Joseph J. Lazzarotti of JacksonLewis writes: Efforts to secure systems and data from a cyberattack often focus on measures such as multifactor authentication (MFA), endpoint monitoring solutions, antivirus protections, and role-based access management controls, and for good reason. But there is a basic principle of data protection that when applied across an organization can significantly…
Author: Dissent
Hackers Raided Panasonic Server for Months, Stealing Personal Data of Job Seekers
Graham Cluley writes: Tech giant Panasonic has confirmed that one of its servers suffered a data breach which saw the personal information of job applicants accessed by an unauthorised party. The security breach, which saw hackers illegally access a Panasonic file server located in Japan via an overseas subsidiary, began on June 22 2021, and only ended…
Hacking group accidentally infects itself with Remote Access Trojan horse
Over in the here’s-a-teeny-tiny-violin-for-you department, Graham Cluley writes: Patchwork, an Indian hacking group also known by such bizarre names as Hangover Group, Dropping Elephant, Chinastrats, and Monsoon, has proven the old adage that to err is human, but to really cock things up you need to be a cybercriminal. The hackers, who have become notorious…
Ca: Visalia Unified School District notifying employees and students about 2021 data breach
Reggie Ellis reports: Tulare County’s largest school district is notifying some of its 3,000 employees and 32,000 students that some of their personal information has been compromised. On Dec. 30, Visalia Unified School District (VUSD) announced certain district-issued email accounts were illegally accessed during a data breach between Jan. 1 and June 3, 2021. VUSD…
FCC Chairwoman Rosenworcel Circulates New Data Breach Reporting Requirements
CHAIRWOMAN ROSENWORCEL CIRCULATES NEW DATA BREACH REPORTING REQUIREMENTS Proposal is a Response to Recent Security Breaches in the Telecommunications Industry — WASHINGTON, January 12, 2022—Today Federal Communications Commission Chairwoman Jessica Rosenworcel shared with her colleagues a Notice of Proposed Rulemaking (NPRM) that would begin the process of strengthening the Commission’s rules for notifying customers…
Who is the Network Access Broker ‘Wazawaka?’
Brian Krebs reports: In a great many ransomware attacks, the criminals who pillage the victim’s network are not the same crooks who gained the initial access to the victim organization. More commonly, the infected PC or stolen VPN credentials the gang used to break in were purchased from a cybercriminal middleman known as an initial…