āHiveā Russian Ransomware Gang Shut Down by FBI, DoJ, Europol, Bundeskriminalamt, et al
Law enforcement agenciesĀ from several countries got together and took down the site. They also worked to decrypt victimsā data ...
Securing Against Supply Chain Attacks
Anyone who has been in IT for the last decade knows the risks posed by ransomware and cyberattacks. They have been on our radar as a top concern for many years. But ...
More Details of LastPass Breach: Hackers Used Stolen Encryption Key
A breach at LastPass is the gift that keeps on givingāor taking, depending on your perspective. LastPass parent company GoTo raised the alarm this week that, in addition to stealing encrypted backups ...
RIP Perimeter Security: Critical Infrastructure Breaches Demand New Approach
The ongoing spate of breaches against critical infrastructure and government entities underscores the vulnerability of this sector. In July 2022, officials announced the federal court system had experienced a major data breach ...
Five Incident Response Metrics you Should be Recording
Incident response is a critical aspect of any organization's security operations. A properly functioning incident response process ensures quick and efficient resolution of disruptions. To effectively manage incident response in a security ...
PayPal Credential Stuffing Attacks Renew Calls for MFA
An internal review confirmed that on December 20, 2022, unauthorized parties could use account holdersā login credentials to access their PayPal accounts. In response to what is being called a credential stuffing ...
US No-Fly List Leaked via Airline Dev Server by @_nyancrimew
An unsecured Jenkins server contained secret credentials for more than 40 public-cloud storage buckets.Ā In todayās SBĀ Blogwatch, we say hello to our old friend maia arson crimew ...
Orgs Must Prepare for SEC Cybersecurity Requirements Aimed at Boards
Enterprises might want to spend the next few months checking and bolstering their boardsā cybersecurity chopsābecause by the end of 2023, the Security and Exchange Commission (SEC) is expected to finalize its ...
T-Mobileās SIXTH Breach in 5 years: 37M Usersā PII Leaks
The Un-carrier is In-secure, it seems. Un-believable. In-credibly in-competent. CEO Mike Sievert (pictured)Ā might become un-CEO ...
APIs in Vehicle Software Vulnerable to Attacks
All software today depends on APIs, including the software in newer-model vehicles. And thatās creating serious security issues that have already led to vulnerabilities involving the car owners’ PII, GPS tracking and ...
