Data Breach Today

FEBRUARY 26, 2024

National Institute of Standards and Technology in 2014 has received its first major update. New CSF Adds 'Governance' to Core Functions Cybersecurity guidance for the private sector published by the U.S. The revised Cybersecurity Framework focuses on governance and says cybersecurity threats are a major source of enterprise risk.

Cybersecurity 298

Cybersecurity Government Risk IT 298

Data Breach Today

SEPTEMBER 30, 2020

Settlements Tied to 2014 Breach Also Require Insurer to Take Security Steps The attorneys general of 42 states plus Washington, D.C., million settlement in the wake of a 2014 cyberattack that affected nearly 79 million individuals. have slapped health insurer Anthem with a $39.5 million settlement with the insurer.

Insurance 273

Insurance Security 273

Data Breach Today

APRIL 12, 2024

Cyber Command carried out nearly two dozen defensive cyber operations across the globe in 2023, expanding in size and scope since the "hunt forward" teams were first launched in 2014.

288

288

Krebs on Security

SEPTEMBER 29, 2020

On April 6, 2014, some 11 million people across the United States were disconnected from 911 services for eight hours thanks to an “entirely preventable” software error tied to Intrado’s systems. million for the multi-state 2014 outage. 2018 outage that lasted 65 minutes.

Communications 363

Communications Cloud IT Access 363

Data Breach Today

NOVEMBER 30, 2018

Database Intrusion Dates Back to 2014 The Marriott hotel chain has announced its Starwood guest reservation database has been hacked, potentially exposing up to 500 million accounts. The unauthorized access to the database started in 2014, the company says.

Access 237

Access IT 237

Data Breach Today

MAY 21, 2022

First discovered in 2014, XorDDos was named after its denial-of-service-related activities on Linux endpoints and servers and its usage of XOR-based encryption for its communications.

Encryption 282

Encryption Communications Security IT 282

Data Breach Today

APRIL 6, 2022

She starts as BeyondTrust's CEO July 1 and replaces Matt Dircks, who has led the company since 2014.

262

262

Data Breach Today

JULY 23, 2020

Researchers: Recently Uncovered Hacking Group Has Been Operating Since 2014 An hacking group that appears to have ties to the government of China has been targeting victims in India and Hong Kong, according to the security firm Malwarebytes.

Government 240

Government Security 240

Data Breach Today

OCTOBER 1, 2018

Playbook' Prepared; Data Sharing Efforts Planned In its ongoing quest to improve the state of medical device cybersecurity, the FDA has announced a number of key moves - including the release of a security "playbook," plans to leverage information sharing and analysis organizations and an effort to update its 2014 premarket guidance for manufacturers. (..)

Cybersecurity 247

Cybersecurity Manufacturing Security IT 247

Data Breach Today

OCTOBER 8, 2020

Latest Settlement: $5 Million Paid to 27 States A 2014 data breach at Community Health Systems that exposed the protected health information of 6.1 million individuals has led to another round of government penalties.

Data breaches 246

Data breaches Government 246

Krebs on Security

JUNE 10, 2022

The government alleged that between December 2010 and September 2014, the defendants engaged in a conspiracy to identify or pay to identify blocks of Internet Protocol (IP) addresses that were registered to others but which were otherwise inactive. Adconion was acquired in June 2014 by Amobee , a Redwood City, Calif.

Marketing 300

Marketing Government Systems administration Sales 300

Krebs on Security

FEBRUARY 24, 2023

The account didn’t resume posting on the forum until April 2014. Shotliff said he sold his BHProxies account to another Black Hat World forum user from Egypt back in 2014. He also shared a PayPal receipt and snippets of Facebook Messenger logs showing conversations in March 2014 with legendboy2050@yahoo.com. com on Mar.

Passwords 269

Passwords Blockchain Mining Marketing 269

Data Breach Today

SEPTEMBER 25, 2020

The case stems from a 2014 breach, which went undetected for nine months and exposed the information of 10.4 Penalty Is Second Largest Ever Issued Premera Blue Cross has agreed to pay a $6.85 million fine, the second largest HIPAA settlement ever announced by federal regulators. million individuals

222

222

Data Breach Today

JULY 9, 2019

Breach Persisted 4 Years - and Through Acquisition - Before Being Discovered Britain's privacy watchdog says it plans to fine hotel giant Marriott $125 million under GDPR for security failures tied to a 2014 breach of the guest reservation database for Starwood, which Marriott acquired in 2016.

