October 8, 2024 at 02:17PM CrowdStrike’s software update caused 8 million Windows devices to go offline, impacting hospitals, airlines, payment platforms, and emergency services. The issue stemmed from poor patch management and violated risk management policies. Experts recommend staged rollout of patches and diversifying operating systems to mitigate vulnerabilities, and note potential implications for cyber … Read more
July 30, 2024 at 09:59AM HealthEquity, a Utah-based HSA provider, experienced a data breach impacting 4.5 million US customers. The breach, attributed to a hack of a third-party data repository, saw the theft of various personally identifiable information. The company took immediate action upon discovery and is now notifying affected parties while enhancing security measures. … Read more
July 24, 2024 at 05:58PM The global supply chain network has increased organizations’ interconnectedness, posing a higher risk of data breaches and security incidents involving third-party vendors. Research shows 98% of organizations have experienced third-party cybersecurity breaches in the past two years. Investments in third-party risk management programs are rising, with a focus on using … Read more
June 21, 2024 at 03:08PM UNC5537, a cybercriminal group, has recently targeted several companies, stealing millions of customer records and demanding large ransoms. An analysis suggests the breaches were due to compromised credentials and poor authentication controls. The incidents highlight the need for stronger security measures, including widespread adoption of multifactor authentication and stricter access … Read more
May 16, 2024 at 05:16PM Santander, a Spanish bank, experienced a data breach from a third-party provider, impacting customers in Chile, Spain, and Uruguay. The bank quickly blocked access to the compromised database and implemented fraud prevention measures. External breaches are becoming a common issue for financial institutions, highlighting the need for proactive risk assessment … Read more
May 15, 2024 at 10:16AM Banco Santander S.A. confirmed a recent data breach impacting customers and employees in Spain, Chile, and Uruguay. The unauthorized access to a third-party hosted database led to the compromise of information for current and some former employees as well as customers. The bank has implemented fraud prevention measures and assured … Read more
May 15, 2024 at 09:00AM Santander bank in Spain disclosed a data breach affecting some customers and employees due to unauthorized access to a third-party database. Santander clarified that the breach only impacted customers in Spain, Chile, and Uruguay, and some former employees. The bank assured customers that their operations and systems are unaffected, and … Read more
April 15, 2024 at 04:06AM Webinar featuring Andy Grayland, CISO at Silobreaker, will address the rising third-party risk in busy supply chains. It focuses on the importance of protecting against cyber threats posed by third-party partners and how to use threat intelligence to identify and mitigate risks. The webinar will be held on 18 April. … Read more
April 10, 2024 at 04:47AM Join Silobreaker’s webinar on April 18th to learn from CISO Andy Grayland about using threat intelligence to minimize third-party security risks. With 29% of incursions originating from third parties, the webinar will provide insights into identifying and mitigating these risks. Sign up and receive a reminder for the webinar. Sponsored … Read more
March 25, 2024 at 10:06AM Most organizations have more agency and flexibility to manage third-party risk than they realize, despite the issue initially appearing overwhelming. Based on the meeting notes, the key takeaway is that organizations have more agency and flexibility to address third-party risk than they realize, despite the issue seeming daunting. Full Article