Category: Commentaries and Analyses

Romanian entities issued monetary penalties for infosecurity and data protection failures

Posted on by Dissent

Regulators in Romania have issued monetary penalties to six Romanian entities for insufficient technical and organizational measures to ensure information security. Two other entities were issued fines for other GDPR violations. The fines for insufficient technical and organizational measures ranged from 1,000 to 10,000 euros. Two of the entities were in the medical center. A…

Read more

Threat Actors Exploit Progress Telerik Vulnerability in U.S. Government IIS Server

Posted on by Dissent

CISA Advisory Alert Code AA23-074A Summary From November 2022 through early January 2023, the Cybersecurity and Infrastructure Security Agency (CISA) and authoring organizations identified the presence of indicators of compromise (IOCs) at a federal civilian executive branch (FCEB) agency. Analysts determined that multiple cyber threat actors, including an APT actor, were able to exploit a…

Read more

New threat group hacked EU healthcare agency and embassies, researchers say

Posted on by Dissent

Jonathan Greig reports: A new hacking group is targeting European countries and organizations in an espionage campaign that began in June 2022, according to new research. Cisco’s Talos cybersecurity team calls the new group “YoroTrooper” and said it has already successfully compromised accounts connected to a “critical” European Union healthcare agency and the World Intellectual…

Read more

What’s new in ransomware gang pressure tactics? Not as much as you might think.

Posted on by Dissent

It’s hard to believe, but it has really been 17 years since PogoWasRight.org began blogging about breaches, and it’s been 14 years since this spinoff site, DataBreaches.net, opened. Since then, DataBreaches has often reported on criminals’ tactics to secure payment from victims, especially those in the healthcare sector. Thousands of archived posts on DataBreaches.net provide…

Read more