Security Affairs

DECEMBER 22, 2023

The Akira ransomware group announced it had breached the network of Nissan Australia, the Australian branch of the car maker giant. The Akira ransomware gang claimed to have breached Nissan Australia and to have stolen around 100GB of files from the carmaker giant. “We’ve obtained 100 GB of data of Nissan Australia.

Ransomware 133

Ransomware Data breaches Financial Services Archiving 133

Security Affairs

JUNE 15, 2023

The LockBit ransomware group successfully extorted roughly $91 million from approximately 1,700 U.S. According to a joint advisory published by cybersecurity agencies, the LockBit ransomware group has successfully extorted roughly $91 million in about 1,700 attacks against U.S. was the prevalent variant in 2023. Red, LockBit 3.0/Black,

Ransomware 94

Ransomware Cybersecurity Agriculture Education 94

The Last Watchdog

SEPTEMBER 24, 2024

The breach was initially caused by a third-party malicious actor who infiltrated NPD’s systems in December 2023. Online credit bureaus, like Equifax, Experian, and TransUnion, often see an uptick in new users after breaches because consumers realize the potential risks to their financial well-being and identity. billion records.

Authentication 215

Authentication IT ROT Compliance 215

IT Governance

NOVEMBER 13, 2023

million patient visits stolen in ransomware attack Date of breach: 23 October 2023 Breached organisation: Bluewater Health and Chatham-Kent Health Alliance Incident details: A database containing information about 5.6 Records breached: 79,582 Ontario hospitals update: information relating to 5.6

Data Privacy 64

Data Privacy Privacy Security Data breaches 64

Security Affairs

AUGUST 20, 2024

branch of Toyota, stealing 240GB of files containing information on Toyota employees, customers, contracts, and financial details. branch of Toyota, stealing 240GB of files containing information on Toyota employees, customers, contracts, and financial details. The threat actor ZeroSevenGroup claims to have breached a U.S.

Data breaches 99

Data breaches Financial Services Archiving Passwords 99

Security Affairs

JUNE 16, 2023

DoJ charged a Russian national with conspiring to carry out LockBit ransomware attacks against U.S. The Justice Department announced charges against the Russian national Ruslan Magomedovich Astamirov (20) for his role in numerous LockBit ransomware attacks against systems in the United States, Asia, Europe, and Africa.

Ransomware 92

Ransomware Agriculture Education Government 92

Hunton Privacy

NOVEMBER 23, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) released its second, proposed amendments to the Part 500 Cybersecurity Rule. Any cybersecurity event that affects a third-party service provider that also affects the covered entity. Incident Response and Business Continuity and Disaster Recovery Plan.

Financial Services 55

Financial Services Cybersecurity Ransomware Compliance 55

Hunton Privacy

NOVEMBER 8, 2023

On November 1, 2023, New York Governor Hochul announced that the New York State Department of Financial Services (“NYDFS”) amended its Cybersecurity Regulation applicable to covered financial institutions. Notably, however, the new reporting requirements will take effect sooner, on December 1, 2023.

Cybersecurity 72

Cybersecurity IT Compliance Financial Services 72

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024 madhav Fri, 10/25/2024 - 06:09 The next major deadline for compliance with the updated cybersecurity rules from the New York State Department of Financial Services (NYDFS) is November 1, 2024.

Cybersecurity 62

Cybersecurity Financial Services Encryption Compliance 62

Security Affairs

OCTOBER 19, 2023

An international law enforcement operation shuts down the infrastructure of the Ragnar Locker ransomware operation. Law enforcement from the US, Europe, Germany, France, Italy, Japan, Spain, Netherlands, Czech Republic, and Latvia conducted a joint operation that led to the seizure of the Ragnar Locker ransomware’s infrastructure.

Ransomware 116

Ransomware Financial Services Manufacturing Government 116

Security Affairs

FEBRUARY 19, 2024

An international law enforcement operation codenamed ‘Operation Cronos’ led to the disruption of the LockBit ransomware operation. A joint law enforcement action, code-named Operation Cronos, conducted by law enforcement agencies from 11 countries has disrupted the LockBit ransomware operation. on January 5, 2020.

Energy and Utilities 116

Energy and Utilities Ransomware Agriculture Financial Services 116

Security Affairs

JUNE 29, 2024

Infosys McCamish Systems (IMS) revealed that the 2023 data breach following the LockBit ransomware attack impacted 6 million individuals. IMS specializes in providing business process outsourcing (BPO) and information technology (IT) services specifically tailored for the insurance and financial services industries.

Data breaches 96

Data breaches e-Discovery Ransomware Insurance 96

Security Affairs

DECEMBER 17, 2023

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center New NKAbuse malware abuses NKN decentralized P2P network protocol Snatch ransomware gang claims the hack of the food giant Kraft Heinz Multiple flaws in pfSense firewall can lead to arbitrary code execution BianLian, White Rabbit, and Mario Ransomware Gangs Spotted (..)

