Commentaries and Analyses – Page 70

CISA shares vulnerabilities, misconfigs used by ransomware gangs

Posted on October 15, 2023 by Dissent

Sergiu Gatlan reports: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has unveiled additional details regarding misconfigurations and security vulnerabilities exploited by ransomware gangs, aiming to help critical infrastructure organizations thwart their attacks. CISA released this information as part of its Ransomware Vulnerability Warning Pilot (RVWP) program, established in January of this year, when it announced that…

Colonial Pipeline was hacked. No, wait, Accenture was hacked. No, wait….. untangling claims. (2)

Posted on October 13, 2023 by Dissent

By, now, there’s been a lot of buzz by some claims made by RansomedVC on their leak site and on their Telegram channel. In their post this afternoon, RansomedVC claimed that (1) Rob Lee of Dragos somehow cheated someone called “fooble,” and as a result, (2) RansomedVC was going to leak files that Lee had…

Equifax’s U.K. Arm Fined Over 2017 Data Breach

Posted on October 13, 2023 by Dissent

Margot Patrick reports: Equifax’s (EFX) U.K. arm was fined around $13.6 million Friday for failing to protect the data of millions of British customers in a 2017 hack of the credit-reporting company. The British arm outsourced customer-data processing to the U.S., and then failed to manage or monitor data security, the Financial Conduct Authority said. Read…

FBI and CISA Release Update on AvosLocker Advisory

Posted on October 13, 2023 by Dissent

The AvosLocker ransomware leak site has not been seen for months, but the government is providing an update on them based on its investigations as recently as May 2023. In May, DataBreaches reported on the Bluefield College breach by an affiliate of Avos. Because AvosLocker is RaaS, it’s possible that it is still active but…

88% of Hospitals And Other Health-Care Organizations Faced Cyberattacks Last Year

Posted on October 12, 2023 by Dissent

Fewer health-care organizations are paying ransoms, but the average payment has soared. Eric Geller reports: Hospitals, clinics and other health-care organizations are facing a barrage of cyberattacks and struggling to provide normal services amid computer outages and loss of important files, according to newly published research by Proofpoint, an email security firm. Nearly 90% of…

The largest cyberattack of its kind recently happened. Here’s how.

Posted on October 12, 2023 by Dissent

Tim Starks writes: A trio of internet giants revealed on Tuesday that they had fought off an “unprecedented” distributed denial-of-service (DDoS) attack — used to disrupt the availability of systems like websites and services — that registered as the biggest on record, by far. Cloudflare, Google and Amazon Web Services (AWS) said the attack relied…