3CX threat actor named as company focuses on security upgrades, customer retention

Mandiant attributed the supply chain attack to a North Korea-linked adversary that targeted systems using Windows-based malware.

By David Jones • April 12, 2023

Western Digital restores local access to My Cloud Home customers following security breach

The data storage company has provided limited updates to customers after disclosing the initial incident.

By David Jones • April 11, 2023

3CX updates Windows app for desktop following supply chain attack

The provider of business phone and messaging services also offered guidance on how to reset credentials.

By David Jones • April 7, 2023

3CX makes progress restoring Windows app from state-linked supply chain attack

The provider plans to change security policies and procedures to boost resilience despite what it calls a “handful of cases” tied to the malware incident.

By David Jones • April 5, 2023

Western Digital cyber incident is credit negative: Moody’s analyst

The data storage firm will face added pressure to its credit profile if the security incident further disrupts operations, one analyst said.

By David Jones • April 4, 2023

Cyberattacks hit almost all companies last year, Sophos says

A constant barrage of malicious activity has organizations reeling, negatively impacting their ability to strategize or accomplish IT projects. 

By Matt Kapko • April 4, 2023

Experts warn against ransomware complacency

Despite reports of fewer ransomware-related cyber insurance claims and decelerating premiums in 2022, experts say the threat is still serious and evolving.

By Alexei Alexis • April 3, 2023

Western Digital takes systems offline after threat actor gains access to company data

The data storage firm warned that parts of its business operations may continue to see disruptions.

By David Jones • April 3, 2023

3CX retains Mandiant to investigate supply chain attack with global reach

Google has invalidated the 3CX software security certificate, and Microsoft software installer files can no longer be downloaded via Chrome. A new installer and certificate are in development.

By David Jones • March 31, 2023

IBM file transfer service under active exploit, security researchers warn

Ransomware groups are still exploiting a vulnerability in unpatched versions of Aspera Faspex almost four months after IBM issued a patch.

By Matt Kapko • March 31, 2023

Supply chain attack against 3CX communications app could impact thousands

Researchers warn a state-linked actor has launched malicious activity against a voice application widely used by major corporate customers.

By David Jones • March 30, 2023

Australia’s Crown Resorts hit in Clop ransomware spree

The company’s investigation into the attack is ongoing and it’s unable to confirm the type or amount of data potentially compromised.

By Matt Kapko • March 30, 2023

White House eyes the next frontier of cybersecurity — space

The focus comes more than a year into the Ukraine war, which led to nation state attacks on commercial satellites.

By David Jones • March 30, 2023

Lumen Technologies says ransomware attack disrupted call centers

The company has restored basic services, and is working to get operations fully back to normal.

By David Jones • March 29, 2023

Clop ransomware group triggers new attack spree, hitting household brands

A patch has been available for a vulnerability in GoAnywhere since early February, but a threat actor continues to claim additional victims.

By Matt Kapko • March 28, 2023

Lumen Technologies hit with 2 separate security incidents

The company, in the same filing with the SEC, said a ransomware incident and a separate malware attack led to a limited amount of data being stolen.

By David Jones • March 28, 2023

CISA summons outside tips to alert victims of early-stage ransomware

Post-breach notifications might seem too late for victim organizations, but swift action can prevent ransomware and data exfiltration.

By Matt Kapko • March 27, 2023

Ransomware gangs incite fear in victims to fuel attacks

Attacks involving data theft nearly doubled and harassment spiked 20 times by late 2022, Palo Alto Networks Unit 42 said.

By Matt Kapko • March 21, 2023

Ransomware hit critical infrastructure hard in 2022, FBI says

Many ransomware attacks go unreported to law enforcement, making it difficult for authorities to assess the full scope of impact.

By Matt Kapko • March 15, 2023

MKS Instruments hit by class-action litigation following ransomware attack

The company, a supplier to the semiconductor industry, has begun to recover its production capabilities and is working to upgrade its cyber defenses.

By David Jones • March 15, 2023

Dole doesn’t expect to recover full costs of ransomware attack

The complex insurance market means the ability to recover financially in many cases is difficult, but Dole said the overall impact of the incident was limited.

By David Jones • March 8, 2023

Insurance holding company Group 1001 says operations restored after ransomware attack

The company did not pay a ransom following a February attack that disrupted operations at several of its member companies.

By David Jones • March 7, 2023

LastPass aftermath leaves long to-do list for business customers

Organizations using the password manager are exposed after a major breach compromised credentials and, potentially, business secrets.

By Matt Kapko • March 6, 2023

MKS Instruments says February ransomware attack will clip $200M from revenue

The technology supplier for semiconductor manufacturing and advanced electronics had to temporarily halt some of its operations, disrupting its supply chain, following the attack. 

By David Jones • March 2, 2023

LastPass breach timeline: How a monthslong cyberattack unraveled

A threat actor evaded detection for months and blended in with legitimate activity after targeting 1 of 4 engineers with access to keys to the kingdom.

By Matt Kapko • Updated March 3, 2023