from a company undetected for nearly three years. Sygnia discovered the intrusion, outlining the attack methods and re-infection chain. They also provided defense recommendations to counter … Read more

Asset Management Holds the Key to Enterprise Defense

June 13, 2024 at 08:26AM Security professionals emphasize the importance of comprehensive asset management to maintain organizational security. Challenges in obtaining accurate asset inventory have increased due to the complexity and scale of modern networks. Experts stress the need for efforts to identify and manage business-technology assets effectively, as poor visibility can lead to security … Read more

White House report dishes deets on all 11 major government breaches from 2023

June 12, 2024 at 12:19PM The White House report revealed that cybersecurity incidents reported by US federal agencies increased by 9.9% to 32,211 in 2023. Improper usage and phishing were the most common incidents. Despite the rise in attacks, none were classified as “high” impact. The report also detailed major incidents at various agencies, including … Read more

DNSFilter Welcomes Cisco Veteran TK Keanini As CTO

June 11, 2024 at 05:39PM DNSFilter announced the appointment of TK Keanini as Chief Technology Officer (CTO). Keanini, with over 30 years of network security experience, will lead product management, customer experience, engineering, and security intelligence. His focus is on customer needs and feedback to drive ongoing innovation and growth. DNSFilter aims to enhance security … Read more

Top 10 Critical Pentest Findings 2024: What You Need to Know

June 11, 2024 at 07:48AM Vonahi Security’s vPenTest platform released an annual report on the top 10 critical pentest findings in 2024, following the analysis of over 10,000 network pentests at 1,200 organizations. The report covers various vulnerabilities, such as MDNS and NBNS Spoofing, and provides recommendations for prevention. vPenTest offers automated network penetration testing, … Read more

Netgear WNR614 flaws allow device takeover, no fix available

June 10, 2024 at 05:39PM Researchers at RedFox Security discovered six vulnerabilities in the popular but unsupported Netgear WNR614 N300 router. The vulnerabilities include authentication bypass, weak password policy, plain text password storage, and WPS PIN exposure. With no security updates expected, users are advised to apply mitigations or replace the device with a supported … Read more