Mathew Schwartz reports: A crime gang seeking “ransomware attack opportunities” is targeting organizations that use unpatched or poorly secured Citrix remote-access technology, then stealing data, unleashing crypto-locking malware and using the threat of exfiltrated data being publicly dumped to try to force payment, New Zealand’s national computer emergency response team warns. In an alert issued…
Category: Commentaries and Analyses
80,000 printers are exposing their IPP port online
Catalin Cimpanu reports that some lessons that could have been learned years ago — and should have been — are still unlearned by too many. In a report published earlier this month, security researchers from the Shadowserver Foundation, a non-profit organization focused on improving cyber-security practices across the world, have published a warning about companies…
Irish firms pay most for cyber-attacks, European study finds
The Independent reports: Irish firms suffer the highest median cost in Europe from cyber-attacks, at almost €92,000, a major new survey claims. Cyber incidents and breaches cost sampled Irish companies €113m over a six month period, with one unnamed Irish company suffering total cyber losses of €17.8m. Read more on Independent.ie.
Misconfigurations, Poorly Managed Access Help Drive Data Breach Risks
George V. Hulme reports: … A recent study conducted by IDC, on behalf of security vendor Ermetic, found that nearly 80% of the companies surveyed had experienced at least one cloud data breach in the past 18 months. And 43% of those respondents reported 10 or more breaches over that time period. Read more about…
New York Patients’ Data Breach Claims Sent Back to State Court
Mary Anne Pazanowski reports an update to litigation that stemmed from a breach in 2018 that was disclosed by Episcopal Health Services in November 2018 and then updated in 2019. A group of New York patients claiming that Episcopal Health Services Inc. failed to protect their private information from unauthorized disclosures can proceed in state…
PH: Digital rights advocates warn of FaceApp’s security breach amid terror bill
Reinette Tarinay reports: Amid the looming passage of the anti-terror bill, digital rights advocates warned netizens against using FaceApp. In a statement, Computer Professionals’ Union (CPU) said that FaceApp comes with ‘several risks and dangers’ especially since its popularity surged after Facebook’s alarming issue of duplicate accounts as well as the government’s awful try on…