Volt Typhoon exploiting zero-day in campaign targeting ISPs, MSPs

Researchers from Black Lotus Labs warn the state-linked adversary is exploiting a vulnerability in Versa Director using custom web shells against the telecom sector.

By David Jones • Aug. 28, 2024

Seattle airport confronts 4th day of cyberattack outages

Most flights are departing and arriving as scheduled, but the Port of Seattle’s websites, phone, email and Wi-Fi are down. Manual processes at check-in counters are causing delays.

By Matt Kapko • Aug. 27, 2024

Several Port of Seattle systems down following ‘possible cyberattack’

IT systems at the port and Seattle-Tacoma International Airport remain offline. The port first reported system outages Saturday morning.

By Matt Kapko • Aug. 26, 2024

Halliburton hit by cyberattack, certain systems impacted

Federal officials said energy services have not been affected, however the company is still working on remediation.

By David Jones • Updated Aug. 23, 2024

After a wave of attacks, Snowflake insists security burden rests with customers

The cloud-based data warehouse vendor remains “slightly muted” about the attacks on its customers because it wasn’t breached, CEO Sridhar Ramaswamy said.

By Matt Kapko • Aug. 22, 2024

Microchip Technology operations, order fulfillment disrupted by cyberattack

The Arizona-based chipmaker disclosed the intrusion in a regulatory filing. Manufacturing facilities and certain IT systems are impacted.

By Matt Kapko • Aug. 21, 2024

CISA warns of active exploits hitting popular CI/CD tool Jenkins

Researchers at CloudSEK and Juniper Networks said a ransomware group targeted Brontoo Technology Solutions by exploiting the critical CVE. The attack disrupted banks in India.

By Matt Kapko • Aug. 20, 2024

Manual techniques are fueling ransomware attacks, CrowdStrike says

2024 is on track to be the highest-grossing year for ransomware payments, Chainalysis found, and threat groups are going after the technology sector.

By Matt Kapko • Aug. 16, 2024

M&A activity can amplify ransomware insurance losses, research finds

The financial severity of claims related to ransomware attacks increased more than 400% from 2022 to 2023, the study found.

By Alexei Alexis • Aug. 14, 2024

Attackers target legacy Cisco Smart Install features

Thousands of Cisco Smart Install IPs remain exposed to the internet as CISA warns that organizations are still employing weak passwords.

By David Jones • Aug. 12, 2024

LoanDepot reports net loss as cyber-related settlement hit Q2 financial results

The company disclosed $27 million in charges primarily related to a settlement deal in connection with a class action lawsuit.

By David Jones • Aug. 9, 2024

Henry Schein’s slow recovery from cyber incident hits Q2 results

William Blair analysts said the “lingering impacts from the cyberattack are somewhat surprising.”

By Nick Paul Taylor • Aug. 8, 2024

CrowdStrike snafu was a ‘dress rehearsal’ for critical infrastructure disruptions, CISA director says

Despite the disruption, Jen Easterly said the outage was a "useful exercise" to determine the resiliency of critical infrastructure organizations.

By Matt Kapko • Aug. 8, 2024

Are cybersecurity professionals OK?

Absorbing the impacts of cyberattacks takes a personal toll on defenders. Separating the evil they see from all that’s good in the world doesn’t always come easy.

By Matt Kapko • Aug. 7, 2024

Ransomware swells despite collective push to curb attacks

Rapid7 researchers observed more than 2,570 ransomware attacks in the first half of 2024. That’s the equivalent of 14 publicly claimed attacks per day, on average.

By Matt Kapko • Aug. 6, 2024

Inside the NOC used to defend this year’s Black Hat

With the power of security operations automation, we are freed up from the more mundane tasks and can examine more complex threat patterns to protect the conference.

By James Holland, Senior Solutions Architect, Palo Alto Networks • Aug. 5, 2024

Microsoft confirms Azure, 365 outage linked to DDoS attack

The company said its own response to the outage may have made the impact worse.

By David Jones • July 31, 2024

Some companies pay ransomware attackers multiple times, survey finds

Even after paying a ransom, more than a third of companies either did not receive the decryption keys or were given corrupted keys, Semperis found.

By Justin Bachman • July 31, 2024

Water systems under siege: How CISOs can protect critical infrastructure from cyberthreats

As regulatory oversight evolves, most CISOs are focused on modernizing and improving OT cybersecurity.

July 29, 2024

Healthcare is an ‘easy victim’ for ransomware attacks. How hospitals can mitigate the damage.

Limited resources in a highly connected ecosystem can make hospitals vulnerable, but planning ahead and implementing key protections could help thwart attacks.

By Emily Olsen • July 19, 2024

Majority of SEC civil fraud case against SolarWinds dismissed, but core remains

The court ruling related to claims leading up to and immediately following the 2020 Sunburst supply chain hack.

By David Jones • Updated July 18, 2024

UnitedHealth’s cyberattack response costs to surpass $2.3B this year

The healthcare giant’s new estimate is roughly $1 billion higher than previous forecasts as the cyberattack on subsidiary Change Healthcare continues to hamper its profit outlook.

By Rebecca Pifer • July 17, 2024

Weak credentials behind nearly half of all cloud-based attacks, research finds

Credential mismanagement was the top initial access vector for cloud environment attacks during the first half of 2024, a Google Cloud report found.

By Matt Kapko • July 17, 2024

Ransomware leak site posts jumped 20% in Q2

Threat groups claimed attacks on 1,237 organizations during the quarter, marking an increase from Q1. U.S.-based businesses accounted for more than half of all victims, Reliaquest found.

By Matt Kapko • July 16, 2024

AutoNation warns CDK cyberattack will dent quarterly earnings

The major North American car dealership estimates the attack will lead to a $1.50 per-share earnings impact.

By David Jones • July 15, 2024