Insurance, Manufacturing and Security - Information Management Today

Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia

Security Affairs

APRIL 16, 2024

Nexperia is a semiconductor manufacturer headquartered in Nijmegen, the Netherlands. Gb - NDA The group published a set of files as proof of the security breach and threatens leak all the stolen data if the victim will not pay the ransom. . - It is a subsidiary of the partially state-owned Chinese company Wingtech Technology.

Ransomware

Ransomware Manufacturing Insurance Cybersecurity

McLaren Health Care revealed that a data breach impacted 2.2 million people

Security Affairs

NOVEMBER 10, 2023

The security breach exposed the sensitive personal information of 2,192,515 people. Exposed information varied by individual and may include some combination of certain individuals’ names, social Security number, health insurance information, date of birth, and medical information. million individuals. It is a $6.6

Data breaches

Data breaches Ransomware Insurance Manufacturing

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. The company has operations in 25 countries, more than 4,000 employees, and billions in revenue annually. Acting on a tip from Milwaukee, Wis.-based

Security

Security Ransomware Agriculture Cybersecurity

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Ransomware infected systems at Xchanging, a DXC subsidiary

Security Affairs

JULY 6, 2020

Xchanging is a business process and technology services provider and integrator, which provides technology-enabled business services to the commercial insurance industry. Securities and Exchange Commission (SEC). The company disclosed the security breach on July 5, but it is not clear when it has discovered the attack.

Ransomware

Ransomware Insurance Financial Services Manufacturing

Belden discloses data breach as a result of a cyber attack

Security Affairs

NOVEMBER 25, 2020

Belden, the manufacturer of networking and cable products, disclosed a data breach, threat actors have stolen employee and business information. The company said the breach did not impact operations at manufacturing plants, quality control or shipping, it added that attackers only had access to a “limited number” of company servers.

Data breaches

Data breaches Manufacturing Insurance Access

Phishing campaign targeted US executives exploiting a flaw in Indeed job search platform

Security Affairs

OCTOBER 4, 2023

Researchers from the cybersecurity firm Menlo Security reported that threat actors exploited an open redirection vulnerability in the job search platform Indeed in phishing attacks. ” states the report from Menlo Security. The campaign was observed between July and August, threat actors used the phishing kit ‘ EvilProxy.’

Phishing

Phishing Insurance Manufacturing Authentication

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. ” reads the report published by Crowdstrike. Pierluigi Paganini.

Access

Access Financial Services Retail Insurance

Trojanized Comm100 Live Chat app installer distributed a JavaScript backdoor

Security Affairs

OCTOBER 4, 2022

The malicious installer was used to infect organizations in multiple sectors, including the industrial, healthcare, technology, manufacturing, insurance and telecommunications sectors in North America and Europe. The post Trojanized Comm100 Live Chat app installer distributed a JavaScript backdoor appeared first on Security Affairs.

Metadata

Metadata Insurance Manufacturing Communications

Toyota disclosed a data breach after ZeroSevenGroup leaked stolen data on a cybercrime forum

Security Affairs

AUGUST 20, 2024

However, the company attempted to downplay the incident claiming that the security breach is limited in scope. TFS offers various financial products, including auto loans, leases, and insurance solutions. The threat actor ZeroSevenGroup claims to have breached a U.S. “We are aware of the situation.

Data breaches

Data breaches Financial Services Archiving Passwords

US. rail and locomotive company Wabtec hit with Lockbit ransomware

Security Affairs

JANUARY 4, 2023

It manufactures products for locomotives, freight cars and passenger transit vehicles, and builds new locomotives up to 6,000 horsepower. The unusual activity was detected by the company on June 26th, then the rail giant launched an investigation into the security incident. Pierluigi Paganini. SecurityAffairs – hacking, Wabtec).

Ransomware

Ransomware Insurance Data breaches Manufacturing

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

The City confirmed the security incident and is working to recover from the ransomware attack that impacted its services, including the police department. million to mitigate the May Royal ransomware attack appeared first on Security Affairs. million to mitigate the May Royal ransomware attack appeared first on Security Affairs.

