Rachel V. Rose, Ted Dziekanowski, and Andy Watkin-Child report: The US Securities and Exchange Commission released its final rule, effective Sept. 5, 2023, on cybersecurity risk management, strategy, governance, and incident disclosure. Investors, registrants, and other market participants should take special notice of two key terms in the regulations: “materiality” and the “reasonable investor.” The SEC…
Category: Of Note
New Chrome Feature Alerts Users About Malicious Extensions
Alessandro Mascellino reports: Google has announced an update set to be introduced in Chrome 117. This new feature aims to proactively inform users when an extension they have installed is no longer available on the Chrome Web Store. The move comes as part of the tech giant’s ongoing commitment to enhance security measures within its…
Health Data Breach Lawsuits Surge as Cyberattacks Keep Climbing
Skye Witley and Christopher Brown report: Companies handling health data are fending off more cyberattacks each year, and those that do get hacked are facing costly litigation at rapidly rising rates, a Bloomberg Law analysis found. The monthly average of new class actions filed over health data breaches so far this year is nearly double…
Snatch Team starts really detailing their attacks and ups the ante for those who don’t pay up
Snatch Team has recently been exploring some novel uses of Telegram. Unlike other groups that use Telegram mainly to list new leaks, Snatch is providing commentaries and analyses of their breaches and more educational materials for readers. Some of their commentaries on specific incidents can be fodder for any lawsuits against the companies or entities…
Ransomware Diaries: Volume 3 – LockBit’s Secrets
Add this to your must-read list for the week (after you finish the Georgia indictment, of course, although to be honest, the ransomware diaries entry is more fascinating). Jon DiMaggio of Analyst1 writes: In this volume of the Ransomware Diaries, I will share interesting, previously unknown details of the LockBit ransomware operation that LockBit has…
Over 100K hacking forums accounts exposed by info-stealing malware
Ionut Ilascu reports: Researchers discovered 120,000 infected systems that contained credentials for cybercrime forums. Many of the computers belong to hackers, the researchers say. Analyzing the data, threat researchers found that the passwords used for logging into hacking forums were generally stronger than those for government websites. After pouring through 100 cybercrime forums, researchers at…