GDPR 209

GDPR Privacy Security IT 209

Data Breach Today

JUNE 3, 2019

In Addition to Settling With Victims, Heath Insurer Would Invest in Security Measures A proposed $74 million settlement of a consolidated class action lawsuit against Premera Blue Cross after a 2014 data breach that affected nearly 11 million individuals includes $32 million for breach victims and also would require the health insurer to invest $42 (..)

Insurance 210

Insurance Data breaches Security 210

Krebs on Security

JULY 9, 2024

Tyler Reguly at Forta noted that today marks the End of Support date for SQL Server 2014 , a platform that according to Shodan still has ~110,000 instances publicly available. All three bugs have been assigned a CVSS score of 9.8 (out out of 10) and indicate that a malicious packet could trigger the vulnerability.

Ransomware 267

Ransomware Access Security IT 267

Data Breach Today

MAY 13, 2019

Security Experts Say Prosecution's Document Offers Critical Cybersecurity Insights The indictment of two Chinese men for a 2014 cyberattack on health insurer Anthem that compromised information on nearly 80 million individuals contains extensive details about the incident that security professionals can use to help with their breach prevention strategies. (..)

Insurance 189

Insurance Cybersecurity Security 189

Krebs on Security

FEBRUARY 7, 2024

In a retrospective post published to Livejournal in 2014 titled, “Mazafaka, from conception to the present day,” Stalker said Djamix had become a core member of the community. Those include several websites about life in and around Sochi , Russia, the site of the 2014 Winter Olympics, as well as a nearby coastal town called Adler.

Military 290

Military IT Communications Risk 290

Krebs on Security

FEBRUARY 4, 2021

For example, one of the most active accounts targeted in this week’s social network crackdown is the Instagram profile “ Trusted ,” self-described as “top-tier professional middleman/escrow since 2014.” Those databases show Beam was just the 12th user account created on OGUsers back in 2014.

Sales 337

Sales Passwords Authentication Access 337

Krebs on Security

OCTOBER 26, 2021

Indeed, some of history’s largest cyberheists involved point-of-sale malware, including the 2008 breach at Heartland Payment Systems that exposed 100 million payment cards, and the 2013-2014 string of breaches at Target , Home Depot and elsewhere that led to the theft of roughly another 100 million cards.

Sales 72

Sales Retail Computer and Electronics Risk 72

Krebs on Security

JUNE 16, 2021

While CLOP as a moneymaking collective is fairly young organization, security experts say CLOP members hail from a group of Threat Actors (TA) known as “ TA505 ,” which MITRE ‘s ATT&CK database says is a financially motivated cybercrime group that has been active since at least 2014.

Ransomware 338

Ransomware Encryption Cybersecurity Access 338

Data Breach Today

JULY 11, 2019

Agreement Follows Proposed $74 Million Settlement of Class Action Lawsuit Health insurer Premera Blue Cross has signed a $10 million HIPAA settlement with the attorneys general of 30 states in the wake of a 2014 data breach that exposed personal information on more than 10.4 million individuals nationwide.

Insurance 174

Insurance Data breaches 174

Krebs on Security

JULY 27, 2022

“Full Delete netted ALM $1.7mm in revenue in 2014. In 2014, ALM reported revenues of $115 million. Cyber intelligence firm Intel 471 recorded a series of posts by a user with the handle “ Brutium ” on the Russian-language cybercrime forum Antichat between 2014 and 2016.

Sales 59

Sales Archiving IT Privacy 59

Krebs on Security

NOVEMBER 20, 2019

In February 2014, KrebsOnSecurity reached out to Usatyuk’s father Peter Usatyuk , an assistant professor at the University of Illinois at Chicago. 13, 2014. “I But Usatyuk’s involvement in the DDoS-for-hire space very much predates that period. I did so because a brief amount of sleuthing on Hackforums[.]net

IT 207

IT 207

Krebs on Security

APRIL 7, 2022

The Justice Department said that in Dragonfly’s first stage between 2012 and 2014, the defendants hacked into computer networks of industrial control systems (ICS) companies and software providers, and then hid malware inside legitimate software updates for such systems. energy facilities. ” HYDRA. . ” HYDRA.

