Chris Odogwu writes: The Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) is a federal law mandating “covered entities” that deal with critical infrastructure to report cyber incidents to the Cybersecurity and Infrastructure Security Agency (CISA). If you encounter a cyberattack, you might want to share your experience with your security team or anyone else who can…
Author: Dissent
Two-Fifths of IT Pros Told to Keep Breaches Quiet
Phil Muncaster reports: Over two-fifths (42%) of IT professionals have been told to keep a security breach under wraps, potentially inflaming regulatory compliance risk, according to a new study from Bitdefender. The security vendor polled 400 IT professionals, from IT junior managers to CISOs across various industry sectors, in organizations with over 1000 employees. Read more at InfoSecurity.
Tesla workers shared sensitive images recorded by customer cars
Reuters reports: Tesla assures its millions of electric car owners that their privacy “is and will always be enormously important to us.” The cameras it builds into vehicles to assist driving, it notes on its website, are “designed from the ground up to protect your privacy.” But between 2019 and 2022, groups of Tesla employees…
Oakland remains behind an 8-ball in responding to ransomware attack
Sarah Ravani reports: Oakland’s police union filed a claim against the city after a ransomware attack released personal information for thousands of current and former city employees, union officials said Monday. The legal filing, which asks for monetary damages of up to $25,000 per affected employee, argues that the city failed to implement “reasonable, industry-standard…
Hackers leak 16,000 Tas documents on dark web
The Fortra/GoAnywhere incident also affected Tasmanian school children. Emily Woods reports: Hackers have released 16,000 Tasmanian education department documents on the dark web including school children’s personal information, the state government has confirmed. Science and Technology Minister Madeleine Ogilvie said thousands of financial statements and invoices containing names and addresses of school students and their…
Money Message ransomware gang claims MSI breach, demands $4 million
Bill Toulas reports: Taiwanese PC parts maker MSI (Micro-Star International) has been listed on the extortion portal of a new ransomware gang known as “Money Message,” which claims to have stolen source code from the company’s network. MSI is a global hardware giant that makes motherboards, graphics cards, desktops, laptops, servers, industrial systems, PC peripherals,…