Ransomware

Ransomware Encryption Systems administration Cybersecurity

A massive phishing campaign using QR codes targets the energy sector

Security Affairs

AUGUST 16, 2023

Other top 4 targeted industries include Manufacturing, Insurance, Technology, and Financial Services seeing 15%, 9%, 7%, and 6% of the campaign traffic respectively.” “Email lures came in the form of updating account security surrounding 2FA, MFA, and general account security. ” continues the report.

Phishing

Phishing Energy and Utilities Insurance Manufacturing

Nice Suzuki, sport: shame dealer left your data up for grabs

Security Affairs

JULY 21, 2023

Suzuki or otherwise, buying a new vehicle is an intense experience with complicated credit, insurance, documentation, and contracts. Files that should be secure and kept private were left publicly accessible. Rarely do car manufacturers sell their cars directly. We’ve grown to trust our local car sellers.

Manufacturing

Manufacturing Phishing Access Insurance

The Top 5 Reasons to Use an API Management Platform

Security Affairs

NOVEMBER 20, 2023

– Authentication and Security : APIs may require authentication for access control. Here are a few: Security Vulnerabilities : Unmanaged APIs may have security vulnerabilities that can be exploited by malicious actors. This security is crucial for protecting sensitive data and preventing unauthorized access.

Authentication

Authentication Risk Government Security

Luxottica data breach exposes info of LensCrafters and EyeMed patients

Security Affairs

NOVEMBER 8, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. For some patients, exposed information included credit card numbers and social security numbers.

Data breaches

Data breaches Insurance Retail Ransomware

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Krebs on Security

JULY 24, 2018

Now the financial institution is suing its insurance provider for refusing to fully cover the losses. In June of 2016, National Bank implemented additional security protocols, as recommended by FirstData. million total. Following the 2016 breach, National Bank hired cybersecurity forensics firm Foregenix to investigate. Between Jan.

Insurance

Insurance Computer and Electronics Phishing Access

US CISA and FBI publish joint alert on DarkSide ransomware

Security Affairs

MAY 13, 2021

US agencies warn that groups employed DarkSide ransomware in attacks aimed at organizations across various Critical Infrastructure sectors, including manufacturing, legal, insurance, healthcare, and energy. Implementing application allowlisting , which only allows systems to execute programs known and permitted by security policy.

Ransomware

Ransomware Phishing Risk Encryption

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

Security Affairs

FEBRUARY 28, 2024

BlackCat/ALPHV ransomware gang has been active since November 2021, the list of its victims is long and includes industrial explosives manufacturer SOLAR INDUSTRIES INDIA , the US defense contractor NJVC , gas pipeline Creos Luxembourg S.A. , the fashion giant Moncler , the Swissport , NCR , and Western Digital.

Ransomware

Ransomware Government Insurance Manufacturing

US pharmacy outage caused by Blackcat ransomware attack on Optum Solutions

Security Affairs

FEBRUARY 27, 2024

Optum Solutions is a subsidiary of UnitedHealth Group, a leading health insurance company in the United States. “On February 21, 2024, UnitedHealth Group (the “Company”) identified a suspected nation-state associated cyber security threat actor had gained access to some of the Change Healthcare information technology systems. .

Ransomware

Ransomware Government Insurance Manufacturing

New RA Group ransomware gang is the latest group using leaked Babuk source code

Security Affairs

MAY 15, 2023

Compromised organizations operate in different business verticals, including manufacturing, wealth management, insurance providers, and pharmaceuticals. The researchers noticed that the path contains the same mutex name as the Babuk ransomware, a circumstance that suggests the malware borrows Babuk’s leaked source code.

Ransomware

Ransomware Encryption Healthcare Insurance

Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws

Security Affairs

APRIL 26, 2021

Prometei has been observed to be active in systems across a variety of industries, including: Finance, Insurance, Retail, Manufacturing, Utilities, Travel, and Construction.” The post Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws appeared first on Security Affairs. Pierluigi Paganini.

