November 20, 2024 at 01:16PM On November 17, hackers claimed to breach Ford’s customer records, allegedly stealing 44,000 entries. However, the data consisted mainly of public car dealer addresses, not sensitive customer information. Ford’s investigation found no breach of its systems, attributing the data leak to a third-party supplier. **Meeting Takeaways – Breach Incident Overview … Read more
November 20, 2024 at 04:52AM Ford’s investigation into alleged customer data theft by hackers revealed no breach of its systems. The claimed 44,000 records, primarily public dealer addresses, originated from a third-party supplier. Ford confirmed the issue is resolved, stating the information leaked was not sensitive and belonged to publicly available business addresses. ### Meeting … Read more
November 19, 2024 at 09:42AM SailPoint is hosting a webinar on December 3rd at 11 AM ET, focusing on managing third-party risks to enhance security and compliance. Key topics include identifying vulnerabilities, effective access controls, and fostering a culture of compliance. Attendees will receive actionable insights to improve defenses against external threats. ### Meeting Takeaways … Read more
November 14, 2024 at 05:57AM A travel company faced GDPR violations due to a misconfigured TikTok pixel that sent user data without consent. Cybersecurity firm Reflectiz detected the issue, preventing potential fines and reputational damage. The case highlights the importance of proper data monitoring and compliance to avoid costly breaches in the digital landscape. ### … Read more
November 12, 2024 at 05:37PM Amazon confirmed employee data was exposed due to the MOVEit vulnerability, affecting a third-party vendor. While files were accessed, Amazon stated its systems remain secure. The incident highlights supply chain vulnerabilities, impacting over 2,700 organizations. Analysts consider this breach one of the largest corporate information leaks last year. **Meeting Summary … Read more
November 12, 2024 at 10:14AM Join the webinar on December 3rd at 11 AM ET with Steve Toole from SailPoint, discussing risks of third-party access to systems and data. Learn about identifying risks, mitigation strategies, and fostering a security-first culture. Ideal for IT managers and security professionals. Register to enhance third-party risk management practices. **Meeting … Read more
November 7, 2024 at 01:28PM Nokia’s investigation into a data breach found that leaked source code originates from a third-party vendor, with no company or customer data affected. The breach occurred via a poorly secured server, and Nokia assures that their systems remain safe while they continue monitoring the situation. ### Meeting Takeaways: 1. **Data … Read more
November 6, 2024 at 02:04PM Nokia is investigating a potential cyberattack by the group IntelBroker, which claims to have stolen internal data. So far, Nokia reports no evidence of system breaches. The incident highlights risks from third-party contractors accessing sensitive data. Experts suggest enhancing identity management to prevent similar breaches in the future. ### Meeting … Read more
October 25, 2024 at 09:06AM Renewable energy companies are less prepared for cybersecurity threats compared to traditional energy firms. A study revealed their median score as 85, below the oil and gas industry’s 94. The increased internet connectivity of renewable systems exposes them to risks, especially from third-party breaches, raising concerns for future cybersecurity defenses. … Read more
October 8, 2024 at 02:17PM CrowdStrike’s software update caused 8 million Windows devices to go offline, impacting hospitals, airlines, payment platforms, and emergency services. The issue stemmed from poor patch management and violated risk management policies. Experts recommend staged rollout of patches and diversifying operating systems to mitigate vulnerabilities, and note potential implications for cyber … Read more