Security has an underlying defect: passwords and authentication

Cyberattacks are fueled by the shortcomings of business authentication controls. Bad things happen when access falls apart and credentials land in the wrong hands.

By Matt Kapko • Sept. 18, 2023

MGM Resorts discloses cyber incident in filing with SEC

Moody’s Investors Service called the cyber incident credit negative, and MGM is still taking steps to protect data and fully secure business operations. 

By David Jones • Sept. 13, 2023

Explore the Trendline➔

Securing the cloud

A host of new technologies and a spate of incidents at top providers means businesses have even more cloud security conundrums to consider. 

By Cybersecurity Dive staff

Compromised credential use jumps 300% in cloud intrusions: IBM

Valid credentials are also a hot commodity in the cybercrime marketplace, accounting for the vast majority, almost 90%, of assets for sale on the dark web, IBM found.

By Matt Kapko • Sept. 13, 2023

High-profile CVEs turn up in vulnerability exploit sales

Flashpoint observed 27 vulnerability exploits listed for sale or purchased on the dark web during the first half of the year. One-third were linked to Microsoft products.

By Matt Kapko • Sept. 12, 2023

MGM Resorts takes systems offline as it investigates cyberattack

The company restored full operations to dining, gaming and entertainment venues Monday night, following earlier reports payment systems, digital room keys and reservations systems were down at multiple properties. 

By David Jones • Updated Sept. 12, 2023

Microsoft crash dump exposed key that led to US cabinet email hacks, investigation finds

A China-based threat group used the key to access a Microsoft engineer’s corporate account and, later, compromised more than two dozen customer email accounts.

By David Jones • Sept. 7, 2023

Suncor CEO says company mostly recovered from June cyberattack

The incident was serious and not worth repeating, President and CEO Rich Kruger said. "I’d rather have a root canal than go through one of these attacks again.”

By David Jones • Aug. 17, 2023

TIAA hit with class-action lawsuit over MOVEit data breach

The suit claims the teachers’ retirement fund did not properly handle sensitive information compromised in the far-reaching cyberattack.

By Anna Merod • Aug. 14, 2023

Threat actors abuse valid accounts using manual tactics, CrowdStrike says

The research underscores the outsized role and prevalence of legitimate credentials as an entry point for cyberattacks.

By Matt Kapko • Aug. 8, 2023

Poor access management besets most cloud compromises, Google says

The prevalence of systems with weak access controls underscores a chronic security problem for organizations storing data in the cloud.

By Matt Kapko • Aug. 3, 2023

MoveIT breach exposes data of 612K Medicare beneficiaries, CMS says

The data was compromised as part of a breach at third-party provider Maximus. The government contractor said the data of as many as 11 million individuals was affected in the incident.

By Rebecca Pifer • July 31, 2023

Valid account credentials are behind most cyber intrusions, CISA finds

The success rate of these techniques underscores the staying power of the most common methods threat actors use to gain initial access to targeted systems.

By Matt Kapko • July 28, 2023

Average cost of healthcare data breach reaches $11M, report finds

The sector continues to be the most expensive industry for data breaches, with costs increasing 53% since 2020.

By Emily Olsen • July 25, 2023

Investigations are causing data breach costs to skyrocket, IBM finds

Organizations are under mounting pressure to conduct more thorough investigations as the complexity of data breaches grow.

By Matt Kapko • July 24, 2023

Microsoft attackers may have data access beyond Outlook, researchers warn

Microsoft is pushing back on claims by Wiz that compromised private encryption keys may have exposed SharePoint, Teams and OneDrive data to an APT actor.

By David Jones • July 21, 2023

Estée Lauder takes down some systems following cyberattack

ALPHV, the ransomware threat actor taking credit for the attack, threatened to reveal more information about the data it claims to have stolen.

By Matt Kapko • July 19, 2023

GoTo, parent company to LastPass, names new CISO

The change in security leadership comes months after the third-party cloud storage service GoTo shares with LastPass was breached.

By Matt Kapko • July 19, 2023

UKG agrees to pay up to $6M in lawsuit tied to 2021 breach

The payroll services provider reached an agreement to settle a class action lawsuit tied to a ransomware attack that targeted its Kronos Private Cloud service.

By Matt Kapko • July 18, 2023

Microsoft hardens key issuance systems after state-backed hackers breach Outlook accounts

The China-linked group, which Microsoft calls Storm-1558, has adopted new techniques after it took steps to disrupt their recent hacking activity.

By David Jones • July 17, 2023

MOVEit mass exploit timeline: How the file-transfer service attacks entangled victims

The slow-moving disaster has ensnared some of the world's largest enterprises. Cybersecurity experts expect further damage to come.

By Matt Kapko • July 14, 2023

Johns Hopkins hit with class action suit following MOVEit data breach

The suit alleges that the health system failed to implement safeguards to secure patients’ health information and provided insufficient details about the stolen data.

By Sydney Halleman • July 12, 2023

Suncor Energy confirms hackers breached Petro-Canada gas stations’ customer rewards data

The company, the largest integrated energy firm in Canada, said field operations were not impacted.

By David Jones • July 6, 2023

MOVEit vulnerability snags almost 200 victims, more expected

The education sector has been hit particularly hard as many widely used vendors in the space confirm impacts linked to the mass exploited vulnerability.

By Matt Kapko • July 5, 2023

Cyberattack exposes data on nearly 9K American and Southwest Airlines pilot applicants

Two of the world’s largest airlines no longer use recruitment portal Pilot Credentials after a cyberattack at the end of April.

By Matt Kapko • June 27, 2023

MOVEit vulnerability ensnares more victims

Some organizations have been impacted due to their direct use of MOVEit while others have been exposed by third-party vendors.

By Matt Kapko • June 27, 2023