BakerHostetler writes: On Thursday, Jan. 23, DISA Global Solutions, Inc. (DISA) provided an update to customers regarding its April 2024 cyber incident, including the results of its data review and notification plans. According to DISA, its investigation determined an unauthorized third party accessed its environment between Feb. 9, 2024, and April 22, 2024, and “procured…
Category: Business Sector
Ransomware attack kept ENGlobal out of some systems for 6 weeks
Jonathan Greig reports: Officials at a large energy industry and federal government contractor were locked out of company financial systems for six weeks due to a recent ransomware attack. ENGlobal Corporation revealed the extended disruptions in an update to the U.S. Securities and Exchange Commission on Monday evening. “The cybersecurity incident limited the Company’s ability to access…
Attorney General James Secures $450,000 from Companies Selling Home Security Cameras that Failed to Secure Private Videos
NYS Attorney General has been the most active state attorney general in terms of going after entities that don’t secure data properly. The following is from her latest press release: NEW YORK – New York Attorney General Letitia James secured $450,000 from three companies that distribute eufy home security video cameras for failing to secure consumers’…
DeepSeek hit with ‘large-scale’ cyber-attack after AI chatbot tops app stores
Dara Kerr reports: DeepSeek said its newly popular app was hit with a cyber-attack on Monday, which forced the Chinese company to temporarily limit registrations. The attack came after the DeepSeek AI assistant app soared to the top of Apple’s App Store, becoming the highest rated free app in the US, and climbed high in Google’s Play…
Let’s Secure Insurance failed to secure their own data storage. Now they have a breach.
Kumar Hemant reports: Let’s Secure Insurance Brokers Pvt Ltd., a prominent Indian insurance brokerage firm, has reportedly fallen victim to ransomware. The perpetrators, identified as the Kill Security (alias KillSec) group, claim to have gained unauthorised access to the company’s data, sparking concerns over potential data breaches. India has increasingly become a focal point for…
Cloudflare CDN flaw leaks user location data, even through secure chat apps
Bill Toulas reports: A security researcher discovered a flaw in Cloudflare’s content delivery network (CDN), which could expose a person’s general location by simply sending them an image on platforms like Signal and Discord. While the geo-locating capability of the attack is not precise enough for street-level tracking, it can provide enough data to infer what…