breaches
-
Blog
Why vendor breaches still haunt enterprise IT leaders
Nearly half (47%) of enterprises suffered highly disruptive outages due to vendor-related breaches last year, according to research from Resilience. This is a blind spot for businesses, the report said, with many businesses claiming familiarity but not confidence in their reliance on third parties. While 83% of those surveyed described themselves as ‘familiar’ with their third-party vendor systems, just 35%…
Read More » -
Blog
Two Illinois school districts disclose data breaches claimed by ransomware gangs
Two school districts north of Chicago this week confirmed they notified thousands of people about data breaches claimed by ransomware gangs, according to public disclosures. Community High School District 117 says it notified 18,830 people about a June 2024 data breach. Ransomware gang BlackSuit claimed responsibility. “We recently discovered unauthorized access to our network between approximately June 2 and June…
Read More » -
Blog
Amazon Redshift gets new default settings to prevent data breaches
Amazon has announced key security enhancements for Redshift, a popular data warehousing solution, to help prevent data exposures due to misconfigurations and insecure default settings. Redshift is widely used by enterprises for business intelligence and big data analytics for data warehousing, competing with Google BigQuery, Snowflake, and Azure Synapse Analytics. It’s valued for its petabyte-scale data handling efficiency and performance,…
Read More » -
Blog
Massive healthcare breaches prompt US cybersecurity rules overhaul
The U.S. Department of Health and Human Services (HHS) has proposed updates to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) to secure patients’ health data following a surge in massive healthcare data leaks. These stricter cybersecurity rules, proposed by the HHS’ Office for Civil Rights (OCR) and expected to be published as a final rule within 60…
Read More » -
Blog
Nearly all of the top US banks were impacted by third party breaches last year
Virtually all of the top 100 US banks were hit by third party data breaches last year, including every one of the top ten. Research from SecurityScorecard found 97% of firms reported third-party breaches across the year, although only 6% of vendors were compromised. A similar number also suffered fourth-party breaches, traced back to just 2% of vendors. Ryan Sherstobitoff,…
Read More » -
Blog
Texas medical school notifies 1.5 million people of two data breaches that compromised SSNs, medical records, and financial info
Texas Tech University Health Sciences Center over the weekend confirmed it notified almost 1.5 million people about two data breaches that occurred in September. The medical school notified 650,000 people following a breach at the main TTUHSC campus in Lubbock, Texas, and 815,000 people for another breach at the school’s El Paso branch. The following patient info was compromised: Names…
Read More » -
Blog
Warning issued after Chinese hacker group breaches telco firms in “dozens of countries”
A senior national security adviser in the Biden Administration has warned that a Chinese state-sponsored hacking group has breached telecommunications firms in “dozens of countries”. Anne Neuberger, President Biden’s deputy national security adviser, said the campaign attributed to the threat actor known as Salt Typhoon is ongoing, and has breached at least eight US telcos, according to reporting in the…
Read More » -
Blog
US shares tips to block hackers behind recent telecom breaches
CISA released guidance today to help network defenders harden their systems against attacks coordinated by the Salt Typhoon Chinese threat group that breached multiple major global telecommunications providers earlier this year. The U.S. cybersecurity agency and the FBI confirmed the breaches in late October after reports that Salt Typhoon breached multiple broadband providers, including AT&T, T-Mobile, Verizon, and Lumen Technologies.…
Read More » -
Blog
T-Mobile confirms it was hacked in recent wave of telecom breaches
T-Mobile confirms it was hacked in the wave of recently reported telecom breaches conducted by Chinese threat actors to gain access to private communications, call records, and law enforcement information requests. “T-Mobile is closely monitoring this industry-wide attack, and at this time, T-Mobile systems and data have not been impacted in any significant way, and we have no evidence of impacts…
Read More » -
Blog
Cisco says DevHub site leak won’t enable future breaches
Cisco says that non-public files recently downloaded by a threat actor from a misconfigured public-facing DevHub portal don’t contain information that could be exploited in future breaches of the company’s systems. While analyzing the exposed documents, the company found that their contents include data that Cisco publishes for customers and other DevHub users. However, files that shouldn’t have been made…
Read More »