December 13, 2023 at 08:30AM Zero Networks, a zero trust identity and network security solutions provider, has secured $20 million in a Series B funding round, bringing the total raised to $45 million. US Venture Partners led the investment with contributions from CyberArk, F2 Capital, Pico Venture Partners, Venrock, and angel investors. The Israeli startup … Read more
December 13, 2023 at 05:36AM Ukraine’s largest telecom operator, Kyivstar, was hit by a cyber attack, causing disruptions in mobile and internet services. The attack, linked to the conflict with Russia, led to nationwide impacts. While the company works to restore services, it assured compensation for affected users and warned against potential scams. Meanwhile, pro-Russia … Read more
December 11, 2023 at 03:07PM Norton Healthcare disclosed a ransomware attack resulting in the potential theft of 2.5 million individuals’ sensitive data, including personal and financial information and health records. The not-for-profit healthcare system reported the incident to the FBI and engaged in investigations but did not make any ransom payment. This is amid a … Read more
December 11, 2023 at 12:55PM Cold storage and logistics company Americold suffered a cyberattack in April, resulting in the theft of personal data of 129,000 employees and dependents. The attack, attributed to Cactus ransomware, forced a network shutdown. The breach involved theft of personal information and the group plans to release additional confidential documents. Americold … Read more
December 8, 2023 at 12:20PM Insider threats using privilege escalation flaws are on the rise, with 55% of incidents relying on privilege escalation exploits and 45% introducing risks through downloading risky tools. Crowdstrike reports that insider attacks cost an average of $648,000 for malicious and $485,000 for non-malicious incidents. Additionally, introducing flaws into networks increases … Read more
December 7, 2023 at 05:39PM East River Medical Imaging (ERMI) notified individuals of a data breach after detecting unusual activity in their IT network on September 20. The breach happened between August 31 and September 20, potentially exposing personal and medical information. ERMI is offering credit monitoring and has enhanced cybersecurity in response. Meeting Takeaways: … Read more
December 6, 2023 at 10:48AM The Shadowserver Foundation reports a surge in device hacks linked to new vulnerabilities in Cisco IOS XE. SecurityWeek shared the news in a post titled “Exploitation of Recent Cisco IOS XE Vulnerabilities Spikes.” Here are the clear takeaways from the meeting notes provided: 1. The Shadowserver Foundation has issued a … Read more
December 6, 2023 at 06:54AM Twenty-one security flaws dubbed Sierra:21 affect over 86,000 Sierra Wireless AirLink routers, risking credential theft, device control, and botnet use in sectors like energy and healthcare. Fixes have been released for some components, but TinyXML remains unpatched. The vulnerabilities threaten critical infrastructure with various cyber threats. ### Meeting Takeaways: Cyber … Read more
December 6, 2023 at 02:48AM Forescout discovered 21 vulnerabilities in Sierra Wireless AirLink routers and OpenNDS, TinyXML components, threatening critical infrastructures with attacks like remote code execution and unauthorized access. Notably, over 86,000 exposed routers online are at risk, largely in the U.S. Patching with ALEOS version 4.17.0 and implementing security measures are recommended. Meeting … Read more
December 3, 2023 at 11:36PM New Relic disclosed a two-pronged cyber attack that compromised their staging systems using stolen credentials and affected a small number of customer accounts. They’ve rotated passwords, removed API keys, and updated security measures. Ongoing investigations with external experts aim to enhance their security posture. Meeting Takeaways: 1. Incident Details: New … Read more