Marketing 287

Marketing Energy and Utilities Ransomware Blockchain 287

Data Breach Today

JUNE 9, 2023

federal prosecutors accused two Russian nationals of carrying out the heist that provoked the 2014 collapse cryptocurrency trading exchange Mt. Gox Proceeds Used to Found BTC-e, Prosecutors Say U.S. Gox, then the world's largest crypto platform.

162

162

Krebs on Security

MARCH 22, 2021

By 2014 it was throwing lavish parties at top Internet security conferences. ” Stiansen’s leadership at Norse coincided with the company’s release of a report in 2014 on Iran’s cyber prowess that was widely trounced as deeply flawed and headline-grabbing.

Computer and Electronics 300

Computer and Electronics Honeypots Archiving Marketing 300

Krebs on Security

DECEMBER 3, 2024

Image: Interisle Cybercrime Supply Chain 2014. Currently, there are around 2,500 registrars authorized to sell domains by the Internet Corporation for Assigned Names and Numbers (ICANN), the California nonprofit that oversees the domain industry. The top 5 new gTLDs, ranked by cybercrime domains reported.

Phishing 263

Phishing Marketing IT 263

Krebs on Security

JULY 23, 2020

According to a filing (PDF) by the New York State Department of Financial Services (DFS), the weakness that exposed the documents was first introduced during an application software update in May 2014 and went undetected for years.

Insurance 327

Insurance Financial Services Mining Access 327

Krebs on Security

JUNE 25, 2021

“These products have been discontinued since 2014 and are no longer covered under our device software support lifecycle. . “The vulnerability report CVE-2018-18472 affects My Book Live devices originally introduced to the market between 2010 and 2012,” reads a reply from Western Digital that Wizcase posted to its blog.

Access 339

Access Marketing IT 339

Krebs on Security

JANUARY 14, 2019

On Friday, a 34-year-old Connecticut man received a whopping 10-year prison sentence for carrying out distributed denial-of-service (DDoS) attacks against a number of hospitals in 2014.

IoT 208

IoT Sales Access Government 208

Krebs on Security

SEPTEMBER 26, 2024

Department of Justice (DOJ) today unsealed an indictment against a 38-year-old man from Novosibirsk, Russia for allegedly operating Joker’s Stash, an extremely successful carding shop that came online in late 2014. Joker’s sold cards stolen in a steady drip of breaches at U.S.

Ransomware 260

Ransomware Retail Government Sales 260

Security Affairs

OCTOBER 26, 2022

This is the second critical vulnerability ever addressed by the OpenSSL Project after the critical Heartbleed vulnerability (CVE-2014-0160) in 2014. The highest severity issue fixed in this release is CRITICAL:” The critical vulnerability only impacts versions 3.0 OpenSSL Project also announced the upcoming bug-fix release 1.1.1s

Encryption 136

Encryption Security IT Information Security 136

Security Affairs

NOVEMBER 28, 2021

The complaint refers to the revelation made by the magazine Télérama that reported the sale in March 2014 of “a listening system at 10 million euros to fight – officially – against the Muslim Brotherhood” , the Islamist opposition in Egypt. The contract was signed in March 2014.

Sales 141

Sales Government Encryption Communications 141

Krebs on Security

OCTOBER 22, 2020

Separately, the California State Franchise Tax Board (FTB) suspended this company as of April 1, 2014. .” It appears that Centauri hasn’t filed any business records with the state since 2009, and the state subsequently suspended the company’s license to do business in Aug. Neither Centauri Communications nor N.T.

Communications 305

Communications IT Access Security 305

Krebs on Security

JUNE 27, 2019

On Wednesday, Reuters published a lengthy story on “ Cloud Hopper ,” the nickname given to a network of Chinese cyber spies that hacked into eight of the world’s biggest IT suppliers between 2014 and 2017.

Cloud 267

Cloud Retail Access Government 267

Security Affairs

OCTOBER 31, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Gaming Partners International (GPI)).

Ransomware 145

Ransomware Encryption Security Information Security 145