Mining

Mining Retail Insurance Manufacturing

CrowdStrike: Lessons on the Importance of Contracts, Insurance and Business Continuity

IT Governance

JULY 30, 2024

But as a reminder, here are some key facts about the CrowdStrike incident: CrowdStrike is a publicly listed security company, which provides security software to – among many other large organisations – Microsoft. The outage was caused by a bad security update rolled out by CrowdStrike. Learn more about the CIA triad here.)

Insurance

Insurance Risk Encryption Manufacturing

Texas Sues GM for Collecting Driving Data without Consent

Schneier on Security

AUGUST 14, 2024

The suit said those two companies then sold these scores to insurance companies. Insurance companies can use data to see how many times people exceeded a speed limit or obeyed other traffic laws. Some insurance firms ask customers if they want to voluntarily opt-in to such programs, promising lower rates for safer drivers.

Insurance

Insurance Manufacturing Sales Data collection

Senior Executives Beware: The Rise of EvilProxy Phishing Campaigns

KnowBe4

OCTOBER 5, 2023

Menlo Security warns that a social engineering campaign is using the EvilProxy phishing kit to target senior executives across a range of industries, including banking and financial services, insurance, property management and real estate, and manufacturing.

Phishing

Phishing Financial Services Insurance Manufacturing

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

In 2022, the ICICI Bank’s resources were named a “critical information infrastructure” by the Indian government – any harm to it can impact national security. However, despite the critical status of bank infrastructure on the national level, the security of crucial data was not ensured.

Personal data

Personal data Phishing Risk Communications

Medusa ransomware hit over 300 critical infrastructure organizations until February 2025

Security Affairs

MARCH 13, 2025

As of February 2025, Medusa developers and affiliates have impacted over 300 victims from a variety of critical infrastructure sectors with affected industries including medical, education, legal, insurance, technology, and manufacturing.” ” reads the joint advisory. Attackers use Mimikatz to steal credentials.

Ransomware

Ransomware Encryption Insurance Manufacturing

NEW TECH: Cequence Security deploys defense against botnets’ assault on business logic

The Last Watchdog

MARCH 26, 2019

Pick any company in any vertical – financial services, government, defense, manufacturing, insurance, healthcare, retailing, travel and hospitality – and you’ll find employees, partners, third-party suppliers and customers all demanding remote access to an expanding menu of apps — using their smartphones and laptops.

Security

Security Digital transformation Financial Services Risk

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

The Last Watchdog

JULY 30, 2018

DataLocker honed its patented approach to manufacturing encrypted portable drives and landed some key military and government clients early on; the company has continued branching out ever since. You need to rely on external storage to securely transport your data. Park: Any industry that requires security. LW: Makes sense.

Encryption

Encryption Military Passwords Authentication

MY TAKE: Can Hollywood’s highly effective ‘source-code’ security tools help make IoT safe?

The Last Watchdog

SEPTEMBER 7, 2018

Related: HBO hack spurs cyber insurance market. And over the years they’ve also financed security breakthroughs – at the source-code level. These security breakthroughs have not received much mainstream attention. But Hollywood has shelled out multi millions to support the advance of source-code security.

IoT

IoT Security Digital transformation Cloud

State-Sponsored Phishing Campaigns Target 40,000 VIP Individuals

KnowBe4

JULY 5, 2024

Researchers at Menlo Security discovered three state-sponsored phishing campaigns that have targeted 40,000 important individuals over the past three months. “In LegalQloud targets governments and investment banks in North America and impersonates the names of >500 legal firms and steals credentials,” Menlo Security writes.

Phishing

Phishing Insurance Manufacturing Government

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Hunton Privacy

OCTOBER 14, 2021

During the week of October 4, 2021, California Governor Gavin Newsom signed into law bills amending the California Privacy Rights Act of 2020 (“CPRA”), California’s data breach notification law and California’s data security law. Genetic Data: California Data Breach Notification and Data Security Law Amendment Bill.

