February 1, 2024 at 12:19PM The Biden administration strongly opposes Senate Joint Resolution 50 and House Joint Resolution 100 that seek to nullify the SEC’s strict data breach reporting rule. The administration argues that the SEC rule is vital for transparency and incentivizing corporate investment in cybersecurity. However, there is disagreement among lawmakers regarding the … Read more
February 1, 2024 at 09:18AM Ransomware gang LockBit has targeted a Chicago children’s hospital, breaking its policy of not attacking nonprofits. The criminals demand an $800,000 ransom, showing disregard for the hospital’s financial situation. Patient data was copied, and the hospital is working with authorities to manage the breach. Cybersecurity experts highlight the evolving nature … Read more
January 31, 2024 at 07:42AM The US Treasury Department imposed sanctions on two Egyptian cybersecurity experts accused of running a platform affiliated with the Islamic State group, offering cyber training and support for evading law enforcement and using cryptocurrencies. The individuals, Mu’min Al-Mawji Mahmud Salim and Sarah Jamal Muhammad Al-Sayyid, are wanted by the FBI … Read more
January 30, 2024 at 05:44PM Schneider Electric’s Sustainability Business division fell victim to the “Cactus” ransomware. The cyberattack affected the Resource Advisor platform, prompting the company to inform affected customers. Although the breach was confined to this division, potential data leak repercussions exist. Operating to restore normalcy by Jan. 31, the company primarily serves Fortune … Read more
January 30, 2024 at 05:02PM Cohesity’s research reveals the prevalence of cyberattacks, leading companies to break ‘do not pay’ policies due to data recovery deficiencies. The study of 900+ IT and Security decision-makers shows a grim outlook for cyberattacks, with 79% being victims of ransomware. Companies require over 24 hours for data recovery, leading to … Read more
January 30, 2024 at 11:28AM The Akira ransomware group is targeting small to medium-sized businesses (SMBs), with ransom demands ranging from $200,000 to over $4 million. SMBs are attractive targets for cybercriminals due to their limited resources and as entry points to larger enterprises. The average cost to recover from a data breach for SMBs … Read more
January 30, 2024 at 07:30AM Keenan & Associates has notified over 1.5 million individuals of a cyberattack in August 2023 that led to unauthorized access to personal information. Data including names, dates of birth, Social Security numbers, and health information was exfiltrated. The company is providing identity protection services and encouraging vigilance against identity theft … Read more
January 30, 2024 at 04:30AM Threat hunters have discovered a new campaign delivering the ZLoader malware, reappearing with significant changes after being dismantled in April 2022. The latest variant includes RSA encryption, updated domain generation algorithm, and is now compiled for 64-bit Windows. Its return poses a potential threat for new ransomware attacks, prompting increased … Read more
January 29, 2024 at 09:57AM KCATA, a major public transit agency, fell victim to a ransomware attack impacting its communication systems, rendering call centers inoperable. Despite this, regular bus services continue. KCATA is working with cyber professionals to restore systems. Medusa ransomware claimed responsibility and demanded a $2 million ransom, with a daily extension option … Read more
January 27, 2024 at 12:19PM Governments imposed sanctions on ransomware operators this week. Australian, US, and UK governments sanctioned Aleksandr Ermakov for the 2022 Medibank hack with REvil. US sentenced Vladimir Dunaev to prison for TrickBot malware involvement. Multiple ransomware attacks and new variants were also reported this week, impacting various industries. Security researchers uncovered … Read more