Naandika Tripathi reports: Just three months after a ransomware attack pulled down India’s largest drugmaker, Sun Pharmaceuticals, the threat actors went after another pharma company. Hyderabad-based Granules India was notified of a significant loss of revenue and profitability due to a cybersecurity attack in the last week of May. […] From Dr. Reddy’s to the…
Month: July 2023
Deputy U.S. Marshal Pleads Guilty to Obtaining Cell Phone Location Information Unlawfully
This Department of Justice – Office of Inspector General press release from June 30 is a recent reminder of the insider threat: A deputy U.S. Marshal pleaded guilty today to misusing a law enforcement service to obtain cell phone location information for personal use. According to court documents, Adrian Pena, 49, of Del Rio, Texas,…
Za: Information Regulator slaps Justice, Constitutional Development Department with R5m fine
IOL reports: The Department of Justice and Constitutional Development (DoJ&CD) has been ordered to pay a R5 million fine following its failure to comply with an Enforcement Notice after contravening the Protection of Personal Information Act (Popia). On May 9 the Information Regulator issued an Infringement Notice against the department for contravening various sections of…
CISA issues warning for cardiac device system vulnerability
Jonathan Greig reports: The Cybersecurity and Infrastructure Security Agency (CISA) warned of a severe vulnerability in a cardiac device from medical device company Medtronic. The issue – tracked as CVE-2023-31222 – carries a “critical” CVSS score of 9.8 out of 10 and affects the company’s Paceart Optima software that runs on a healthcare organization’s Windows server. Medtronic said…
Ransomware Attack Hits Japan’s Biggest Port, Disrupting Cargo Shipments
Nicholas Takahashi and Ann Koh report: Japan’s biggest maritime port was crippled by an alleged Russian cyberattack, disrupting cargo as operators rushed to prevent a wider delay in shipments. Ransomware — used by hackers to lock access to files or systems unless a payment is made — caused a container terminal at the Port of…
Imagine360 discovers that two of its file-sharing platforms were hit within days of each other.
With all the big attacks on third-party vendors, it’s not surprising that some entities are reporting two or more breaches in a short period of time. Imagine360, LLC, is a self-funded health plan for employers. On or around January 30, Imagine360 identified unusual activity within Citrix, its third-party file-sharing platform. Imagine360 terminated access to the…