Krebs on Security

JULY 19, 2024

A faulty software update from cybersecurity vendor Crowdstrike crippled countless Microsoft Windows computers across the globe today, disrupting everything from airline travel and financial institutions to hospitals and businesses online. Crowdstrike said a fix has been deployed, but experts say the recovery from this outage could take some time, as Crowdstrike’s solution needs to be applied manually on a per-machine basis.

Artificial Intelligence 327

Artificial Intelligence Cybersecurity Cloud Security 327

Data Breach Today

JULY 19, 2024

CrowdStrike Confirms Faulty Software Update for Falcon Sensor, Is Deploying Fix Banks, airlines, media giants and others are being disrupted by a mass, global IT outage tied to Windows PCs. While CrowdStrike has issued a workaround tied to a Falcon software update that appears to be the culprit, many IT administrators say it so far remains difficult to implement at scale.

IT 306

IT 306

Weissman's World

JULY 19, 2024

I recently gave a presentation to ARMA International about the human consequences of what we do, and though you probably can get a copy of it from ARMA itself – and for sure you can from me – I wanted to take a minute to reinforce the criticality of my point. Most of us spend… Read More » Wanted! An IG Code of Human Ethics The post Wanted!

IT 290

IT Records Management Information governance Government 290

Data Breach Today

JULY 19, 2024

In the Spotlight: Quality Assurance, Business Resilience, Single Points of Failure Expect the global IT disruptions caused by a bug in CrowdStrike's software to prompt quality assurance questions for the cybersecurity vendor. Experts say the incident also highlights shortcomings in the Windows operating system, as well as many organizations' business resiliency plans.

Cybersecurity 173

Cybersecurity IT 173

Advertisement

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

Passwords

WIRED Threat Level

JULY 19, 2024

A defective CrowdStrike kernel driver sent computers around the globe into a reboot death spiral, taking down air travel, hospitals, banks, and more with it. Here’s how that’s possible.

IT 145

IT Security 145

WIRED Threat Level

JULY 19, 2024

A software update from cybersecurity company CrowdStrike appears to have inadvertently disrupted IT systems globally.

Cybersecurity 145

Cybersecurity IT Security 145

Data Breach Today

JULY 19, 2024

CrowdStrike Outage Rekindles Concerns Over Federal Cybersecurity Contingency Plans Federal agencies including CISA rushed on Friday to provide IT support to critical infrastructure sectors in the U.S. while resolving their own system disruptions caused by a faulty update pushed to Windows PCs by the Texas-based cybersecurity firm CrowdStrike.

Cybersecurity 162

Cybersecurity IT 162

Security Affairs

JULY 19, 2024

Two Russian nationals pleaded guilty to participating in the LockBit ransomware group and carrying out attacks against victims worldwide. Two foreign nationals, Ruslan Magomedovich Astamirov and Mikhail Vasiliev, pleaded guilty in Newark federal court for their roles in the LockBit ransomware operation. The LockBit ransomware operation has been active since January 2020, the group hit over 2,500 victims across 120 countries, including 1,800 in the U.S.

Ransomware 144

Ransomware Encryption Government Access 144

Data Breach Today

JULY 19, 2024

Some EHRs Affected; Hospitals Cancel Patient Care in Latest Vendor Mega Incident As if the healthcare sector doesn't have enough technology problems, the global IT outage caused by a faulty CrowdStrike software update has forced some hospitals and other medical facilities worldwide to resort to manual downtime procedures and cancel patient procedures.

IT 162

IT 162

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Cloud

WIRED Threat Level

JULY 19, 2024

Swindlers are spinning up bogus websites in an attempt to dupe people with “CrowdStrike support” scams following the security firm's catastrophic software update.

Security 142

Security 142

Data Breach Today

JULY 19, 2024

Also: AI Bots in the Workplace; AI Regulations in the US and EU In the latest weekly update, ISMG editors discussed AT&T's alleged ransom payment to hackers following a breach of its Snowflake account, the challenges of using AI bots in the workplace, and the impact of differences in AI regulations in the E.U. and the U.S.

IT 162

IT 162

Security Affairs

JULY 19, 2024

Personal and health information of 12.9 million individuals was exposed in a ransomware attack on Australian digital prescription services provider MediSecure. MediSecure is a company that provides digital health solutions, particularly focusing on secure electronic prescription delivery services in Australia. In May, the company was forced to shut down its website and phone lines following a cyber attack, but it did not mention a ransomware attack.

Data breaches 138

Data breaches Unstructured data Ransomware Phishing 138

Data Breach Today

JULY 19, 2024

Measuring Your Data’s Risk.

Risk 162

Risk Security 162

Advertisement

Large enterprises face unique challenges in optimizing their Business Intelligence (BI) output due to the sheer scale and complexity of their operations. Unlike smaller organizations, where basic BI features and simple dashboards might suffice, enterprises must manage vast amounts of data from diverse sources. What are the top modern BI use cases for enterprise businesses to help you get a leg up on the competition?

Security Affairs

JULY 19, 2024

Windows machines worldwide displayed BSoD screen following a faulty update pushed out by cybersecurity firm CrowdStrike. A faulty update released by CrowdStrike Falcon is causing Windows systems to display a BSoD screen. The incident is causing widespread global disruptions, impacting critical infrastructure such as airports, hospitals, and TV stations.

Cybersecurity 136

Cybersecurity Communications IT Security 136

Data Breach Today

JULY 19, 2024

The Cost of Underpreparedness to Your Business.

Security 162

Security 162

Security Affairs

JULY 19, 2024

Cisco has addressed a critical vulnerability that could allow attackers to add new root users to Security Email Gateway (SEG) appliances. Cisco fixed a critical vulnerability, tracked as CVE-2024-20401 (CVSS score 9.8), that could allow unauthenticated, remote attackers to add new users with root privileges and permanently crash Security Email Gateway (SEG) appliances.

Security 136

Security Passwords IT Information Security 136

Data Breach Today

JULY 19, 2024

Securing Healthcare, Minimizing Risk, Ever-Changing Threat Landscape.

Risk 162

Risk Security 162

Advertisement

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

Cloud

KnowBe4

JULY 19, 2024

I have been the CEO of an anti-virus software developer. We had a special acronym for catastrophic events like this, a so-called "CEE". As in Company Extinction Event. Within hours of mass IT outages on Friday, a surge of new domains began appearing online, all sharing one common factor: the name CrowdStrike. As the company grapples with a global tech outage that has delayed flights and disrupted emergency services, opportunistic cybercriminals are quick to exploit the chaos.

Phishing 126

Phishing Cybersecurity Security IT 126

Schneier on Security

JULY 19, 2024

Brett Solomon is retiring from AccessNow after fifteen years as its Executive Director. He’s written a blog post about what he’s learned and what comes next.

IT 111

IT Security 111

KnowBe4

JULY 19, 2024

New data puts the spotlight on the frequency and impact of modern ransomware attacks, highlighting the overconfidence organizations are showing in their ability to defend and respond to attacks.

Ransomware 125

Ransomware 125

Security Affairs

JULY 19, 2024

Windows machines worldwide displayed BSoD screen following a faulty update pushed out by cybersecurity firm CrowdStrike. A faulty update released by CrowdStrike Falcon is causing Windows systems to display a BSoD screen. The incident is causing widespread global disruptions, impacting critical infrastructure such as airports, hospitals, and TV stations.

Cybersecurity 98

Cybersecurity Communications Security IT 98

Advertisement

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

IT

KnowBe4

JULY 19, 2024

Phishing is used to completely compromise the victim’s environment after other repeated methods failed.

Phishing 122

Phishing 122

Security Affairs

JULY 19, 2024

Personal and health information of 12.9 million individuals was exposed in a ransomware attack on Australian digital prescription services provider MediSecure. MediSecure is a company that provides digital health solutions, particularly focusing on secure electronic prescription delivery services in Australia. In May, the company was forced to shut down its website and phone lines following a cyber attack, but it did not mention a ransomware attack.

Data breaches 98

Data breaches Unstructured data Ransomware Phishing 98

Collaboration 2.0

JULY 19, 2024

It might seem like a total gimmick, but it's a must-have tool in my toolbox.

IT 98

IT 98

Security Affairs

JULY 19, 2024

Two Russian nationals pleaded guilty to participating in the LockBit ransomware group and carrying out attacks against victims worldwide. Two foreign nationals, Ruslan Magomedovich Astamirov and Mikhail Vasiliev, pleaded guilty in Newark federal court for their roles in the LockBit ransomware operation. The LockBit ransomware operation has been active since January 2020, the group hit over 2,500 victims across 120 countries, including 1,800 in the U.S.

Ransomware 98

Ransomware Encryption Government Access 98

Advertisement

Explore how enterprises can enhance developer productivity and onboarding by adopting self-hosted Cloud Development Environments (CDEs). This whitepaper highlights the simplicity and flexibility of cloud-based development over traditional setups, demonstrating how large teams can leverage economies of scale to boost efficiency and developer satisfaction.

Cloud

Collaboration 2.0

JULY 19, 2024

The industrial-grade Topdon TC002 gives your iPhone a cool superpower and you can get it for much less than a dedicated thermal imaging camera.

IT 98

IT 98

Security Affairs

JULY 19, 2024

Cisco has addressed a critical vulnerability that could allow attackers to add new root users to Security Email Gateway (SEG) appliances. Cisco fixed a critical vulnerability, tracked as CVE-2024-20401 (CVSS score 9.8), that could allow unauthenticated, remote attackers to add new users with root privileges and permanently crash Security Email Gateway (SEG) appliances.

Security 98

Security Passwords IT 98

Collaboration 2.0

JULY 19, 2024

Just a week after the wearable's Unpacked launch, multiple customers reported issues with the earbud tips tearing - and Samsung has pulled the devices from shelves.

Sales 98

Sales 98