Privacy

Privacy Insurance Security Data breaches

News alert: Salvador Technologies raises $6M to empower cyber resilience in critical systems

The Last Watchdog

DECEMBER 18, 2023

18, 2023 – Salvador Technologies , the pioneering cyber-attack recovery platform provider for critical infrastructures and industrial organizations, today announced that it has secured $6m in funding. Rehovot, Israel Dec. For more information, please visit www.salvador-tech.com. Media contact: Tony Miller +972 544 870 808 | tony@noteya.com

Artificial Intelligence

Artificial Intelligence Manufacturing Insurance Marketing

Cybersecurity Incident Highlights Questions about Cyber Insurance Coverage

Hunton Privacy

OCTOBER 14, 2014

On October 8, 2014, the Department of Homeland Security reported that over the course of several months, the network of a large critical manufacturing company was compromised. The incident raises some issues for cyber insurance.

Insurance

Insurance Cybersecurity Manufacturing Information Security

MY TAKE: Massive Marriott breach continues seemingly endless run of successful hacks

The Last Watchdog

DECEMBER 3, 2018

I have a Yahoo email account, I’ve shopped at Home Depot and Target , my father was in the military and had a security clearance, which included a dossier on his family, archived at the U.S. Office of Personnel Management , I’ve had insurance coverage from Premera Blue Cross and I’ve stayed at the Marriott Marquis in San Francisco.

Authentication

Authentication Military Access Insurance

SSL Bugs Likely to Have Insurance Coverage Implications

Hunton Privacy

FEBRUARY 28, 2014

Hunton & Williams Insurance Litigation & Counseling partner Lon Berk reports: The recently publicized Secure Sockets Layer (“SSL”) bug affecting Apple Inc. products raises a question regarding insurance coverage that is likely to become increasingly relevant as “The Internet of Things” expands.

Insurance

Insurance Manufacturing Risk Security

The Week in Cyber Security and Data Privacy: 16–22 October 2023

IT Governance

OCTOBER 24, 2023

Incident details: Network security incident, where allegedly AlphV gained unauthorised access and made demands to the hospital’s leadership, suggesting a ransomware attack. D-Link Corporation Provides Details about an Information Disclosure Security Incident Date of breach: 2 October 2023. Records breached: Around 700 records.

Data Privacy

Data Privacy Privacy Security Data breaches

Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk

The Security Ledger

AUGUST 20, 2019

We talk to Bruce McDonnell of the East West Institute about how insurers are responding. Related Stories Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware Podcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged Threats NotPetya Horror Story Highlights Need for Holistic Security.

Insurance

Insurance Risk Healthcare Manufacturing

Time and tide waits for no man – IoT in Insurance

CGI

MAY 27, 2016

Time and tide waits for no man – IoT in Insurance. This old saying could also be applied for what is happening in the insurance market with IoT and that given the drive behind IoT in both the consumer and business markets. For example, car insurance could be varied between theft and fully comprehensive when the Car is not being used.

Insurance

Insurance IoT Marketing Manufacturing

Podcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged Threats

The Security Ledger

OCTOBER 23, 2018

In this episode of the podcast (#117), we go deep on one of the hottest sectors around: cyber insurance. In the first segment, we talk with Thomas Harvey of the firm RMS about the problem of “silent cyber” risk to insurers and how better modeling of cyber incidents is helping to address that threat. Read the whole entry. »

Insurance

Insurance Risk Digital transformation Ransomware

CyberheistNews Vol 13 #20 [Foot in the Door] The Q1 2023's Top-Clicked Phishing Scams | INFOGRAPHIC

KnowBe4

MAY 16, 2023

Building up your organization's human firewall by fostering a strong security culture is essential to outsmart bad actors. Learn about the real risks of weak passwords, why password management is key to building a strong security culture, and our best advice on how to protect your users and your organization.

Phishing

Phishing Insurance Passwords Ransomware

Enterprise SIEMs Miss 76 Percent of MITRE ATT&CK Techniques

eSecurity Planet

JUNE 27, 2023

Security information and event management (SIEM) systems only have detections for 24 percent of the 196 techniques in MITRE ATT&CK v13, according to a new report. “This implies that adversaries can execute around 150 different techniques that will be undetected by the SIEM,” says the CardinalOps report.

