2021 and Business Services - Information Management Today

2021

Business Services

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Security Affairs

AUGUST 21, 2021

The three vulnerabilities used in ProxyShell attacks are: CVE-2021-34473 – Pre-auth Path Confusion leads to ACL Bypass (Patched in April by KB5001779 ) CVE-2021-34523 – Elevation of Privilege on Exchange PowerShell Backend (Patched in April by KB5001779 ) CVE-2021-31207 – Post-auth Arbitrary-File-Write leads to RCE (Patched in May by KB5003435 ).

Ransomware

Ransomware Encryption Financial Services Manufacturing

Over 500,000 people were impacted by a ransomware attack that hit Morley

Security Affairs

FEBRUARY 4, 2022

Business services firm Morley was hit by a ransomware attack that may have exposed data of +500,000 individuals. Business services company Morley was victim of a ransomware attack that may have resulted in a data breach impacting more than 500,000 individuals.

Ransomware

Ransomware Business Services Data breaches Insurance

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Trending Sources

TinyNuke banking malware targets French organizations

Security Affairs

DECEMBER 13, 2021

The TinyNuke malware is back and now was used in attacks aimed at French users working in manufacturing, technology, construction, and business services. “After only observing a handful of TinyNuke campaigns in 2019 and 2020, Proofpoint observed TinyNuke reappear in January 2021 in one campaign distributing around 2,000 emails.

Manufacturing

Manufacturing Business Services Communications IT

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

LockFile Ransomware uses a new intermittent encryption technique

Security Affairs

AUGUST 31, 2021

.” Sophos experts spotted the new technique while analyzing a LockFile sample (SHA-256 hash: bf315c9c064b887ee3276e1342d43637d8c0e067260946db45942f39b970d7ce) that was uploaded to VirusTotal on August 22, 2021. The HTA ransom note used by LockFile closely resembles the one used by LockBit 2.0

Encryption

Encryption Ransomware Financial Services Manufacturing

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Security Affairs

NOVEMBER 1, 2021

The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. The threat actors restarted their activity in September 2021, they used phishing messages masqueraded as the Philippines Bureau of Customs CPRS and contained links to a credential harvesting page. .

Healthcare

Healthcare Phishing Government Manufacturing

Telco service provider giant Syniverse had unauthorized access since 2016

Security Affairs

OCTOBER 5, 2021

Syniverse service provider discloses a security breach, threat actors have had access to its databases since 2016 and gained some customers’ credentials. Syniverse is a global company that provides technology and business services for a number of telecommunications companies as well as a variety of other multinational enterprises.

Access

Access Cybersecurity Business Services Security

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.” i-SOON’s “business services” webpage states that the company’s offerings include public security, anti-fraud, blockchain forensics, enterprise security solutions, and training.

Government

Government Cybersecurity Sales Blockchain

Protect sector apprenticeships – Level 7 Apprenticeship funding under threat

CILIP

DECEMBER 2, 2024

The Level 3 Apprenticeship has seen more than 200 people successfully complete the programme – with the first qualified in 2021. Since 2017, CILIP has been heavily involved in the design and implementation of two apprenticeship programmes for the profession.

Libraries

Libraries Business Services Government

Weakness at the Network Edge: Mandiant Examines 2022’s Zero-Day Exploits

eSecurity Planet

MARCH 27, 2023

That’s fewer than the 81 zero-days exploited in 2021, but far more than those exploited in any previous year. “A number of factors may have contributed to the zero-day count in 2020 dipping, then quadrupling in 2021,” researchers James Sadowski and Casey Charrier wrote.

Cloud

Cloud Ransomware Risk Access

How to prioritize data strategy investments as a CDO

IBM Big Data Hub

APRIL 12, 2022

All these pieces worked together to set us up for a successful strategy pivot in 2021. IBM’s data strategy aligns to revenue growth in 2021. From 2019 to 2021, our GCDO successfully aligned our data strategy to top-line growth with a strong focus on revenue. Governance with a focus on transparency to instill trust.

Compliance

Compliance Cloud Mining Government

Top IT Asset Management Tools for Security

eSecurity Planet

DECEMBER 1, 2021

Configuration Management Database (CMDB) allows organizations to connect all asset data with business service context throughout the full IT lifecycle. Cloud Insights gives organizations visibility into cloud spending and usage, broken down by services, applications, cost centers, and other entities. Freshservice.

IT Security Compliance Cloud

UK Suffers Third Highest Rate of Ransomware Attacks in the World

IT Governance

SEPTEMBER 30, 2022

The other most vulnerable sectors were business services (23), construction (22), manufacturing (19) and transport (18). Small businesses are vulnerable to cyber attacks because they lack the resources to address cyber security. Across the UK, the education sector was the most frequently targeted, with 24 incidents.

Ransomware

Ransomware Manufacturing Data breaches Business Services

GDPR Article 28 Contracts: What You Need to Know

IT Governance

JULY 9, 2024

You should also check the business/service continuity guarantees. If you’re relying on a third-party service provider to provide you with your data, and that third party suffers an outage – for whatever reason – how does that impact you, as the data controller? The European Commission modernised them in June 2021.

GDPR

GDPR Compliance Data Privacy Privacy

Long-Awaited Online Safety Bill is Introduced by the UK Government to Combat “Harmful” Online Content

Data Matters

JUNE 29, 2021

Two years after the UK Government first put forward its intention to introduce a new regime to address illegal and harmful content online, the UK Government published the Online Safety Bill (“ Bill ”) on 12 May 2021. Services provided both within and outside of the UK are in-scope where the service has some nexus to the UK (i.e.,

Government

Government Compliance Risk Privacy

Upskilling and reskilling for talent transformation in the era of AI

IBM Big Data Hub

MAY 13, 2024

A 2024 Gallup poll found that nearly 25% of workers worry that their jobs can become obsolete because of AI, up from 15% in 2021. One such example: applications can refactor COBOL code for mainframes into modular business service components. Developers can use it to convert one coding language into another.

Digital transformation

Digital transformation Education Financial Services Artificial Intelligence

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Over 500,000 people were impacted by a ransomware attack that hit Morley

Webinars

Trending Sources

TinyNuke banking malware targets French organizations

Webinars

LockFile Ransomware uses a new intermittent encryption technique

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Telco service provider giant Syniverse had unauthorized access since 2016

New Leak Shows Business Side of China’s APT Menace

Protect sector apprenticeships – Level 7 Apprenticeship funding under threat

Weakness at the Network Edge: Mandiant Examines 2022’s Zero-Day Exploits

How to prioritize data strategy investments as a CDO

Top IT Asset Management Tools for Security

UK Suffers Third Highest Rate of Ransomware Attacks in the World

GDPR Article 28 Contracts: What You Need to Know

Long-Awaited Online Safety Bill is Introduced by the UK Government to Combat “Harmful” Online Content

Upskilling and reskilling for talent transformation in the era of AI

Stay Connected