Is cybersecurity doing enough to prevent the next Colonial Pipeline attack?

Two years have passed since the Colonial Pipeline incident, but critical infrastructure providers aren’t doing enough to proactively mitigate attacks. 

By Matthew Parsons, Brian Knudtson and Alex Reid • May 8, 2023

Western Digital confirms customer data accessed by hackers in attack

The company has begun notifying customers about stolen data and expects to restore its online store next week.

By David Jones • May 8, 2023

Explore the Trendline➔

Top 5 stories from Cybersecurity Dive

A wave of rules, regulations and federal action is putting pressure on businesses to shore up security amid a backdrop of emboldened threat actors has a nice ring to it.

By Cybersecurity Dive staff

Former Uber CSO avoids prison time for ransomware coverup

Joseph Sullivan was convicted last year after covering up a cyberattack while the ride sharing firm was under a Federal Trade Commission probe.

By David Jones • May 5, 2023

Dallas still recovering from ransomware on eve of municipal election

City officials say the attack would not affect the election, but many services remain down.

By Matt Kapko • May 5, 2023

Dallas ransomware attack causes critical service outages

Websites for the city and its police department, which serves a population of nearly 1.3 million people, currently return 503 error pages.

By Matt Kapko • May 4, 2023

Companies need a wakeup call to fix chronic security shortcomings, cyber experts say

One researcher wonders if the industry needs another Snowden-like moment to spring organizations into action.

By Matt Kapko • May 3, 2023

NCR restores more services following ransomware attack

The company, which provides point-of-sale and back-office services, is still working to regain full access for restaurant and retail customers.

By David Jones • April 26, 2023

Teenagers, young adults pose prevalent cyberthreat to US, Mandiant says

The brains behind high-profile attacks last year, teenagers and young adults use sophisticated social engineering techniques for intrusions.

By Matt Kapko • April 25, 2023

Supply chain attack that hit 3CX caught at least 4 other victims, Symantec says

Malware-laced financial trading software X_Trader ensnared two critical infrastructure organizations in the energy sector. 

By Matt Kapko • April 24, 2023

3CX has a 7-part plan to shore up its security

The company is planning significant security upgrades and changes to network operations after a historic attack from a state-linked actor.

By David Jones • April 20, 2023

3CX attack caused by another supply chain attack, Mandiant says

Mandiant Consulting CTO Charles Carmakal called the incident very novel and quite scary after the firm traced the attack to a previous compromise in financial trading software from Trading Technologies.

By Matt Kapko • April 20, 2023

NCR in recovery as ransomware disrupts widely used point-of-sale system

In-restaurant purchases are still being processed on NCR Aloha, but other capabilities and business processes remain down, the company said Monday.

By Matt Kapko • Updated April 20, 2023

Rorschach ransomware, with a rare encryption speed, makes it even harder for companies to respond

The potential impact and victims claimed by Rorschach remain unknown, but one expert said some yet-undetected attacks are likely underway.

By Matt Kapko • April 14, 2023

3CX threat actor named as company focuses on security upgrades, customer retention

Mandiant attributed the supply chain attack to a North Korea-linked adversary that targeted systems using Windows-based malware.

By David Jones • April 12, 2023

Western Digital restores local access to My Cloud Home customers following security breach

The data storage company has provided limited updates to customers after disclosing the initial incident.

By David Jones • April 11, 2023

3CX updates Windows app for desktop following supply chain attack

The provider of business phone and messaging services also offered guidance on how to reset credentials.

By David Jones • April 7, 2023

3CX makes progress restoring Windows app from state-linked supply chain attack

The provider plans to change security policies and procedures to boost resilience despite what it calls a “handful of cases” tied to the malware incident.

By David Jones • April 5, 2023

Western Digital cyber incident is credit negative: Moody’s analyst

The data storage firm will face added pressure to its credit profile if the security incident further disrupts operations, one analyst said.

By David Jones • April 4, 2023

Cyberattacks hit almost all companies last year, Sophos says

A constant barrage of malicious activity has organizations reeling, negatively impacting their ability to strategize or accomplish IT projects. 

By Matt Kapko • April 4, 2023

Experts warn against ransomware complacency

Despite reports of fewer ransomware-related cyber insurance claims and decelerating premiums in 2022, experts say the threat is still serious and evolving.

By Alexei Alexis • April 3, 2023

Western Digital takes systems offline after threat actor gains access to company data

The data storage firm warned that parts of its business operations may continue to see disruptions.

By David Jones • April 3, 2023

3CX retains Mandiant to investigate supply chain attack with global reach

Google has invalidated the 3CX software security certificate, and Microsoft software installer files can no longer be downloaded via Chrome. A new installer and certificate are in development.

By David Jones • March 31, 2023

IBM file transfer service under active exploit, security researchers warn

Ransomware groups are still exploiting a vulnerability in unpatched versions of Aspera Faspex almost four months after IBM issued a patch.

By Matt Kapko • March 31, 2023

Supply chain attack against 3CX communications app could impact thousands

Researchers warn a state-linked actor has launched malicious activity against a voice application widely used by major corporate customers.

By David Jones • March 30, 2023

Australia’s Crown Resorts hit in Clop ransomware spree

The company’s investigation into the attack is ongoing and it’s unable to confirm the type or amount of data potentially compromised.

By Matt Kapko • March 30, 2023