Security 89

Security Data breaches Ransomware Artificial Intelligence 89

Security Affairs

MARCH 14, 2024

The ransomware attack that hit the systems of Nissan Oceania in December 2023 impacted roughly 100,000 individuals. Nissan Oceania, the regional division of the multinational carmaker, announced in December 2023 that it had suffered a cyber attack and launched an investigation into the incident.

Data breaches 104

Data breaches Financial Services Ransomware Government 104

Security Affairs

JUNE 6, 2024

The FBI is informing victims of LockBit ransomware it has obtained over 7,000 LockBit decryption keys that could allow some of them to decrypt their data. The FBI is inviting victims of LockBit ransomware to come forward because it has obtained over 7,000 LockBit decryption keys that could allow them to recover their encrypted data for free.

Energy and Utilities 118

Energy and Utilities Ransomware Agriculture Encryption 118

Security Affairs

SEPTEMBER 10, 2023

Akamai announced it has mitigated the largest distributed denial-of-service (DDoS) attack on a U.S. financial company. Cybersecurity firm Akamai successfully identified and prevented a massive distributed denial-of-service (DDoS) attack targeting an unnamed, leading American financial institution. gigabits per second.

Financial Services 132

Financial Services Ransomware Cybersecurity IT 132

Security Affairs

FEBRUARY 21, 2024

government offers rewards of up to $15 million for information that could lead to the identification or location of LockBit ransomware gang members and affiliates. According to the press release published by the Department of State , the Lockbit ransomware operators carried out over 2,000 attacks against victims worldwide since January 2020.

Energy and Utilities 99

Energy and Utilities Ransomware Agriculture Manufacturing 99

Security Affairs

APRIL 6, 2023

Its services are used by companies and financial institutions including BMW, Vodafone, the Australian government, Westpac, ANZ, HSBC, and Virgin Money. Financial services are the main target for cybercriminals, so the threat for the organizations and their customers is severe.

IT 92

IT Financial Services Access Risk 92

Security Affairs

FEBRUARY 20, 2024

Law enforcement provided additional details about the international Operation Cronos that led to the disruption of the Lockbit ransomware operation. Yesterday, a joint law enforcement action, code-named Operation Cronos , conducted by law enforcement agencies from 11 countries disrupted the LockBit ransomware operation.

Energy and Utilities 111

Energy and Utilities Ransomware Manufacturing Agriculture 111

Thales Cloud Protection & Licensing

OCTOBER 16, 2024

In fact, according to the 2024 Thales Data Threat Report , more than 80% of organizations reported at least one breach in the last year, while ransomware attacks grew more frequent, with 28% of organizations reported experiencing an attack in 2024, compared to 22% in 2023. Oh, and it’s Cybersecurity Awareness Month. The result?

Security 62

Security Encryption Data breaches Cybersecurity 62

eSecurity Planet

AUGUST 10, 2023

OTX prides itself on being a completely open community for threat intelligence, extending access to threat research and shared expertise from security professionals to any and all users. Dashboards clearly state the quantity and types of indicators of compromise (IoCs) and also provide Pulses to quickly summarize threats and their impact.

Cybersecurity 96

Cybersecurity Access Metadata Energy and Utilities 96

Data Protection Report

NOVEMBER 2, 2023

On November 1, 2023, the New York Department of Financial Services (NYDFS) finalized the second amendment to its cybersecurity regulations, which are available here. The rules contain the provisions we had described in the original NYDFS proposal a year ago (see our blog post here ), but include some changes. d) and 500.22(e)),

Cybersecurity 105

Cybersecurity Compliance Financial Services Government 105

Data Matters

JANUARY 19, 2023

On 17 January 2023, the new Network and Information Systems Security Directive (“ NIS2 Directive ”), which is aimed at establishing a minimum level of cybersecurity standards across the EU and is set to replace its predecessor (the NIS or “ NIS1 Directive ” ), entered into force.

Financial Services 86

Financial Services Cybersecurity Ransomware Marketing 86

IBM Big Data Hub

JUNE 5, 2024

million in 2023, according to IBM’s Cost of a Data Breach report. This downtime can harm a business’s reputation, as well as the global financial ecosystem. To accelerate cloud adoption in financial services, we built IBM Cloud for Financial Services ®, informed by the industry and for the industry.

Financial Services 48

Financial Services Cloud Data breaches Compliance 48

IT Governance

FEBRUARY 21, 2024

ALPHV/BlackCat ransomware gang adds 2.7 TB of ASA Electronics data to its leak site The ALPHV/BlackCat ransomware gang is attempting to extort a ransom from ASA Electronics for 2.7 Fowler sent a responsible disclosure notice when he discovered the database and it was secured the following day. Date breached: 384,658,212 records.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

KnowBe4

MARCH 28, 2023

CyberheistNews Vol 13 #13 | March 28th, 2023 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks Users need to adapt to an evolving threat landscape in which attackers can use AI tools like ChatGPT to craft extremely convincing phishing emails, according to Matthew Tyson at CSO. "A in exponential terms.

Phishing 83

Phishing Security awareness Insurance Cybersecurity 83

KnowBe4

FEBRUARY 14, 2023

CyberheistNews Vol 13 #07 | February 14th, 2023 [Scam of the Week] The Turkey-Syria Earthquake Just when you think they cannot sink any lower, criminal internet scum is now exploiting the recent earthquake in Turkey and Syria. I suggest you send the following short alert to as many people as you can.

Phishing 81

Phishing Security awareness Compliance Risk 81

IT Governance

DECEMBER 11, 2023

suffers second ransomware attack in months Having been struck by a ransomware attack in October by the BlackSuit group , which led to operations and appointments being postponed, Akumin Inc. has suffered a second attack, this time by the BianLian ransomware group. Data breached: more than 59 million data records. Akumin Inc.

Data Privacy 86

Data Privacy Energy and Utilities Privacy Manufacturing 86

IT Governance

MARCH 11, 2024

Cybernews’s research team discovered the MongoDB server in December 2023 and contacted Glosbe. Source 1 ; source 2 (Update) IT services Taiwan Yes 2,451,197 RMH Franchise Corporation Source (New) Hospitality USA Yes 1.5 Source (New) Professional services Netherlands Yes 28.3 Data breached: 6,935,412 individuals’ data.

Data Privacy 67

Data Privacy Privacy Security Data breaches 67

Data Protection Report

JANUARY 30, 2023

Does an insurance policy that covers direct physical loss or damage to media cover the situation where ransomware renders downloaded software useless because it could not be decrypted? Late December and early January tend to be a busy time for everyone, so you may have missed a privacy update or two during that time. Answers are below.

Privacy 115

Privacy Cybersecurity Personal data Insurance 115

KnowBe4

JUNE 20, 2023

CyberheistNews Vol 13 #25 | June 20th, 2023 [Fingerprints All Over] Stolen Credentials Are the No. Find out with the BRAND-NEW 2023 Phishing By Industry Benchmarking Report, which analyzed a data set of 12.5 According to Verizon, stolen credentials were the "most popular entry point for breaches."

Data breaches 72

Data breaches Phishing Security awareness Ransomware 72

Data Protection Report

AUGUST 11, 2022

On July 29, 2022, the New York Department of Financial Services (NYDFS) announced a “pre-proposed outreach” of material proposed changes to almost every section of its cybersecurity regulations, and would affect each entity covered by the current regulations of 23 NYCRR Part 500. Cybersecurity Risk Assessments. Extortion Payments.

Cybersecurity 59

Cybersecurity Risk Passwords Compliance 59

eSecurity Planet

JANUARY 14, 2022

And DDoS attackers have adopted a tactic from ransomware groups and are seeking payment from victims and potential victims. Research by Cisco estimates the volume of DDoS attacks will surge from more than 10 million in 2021 up to 15 million by 2023. 8 Top DDoS Protection Services. 6 Best Practices to Prevent DDoS Attacks.

Cloud 127

Cloud IoT Analytics Security 127

IT Governance

JANUARY 23, 2024

million customers’ data stolen VF Corporation – the parent company of many popular clothing brands, including Vans and The North Face – has confirmed in its Form 8-K/A filing to the US Securities and Exchange Commission (an amendment to its original Form 8-K filing ) that its December 2023 cyber attack resulted in the theft of 35.5

Data Privacy 52

Data Privacy Privacy Manufacturing Security 52

Thales Cloud Protection & Licensing

NOVEMBER 30, 2020

It amends the California Consumer Privacy Act (CCPA) and goes into effect January 1, 2023, for all data collected starting January 1, 2022 1. It goes on with examples: Sensitive personal information will include financial information, account log-in credentials, a consumer’s identification numbers (e.g., How does CPRA relate to CCPA?

Privacy 62

Privacy GDPR Compliance Data breaches 62

ForAllSecure

APRIL 19, 2023

Michael Coden, Associate Director, Cybersecurity, MIT Sloan, along with Michael Stonebreaker will present this novel concept at RSAC 2023. It’s time to evolve beyond the UNIX operating system. OSes today are basically ineffective database managers, so why not build an OS that’s a database manager? He called it Time Stone.

Analytics 40

Analytics Communications Computer and Electronics IT 40

KnowBe4

MAY 31, 2023

CyberheistNews Vol 13 #22 | May 31st, 2023 [Eye on Fraud] A Closer Look at the Massive 72% Spike in Financial Phishing Attacks With attackers knowing financial fraud-based phishing attacks are best suited for the one industry where the money is, this massive spike in attacks should both surprise you and not surprise you at all.

Phishing 75

Phishing File names Security awareness Risk 75