SANS infosec training org suffers data breach after phishing attack

Lawrence Abrams reports:

The SANS cybersecurity training organization has suffered a data breach after one of their employees fell victim to a phishing attack.

[…] In a notification posted to their site today, SANS states that one of their employees fell for a phishing attack that allowed a threat actor to gain access to their email account.

Read more on BleepingComputer.

Paying cyberattackers is wrong, right? Should Taos County's incident be an exception?
Hungarian police arrest suspect in cyberattacks on independent media
New TeleMessage SGNL Flaw Is Actively Being Exploited by Attackers
Gladney Adoption Center had serious data exposures in the past few months. What will they do to prevent more?
United Australia Party confirms ransomware attack, personal data and email correspondence exposed
Meta fixes bug that could leak users’ AI prompts and generated content

Related: