BACKGROUND: Following the news that the SEC has fined UK education publishing company, Pearson, $1 million downplaying the severity of a 2018 cyber-attack, please see comment below from Industry experts.
ISBuzz Team
BACKGROUND: T-Mobile confirmed Sunday that it is looking into an online forum post claiming to be selling personal data of 100,000mm customers. If you are planning to provide continuing coverage for this story, here are comments from several of our experts.
Check Point Research (CPR) warns governments everywhere of the importance of protecting critical infrastructure, as it learns that the July 9 cyber attack on Iran’s train system was carried out by Indra, a group that identifies itself as regime opposition and has the capability to wipe out data without direct means for recovery. CPR analyzed artifacts left by the July 9 cyber attack on Iran’s train system, attributing the attacks to a group that self-identifies as IndraCPR confirms that Indra was also responsible for cyber attacks against multiple companies in Syria in 2019 and 2020CPR cites cyber attack on Iran’s…
Seven in ten RDDoS victims have been targeted multiple times in the last year, compared with 57% of ransomware targets London, UK – August 12, 2021 – Over two-fifths (44%) of organisations have been the target or victim of a ransom-related distributed denial of service (RDDoS) attack in the last 12 months, according to new research from the Neustar International Security Council (NISC). During the same period, fewer organisations (41%) reported being on the receiving end of a ransomware attack. Of the organisations hit by RDDoS in the last year, 70% said they had been targeted multiple times, with 36% opting to pay…
Recently it was reported that a new single-click button will mean workers can report dodgy emails directly to the National Cyber Security Centre (NCSC), in a bid to clamp down on cybercrime. Cybercrime has cost organisations more than £5m in the past 13 months. Among the most common types of phishing seen are employees being tricked into downloading malware that looks like it comes from IT support, clone login pages stealing personal details, and emails containing fake alerts from common workplace software.
BACKGROUND: VX underground is claiming that Accenture has been attacked by the Lockbit ransomware group, having left sensitive data exposed, and that Lockbit intends to leak the data. Further, cybersecurity researchers with Hudson Rock have disclosed findings of compromised Accenture and partner computers.
BACKGROUND: A ransomware attack on one of southeast Georgia’s largest healthcare systems exposed both staff and patients’ protected health information (PHI.) The Georgia-based healthcare system, St. Joseph’s/Candler (SJ/C), has 116 service locations across the state.
BACKGROUND: The BBC are reporting that hackers steal $600m in major cryptocurrency heist Blockchain site Poly Network said hackers had exploited a vulnerability in its system and taken thousands of digital tokens such as Ether. In a letter posted on Twitter, it urged the thieves to “establish communication and return the hacked assets”. In scale, the hack is on par with huge recent breaches at exchanges such as Coincheck and Mt Gox. In its letter Poly Network said: “The amount of money you have hacked is one of the biggest in defi [decentralised finance] history. “Law enforcement in any country…
BACKGROUND: It has been reported that Renaissance Life & Health Insurance Company of America (“Renaissance”) is providing notice of an incident experienced by its third-party vendor, Secure Administrative Solutions LLC (“SAS”), which may impact the privacy of certain individuals’ protected health information. On June 1, 2021, SAS reported that the incident resulted in exfiltration of certain protected health information related to SAS’ clients. Upon receiving this report, Renaissance immediately worked with SAS and others to confirm the nature and scope of the data at issue, including whether and how it related to Renaissance policyholders.
BACKGROUND: It has been reported that EE customers are being warned to be on the lookout for a convincing new scam that’s trying to steal login credentials and banking details. The new threat arrives in the form of a very convincing email that claims that a payment issue has occurred and disconnection from the network will follow unless the user authenticates their account. It seems this shock scam is growing at a rapid pace with a number of customers reporting that they received the email during the past few days.