Tag: data breach
‘An unmitigated disaster’-CrowdStrike update initiates global Microsoft outage
July 19, 2024Ken Showers, Managing Editor
AUSTIN, Texas — The CrowdStrike software update that cascaded into a series of outages in important systems around the globe on July 19 shows how vulnerable the country’s tech infrastructure is to disruption, security experts say.
While CrowdStrike has stressed that the incident was not a cyberattack, it highlights the dangers of how hastily issued updates can become a vector of attack for cybercriminals, says Jim McGann, vice president of strategic partnerships at Index Engines,...
AT&T addressing customer data breach
July 12, 2024SSN Staff
DALLAS — AT&T has released a statement regarding a customer data breach that occurred in April of 2024.
According to the company, in April AT&T learned that customer data was illegally downloaded from its workspace on a third-party cloud platform. As a result they launched an investigation and engaged leading cybersecurity experts to understand the nature and scope of the criminal activity.
“We have taken steps to close off the illegal access point,” AT&T wrote. “We...
Secure by design - solving online fraud through better user experiences
June 19, 2024Ken Showers, Managing Editor
YARMOUTH, Maine — In 2022 a hacker was able to breach the network of Medibank, an Australian-based healthcare provider, and what resulted was the theft of 9.7 million people’s private data for consumption on the internet.
How did this data breach occur? According to reports an IT contractor with access to the passwords and credentials of multiple accounts had malware on their PC, giving bad actors access to Medibank’s systems, an egregious error that could have been prevented...
File hosting service Dropbox breached by cyberattack
May 8, 2024Ken Showers, Managing Editor
SAN FRANCISCO — There’s been another major disruption to hit the cybersecurity world, as online file hosting service Dropbox has reported a data breach with the U.S. Security and Exchange Commission (SEC).
In its SEC filing, the company says it became aware of the incident in April.
“When we became aware of the incident, we launched an investigation with industry-leading forensic investigators to understand what happened and mitigate risks to our users,”...
Bit defenders
February 21, 2024Ken Showers, Managing Editor
This week international members of law enforcement patted themselves on the back for slaying the proverbial dragon of LockBit, but in reality, it’s just one head of the Hydra.
I don’t mean to lessen or downplay that accomplishment either. This has been a serious blow to global cybercriminal activity and a victory against destabilizing actions taken by politically aligned criminal organizations (because let’s not pretend the ransomware gangs are largely state sponsored)....
Johnson Controls hit by ransomware attack
September 28, 2023Ken Showers, Managing Editor
CORK, Ireland – A data breach has resulted in a large-scale ransomware attack perpetrated against Johnson Controls International.
The news comes courtesy of a regulatory filing made on Wednesday, Sept. 27, 2023, in which Johnson Controls details a cybersecurity incident that affected portions of its internal information technology infrastructure and applications, according to the filling. While the company notes it has implemented workarounds for affected systems and said that...
It’s time to clip Cl0p
August 23, 2023Ken Showers, Managing Editor
Onomatopoeia? More like I-don’t-want-to-pay-ya. That’s right, this week I want to talk about the out-of-control rise of ransomware.
There were some other hot topics this week, like NAPCO’s sudden misfortune, but I’d like to hear from their earnings call next week for full context. Besides, all weekend I have heard about nothing but more and more ransomware incidents hitting some notable names.
I shouldn’t be surprised to hear about it either. According to the NCC...
Healthcare workers' info exposed in B.C. health data breach
August 2, 2023SSN Staff
VICTORIA, British Columbia, Canada – On July 13, the Health Employers Association of BC (HEABC) learned that a server housing information, websites, and application forms for Health Match BC (HMBC) had been the target of a cyber-attack.
Information released about the data breach suggests that information associated with as many as 240,000 emails had been accessed. That information could include a person’s home addresses, passport and license details, and other personal data....
Fintech company Revolut plagued by security issues
July 12, 2023Ken Showers, Managing Editor
LONDON – It’s been a tough week for global neobank and fintech company Revolut as it deals with the fallout of both a system flaw and cybersecurity data breach.
A flaw in the banking entity’s U.S. payment system allowed criminals to steal as much as $20 million in funds over a span of several months in 2022. According to reporting by the Financial Times the incident has yet to be publicly disclosed and is the latest setback for the company as it struggles to obtain its banking...
Action1 releases free tool mitigating threat from MOVEit vulnerability
July 3, 2023SSN Staff
HOUSTON – The Action1 Corporation, a provider of a risk-based patch management platform has launched a free tool designed to empower IT teams in detecting compromised MOVEit instances and defending against ransomware attacks exploiting this vulnerability.
Security Systems News briefly covered the initial effects of the MOVEit data breach which have continued to grow in scale and the number of victims. In order to help organizations mitigate the threat of MOVEit vulnerability, Action1...