Breaches: Page 6
-
Jack Taylor via Getty Images
Big names disclose MOVEit-related breaches, including PwC, EY and Genworth Financial
More than 100 organizations have been hit as part of the MOVEit attack campaign, including PBI Research Services, which exposed millions of customer data files to theft.
By David Jones • June 23, 2023 -
Retrieved from Dole.
Dole says February ransomware attack breached data of almost 3,900 US workers
The fresh produce giant disclosed the data security impact in a filing with the Maine Attorney General.
By David Jones • June 22, 2023 -
Explore the Trendline➔
BNMK0819 via Getty Images
TrendlineSecuring the cloud
A host of new technologies and a spate of incidents at top providers means businesses have even more cloud security conundrums to consider.
By Cybersecurity Dive staff -
Bill Oxford via Getty Images
Progress Software faces federal class action lawsuits as MOVEit breach exposure widens
Louisiana residents allege their personal financial information was put at risk after the state's motor vehicles department had data exposed in the MOVEit data breach.
By David Jones • June 21, 2023 -
LUNAMARINA/iStock/Getty Images Plus via Getty Images
US puts $10M bounty on Clop as federal agencies confirm data compromises
Additional private sector companies have disclosed attacks after multiple vulnerabilities were found in MOVEit Transfer software.
By David Jones • June 20, 2023 -
Naomi Eide/Cybersecurity Dive
Another MOVEit vulnerability found, as state and federal agencies reveal breaches
The third vulnerability since Progress Software first disclosed a MOVEit Transfer zero day arrived just as CISA officials said a “small number” of federal agencies were impacted.
By Naomi Eide • June 16, 2023 -
TU IS via Getty Images
Clop names a dozen MOVEit victims, but holds back details
As its deadline expired, the ransomware group released the first batch of victim organizations, most of which were U.S.-based, ReliaQuest found.
By Naomi Eide • June 15, 2023 -
NicholasBPhotography via Getty Images
Minnesota Department of Education exposed in MOVEit data breach
The departments discovered on May 31 that 24 of its files on the MOVEit server had been accessed by an outside entity, including 95,000 student names in foster care across the state.
By Anna Merod • June 14, 2023 -
Mariakray via Getty Images
Ahead of summer holiday weekends, IT security leaders brace for deliberate cyber mischief
Recent history shows holiday weekends and vacations provide an attack surface bonanza for threat actors.
By David Jones • May 26, 2023 -
Chainarong Prasertthai via Getty Images
CISA updates ransomware guide 3 years after its debut
The #StopRansomware guide, updated in partnership with the FBI, NSA and MS-ISAC, reflects aggressive new techniques used by threat actors, including double extortion.
By David Jones • May 24, 2023 -
Courtesy of Taco Bell
Yum Brands faces class action suits from employees after ransomware attack
The Taco Bell and KFC operator is facing litigation after some personal data of company employees was stolen in the attack.
By David Jones • May 16, 2023 -
Ian Tuttle / Stringer via Getty Images
Western Digital cyberattack not expected to have material impact on future earnings
The company is coordinating with law enforcement while it continues a forensic investigation.
By David Jones • May 15, 2023 -
Danai Jetawattana via Getty Images
Dragos says it thwarted extortion bid by known ransomware threat group
The hackers accessed limited information by impersonating a new employee, and the cybersecurity firm warns some stolen data may be leaked.
By David Jones • May 11, 2023 -
Ian Tuttle via Getty Images
Western Digital confirms customer data accessed by hackers in attack
The company has begun notifying customers about stolen data and expects to restore its online store next week.
By David Jones • May 8, 2023 -
LeoPatrizi via Getty Images
Google, Dashlane separately move to eliminate passwords
In unrelated moves, the companies highlighted a growing effort to phase out dependence on passwords amid a rise in phishing attacks.
By David Jones • May 4, 2023 -
Gegham Qalajyan via Getty Images
3CX threat actor named as company focuses on security upgrades, customer retention
Mandiant attributed the supply chain attack to a North Korea-linked adversary that targeted systems using Windows-based malware.
By David Jones • April 12, 2023 -
Ian Tuttle via Getty Images
Western Digital restores local access to My Cloud Home customers following security breach
The data storage company has provided limited updates to customers after disclosing the initial incident.
By David Jones • April 11, 2023 -
Chung Sung-Jun via Getty Images
Samsung employees leaked corporate data in ChatGPT: report
Data privacy is a concern for companies with employees using ChatGPT’s web-based interface, as input data is used to train and improve the tool.
By Lindsey Wilkinson • April 10, 2023 -
PeopleImages via Getty Images
Broad MFA, rapid patching a must to stop cyberattacks, Marsh McLennan finds
A study says organizations need to implement automated hardening techniques to protect systems against future data breaches.
By David Jones • April 6, 2023 -
ridvan_celik via Getty Images
IT security leaders still told to keep data breaches quiet, study finds
Bitdefender research found 7 in 10 IT and security professionals in the U.S. have been asked to keep a breach confidential.
By David Jones • April 6, 2023 -
gorodenkoff via Getty Images
3CX retains Mandiant to investigate supply chain attack with global reach
Google has invalidated the 3CX software security certificate, and Microsoft software installer files can no longer be downloaded via Chrome. A new installer and certificate are in development.
By David Jones • March 31, 2023 -
WhataWin/Getty Images via Getty Images
CISA summons outside tips to alert victims of early-stage ransomware
Post-breach notifications might seem too late for victim organizations, but swift action can prevent ransomware and data exfiltration.
By Matt Kapko • March 27, 2023 -
Retrieved from Wawa website.
Wawa to pay up to $28.5M in data breach settlement
The chain’s latest payout will go to the financial institutions involved in the 2019 incident, continuing a series of payments it has made to customers and states over the past year.
By Brett Dworski • March 16, 2023 -
Chip Somodevilla via Getty Images
Blackbaud to pay $3M to settle SEC charges of a misleading ransomware investigation
The regulator said the cloud-based software provider made misleading disclosures about the scope of a 2020 ransomware attack.
By David Jones • March 10, 2023 -
Illustration: Yann Bastard for Industry Dive
Deep DiveHacking healthcare: With 385M patient records exposed, cybersecurity experts sound alarm on breach surge
Healthcare companies must harden their defenses, but it may require regulators and lawmakers to raise the bar on security standards, experts say.
By Jasmine Ye Han • March 10, 2023 -
sdecoret via Getty Images
Worried about data breaches? Blame the information sector
Three in five records exposed in a data breach last year came from software, telecom, data processing and web hosting companies, Flashpoint found.
By Matt Kapko • March 9, 2023
Previous
