Enterprises are getting better at detecting security incidents

Google Cloud’s Mandiant saw significant improvements in how organizations track down threats, yet hackers are still abusing common threat vectors.

By David Jones • April 23, 2024

UnitedHealth admits it paid a ransom in Change Healthcare attack

The insurer also confirmed Monday that more than 20 screenshots of potentially stolen patient data were posted on the dark web for about a week.

By Emily Olsen • Updated April 24, 2024

Explore the Trendline➔

Securing the cloud

The ubiquity of the cloud has left security gaps for organizations, leaving them to navigate a complex vendor landscape and defend their technology supply chain

By Cybersecurity Dive staff

Palo Alto Networks quibbles over impact of exploited, compromised firewalls

The security vendor downplayed the impact of exploit activity, describing most attempts as unsuccessful, but outside researchers say 6,000 devices are vulnerable.

By Matt Kapko • April 23, 2024

Mitre R&D network hit by Ivanti zero-day exploits

Exploits of Ivanti VPN products have hit roughly 1,700 organizations. To Mitre, guidance from the vendor and government fell short.

By Matt Kapko • April 22, 2024

Frontier Communications hit by cyberattack, IT systems impacted

The telecom provider said a cybercrime group intruded its IT infrastructure and gained access to PII. The operational disruption following its containment "could be considered material."

By Matt Kapko • April 19, 2024

Cisco Duo MFA codes exposed in third-party breach

About 1% of the MFA and single sign-on provider’s business customers are impacted. An attacker intruded the third-party vendor’s systems via phishing.

By Matt Kapko • April 16, 2024

Palo Alto Networks fixes maximum severity, exploited CVE in firewalls

The security vendor said a “limited number of attacks” were linked to the exploited vulnerability. Volexity observed exploits dating back to March 26.

By Matt Kapko • April 16, 2024

With Sisense compromise, the race begins to understand the impact

CISA is working with private industry partners to investigate the attack on the data analytics platform with particular concern about the impact on critical infrastructure. 

By David Jones • April 12, 2024

CISA assessing threat to federal agencies from Microsoft adversary Midnight Blizzard

Microsoft previously warned that the Russia-linked threat group was expanding malicious activity following the hack of senior company executives, which it disclosed in January.

By David Jones • April 5, 2024

Microsoft Exchange state-linked hack entirely preventable, cyber review board finds

The technology giant’s corporate culture fell short on security investments and risk management, and needs significant reforms, according to a damning report by the U.S. Cyber Safety Review Board.

By David Jones • April 3, 2024

AT&T hit with class action suit over massive data breach

The breach was a “direct result” of AT&T’s failure to implement adequate cybersecurity procedures, the suit alleges.

By Alexei Alexis • April 2, 2024

Change Healthcare faces potential class action as lawsuits rack up

At least six federal lawsuits seeking class-action status were filed since the cyberattack, alleging the technology firm didn’t have reasonable cybersecurity measures.

By Emily Olsen • March 8, 2024

Fidelity Investments Life Insurance says customer data breach linked to third-party hack

The incident at Infosys McCamish also led to a data breach of more than 57,000 Bank of America customers.

By David Jones • March 8, 2024

Amex cardholder data exposed in merchant processor hack

The point-of-sale attack on a merchant processor may have compromised card numbers, expiration dates and cardholder names, Amex said in a state regulatory filing.

By Caitlin Mullen • March 5, 2024

Bank of America customer data exposed in IT provider breach

Infosys McCamish Systems, which works closely with the lender, was impacted by the cybersecurity incident in November that exposed customer Social Security numbers and other account information.

By Rajashree Chakravarty , Naomi Eide • Feb. 13, 2024

HHS settles cybersecurity investigation with Montefiore Medical Center

The nonprofit will pay $4.75 million to settle allegations that data security failures allowed an employee to steal and sell the protected health information of thousands of patients.

By Emily Olsen • Feb. 8, 2024

Mortgage industry attack spree punctuates common errors

Attacks against Mr. Cooper Group, Fidelity National Financial, First American Financial and loanDepot impacted operations and put customers in a bind.

By Matt Kapko • Feb. 6, 2024

AnyDesk initiates extensive credentials reset following cyberattack

The widely used remote access tool revoked all passwords to its web portal as researchers warn about potential theft of AnyDesk’s code signing certificate.

By Matt Kapko • Feb. 5, 2024

Cloudflare hit by follow-on attack from previous Okta breach

A threat actor that previously intruded Cloudflare’s network through its Okta environment regained access with mistakenly unrotated credentials.

By Matt Kapko • Feb. 2, 2024

MOVEit liabilities mount for Progress Software

The company revealed multiple government investigations are underway into the MOVEit vulnerability. It’s also party to more than 100 class-action lawsuits.

By Matt Kapko • Jan. 30, 2024

Schneider Electric hit by ransomware attack against its sustainability business division

Cactus ransomware reportedly claimed credit for the mid-January attack, and the company unit hopes to restore operations in the next couple of days.

By David Jones • Jan. 30, 2024

HPE hit by a monthslong cyberattack on its cloud-based email

The attack by Midnight Blizzard, the group that recently hit Microsoft, stole emails and data from HPE employees in cybersecurity and other business units.

By Matt Kapko • Jan. 25, 2024

US data compromises surged to record high in 2023

Breached organizations are withholding critical information more often than ever, underscoring a trend toward opaque notices, the Identity Theft Resource Center said.

By Matt Kapko • Jan. 25, 2024

VF Corp. cyberattack impacted 35.5M consumers

The North Face and Vans parent company originally reported the incident at the height of the holiday season.

By Kaarin Vembar • Jan. 23, 2024

The number of patient records exposed in data breaches doubled in 2023

Though the number of data breaches declined slightly from 2022, more than 116 million records were exposed last year, Fortified Health Security found. 

By Emily Olsen • Jan. 18, 2024