Metadata

Metadata Financial Services Insurance Manufacturing

MY TAKE: SMBs can do much more to repel ransomware, dilute disinformation campaigns

The Last Watchdog

SEPTEMBER 20, 2019

Current attack trends add urgency, and catching up on doing basic security best practices isn’t enough. Eventually, governments will address the risk by beefing up security and purchasing cyber insurance, which go hand in glove. There are some big, unanswered questions about supply chain security surrounding voting machines.

Ransomware

Ransomware Government Security Retail

Is Pepsi Okay? Bottling Plant Suffers Malware Attack

IT Governance

FEBRUARY 16, 2023

In a security notice filed with Montana’s Attorney General office, Pepsi explained that the breach started on 23 December 2022. Pepsi said that it “took prompt action to contain the incident and secure [its] systems”. What went wrong?

Data breaches

Data breaches Access Insurance Manufacturing

Microsegmentation Is Catching On as Key to Zero Trust

eSecurity Planet

NOVEMBER 10, 2021

For a security technology that’s only a few years old, microsegmentation is catching on quickly. According to a new report from edge security vendor Byos, 88 percent of cybersecurity leaders believe microsegmentation is essential to achieving zero trust security, and 83 percent are currently leveraging microsegmentation in some form.

Communications

Communications IoT Access Marketing

Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia

McLaren Health Care revealed that a data breach impacted 2.2 million people

Webinars

Trending Sources

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Webinars

Ransomware infected systems at Xchanging, a DXC subsidiary

Belden discloses data breach as a result of a cyber attack

Phishing campaign targeted US executives exploiting a flaw in Indeed job search platform

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Trojanized Comm100 Live Chat app installer distributed a JavaScript backdoor

Toyota disclosed a data breach after ZeroSevenGroup leaked stolen data on a cybercrime forum

US. rail and locomotive company Wabtec hit with Lockbit ransomware

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

A massive phishing campaign using QR codes targets the energy sector

Nice Suzuki, sport: shame dealer left your data up for grabs

The Top 5 Reasons to Use an API Management Platform

Luxottica data breach exposes info of LensCrafters and EyeMed patients

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

US CISA and FBI publish joint alert on DarkSide ransomware

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

US pharmacy outage caused by Blackcat ransomware attack on Optum Solutions

New RA Group ransomware gang is the latest group using leaked Babuk source code

Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws

CrowdStrike: Lessons on the Importance of Contracts, Insurance and Business Continuity

Texas Sues GM for Collecting Driving Data without Consent

Senior Executives Beware: The Rise of EvilProxy Phishing Campaigns

Multinational ICICI Bank leaks passports and credit card numbers

Medusa ransomware hit over 300 critical infrastructure organizations until February 2025

NEW TECH: Cequence Security deploys defense against botnets’ assault on business logic

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

MY TAKE: Can Hollywood’s highly effective ‘source-code’ security tools help make IoT safe?

State-Sponsored Phishing Campaigns Target 40,000 VIP Individuals

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

News alert: Salvador Technologies raises $6M to empower cyber resilience in critical systems

Cybersecurity Incident Highlights Questions about Cyber Insurance Coverage

MY TAKE: Massive Marriott breach continues seemingly endless run of successful hacks

SSL Bugs Likely to Have Insurance Coverage Implications

The Week in Cyber Security and Data Privacy: 16–22 October 2023

Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk

Time and tide waits for no man – IoT in Insurance

Podcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged Threats

CyberheistNews Vol 13 #20 [Foot in the Door] The Q1 2023's Top-Clicked Phishing Scams | INFOGRAPHIC

Enterprise SIEMs Miss 76 Percent of MITRE ATT&CK Techniques

MY TAKE: SMBs can do much more to repel ransomware, dilute disinformation campaigns

Is Pepsi Okay? Bottling Plant Suffers Malware Attack

Microsegmentation Is Catching On as Key to Zero Trust

Stay Connected