Kimberly Mersalas reports: Even as COVID-19 and its emphasis on telehealth have opened providers to greater cybersecurity risks, insurance policies that offer potential protection are becoming more expensive, and in some cases, harder to get. Insurers are issuing 25% to 50% premium increases this year, reflecting a large number of ransomware payouts over the last…
The Incredible Rise of North Korea’s Hacking Army
Ed Caesar reports: Shimomura was a member of the Yamaguchi-gumi, the largest yakuza crime family in Japan. When one of his superiors asked him if he wanted to make a pile of fast money, he naturally said yes. It was May 14, 2016, and Shimomura was living in the city of Nagoya. Thirty-two years old and…
Bank Groups Object to Proposed Breach Notification Regulation
Doug Olenick reports: The American Bankers Association and three other groups have voiced objections to provisions in a cyber incident notification regulation for banks proposed by three federal agencies. For example, they say that the definition of a reportable “computer security incident” is too broad and would result in the reporting of insignificant events. The…
Domino’s India Allegedly Hacked: 7 Years of Internal Docs, 10 Lakh Credit Cards on Sale for Rs 3.4 Crore
Shouvik Das reports: Domino’s India, the popular pizza delivery chain, reportedly faced a data breach that includes internal company documents of the past seven years, private data belonging to over 250 employees, customer details from over 18 crore food orders and over 10 lakh credit cards that may have been saved during checkout and payments. The…
Codecov discloses 2.5-month-long supply chain attack
Catalin Cimpanu reports: Codecov, a software company that provides code testing and code statistics solutions, disclosed on Thursday a major security breach after a threat actor managed to breach its platform and add a credentials harvester to one of its tools. The impacted product is named Bash Uploader and allows Codecov customers to submit code coverage reports…
FR: Press statement from Trescal about cyberattack
Trescal describes itself as the global leader in calibration services, and a single-source provider for measurement, repair and asset management. The following is a press release they issued this week: (Translation:) Paris, April 15, 2021. Trescal is currently the target of a cyber attack affecting servers in some European and Asian countries. The security of our…