Nolan Goldberg and Margaret Ukwu of Proskauer write: A new study by Hiscox, a privacy and cyber security insurance company, sheds light on additional practical concerns that should be taken into account in that balancing of potential risks and benefits. Hiscox released its sixth annual Cyber Readiness Report 2022. In it, Hiscox raises a number…
Category: Of Note
After Discovery of Huge Data Breach, Twitter Alternative Hive Goes Offline
Lucas Ropek reports: Not long after Elon Musk took over Twitter and started doing a whole lot of crazy stuff to the platform, the microblogging app Hive Social saw a huge spike in users. Apparently fed up with Elon’s shit, a bunch of people had decided to try out alternative social media sites—and Hive was one of them. Launched back in…
DHS Cyber Safety Review Board to Conduct Second Review on Lapsus$
Press release from the U.S. Department of Homeland Security (DHS): WASHINGTON – Today, the U.S. Department of Homeland Security (DHS) announced that the Cyber Safety Review Board (CSRB) will review the recent attacks associated with Lapsus$, a global extortion-focused hacker group. Lapsus$ has reportedly employed techniques to bypass a range of commonly-used security controls and has successfully infiltrated a…
In: Hackers Selling Personal Data Of 150,000 Patients From a Tamil Nadu Hospital in Supply-Chain Attack
Bharat Sharma reports: After a cyberattack on AIIMS knocked out its servers, a threat actor is selling medical records of patients of a Tamil Nadu-based multispecialty hospital. A report released by CloudSEK claims that patient data of Sree Saran Medical Centre is on sale by a threat actor. On November 22, 2022, CloudSEK discovered a post…
Australia will now fine firms up to AU$50 million for data breaches
Bill Toulas reports: The Australian parliament has approved a bill to amend the country’s privacy legislation, significantly increasing the maximum penalties to AU$50 million for companies and data controllers who suffered large-scale data breaches. The financial penalty introduced by the new bill is set to whichever is greater: AU$50 million Three times the value of…
#StopRansomware: Cuba Ransomware
Joint Cybersecurity Advisory Product ID: AA22-335A December 1, 2022 TLP:CLEAR The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint CSA to disseminate known Cuba ransomware IOCs and TTPs associated with Cuba ransomware actors identified through FBI investigations, third-party reporting, and open-source reporting. This advisory updates the…