Catalin Cimpanu writes: Over the past three days—since our last newsletter edition—the situation around the latest zero-day attacks targeting Cisco IOS XE devices has drastically changed, and we feel the need to cover it in our featured section and provide a short summary of what has been going on. Although these attacks have been taking…
Ie: “Thousands of drivers have sensitive data exposed to hackers in major IT breach”
What is one headline writer’s “major IT breach” may be a blogger’s “data leak.” Adrian Weckler reports: The driving licences of thousands of motorists who had vehicles towed on behalf of the gardaí were left at the mercy of hackers in a major data breach, the Irish Independent can reveal. More than half a million documents exposed…
Phishing Guidance: Stopping the Attack Cycle at Phase One
This guide was created by the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) to outline phishing techniques malicious actors commonly use and to provide guidance for both network defenders and software manufacturers. Phishing Guidance: Stopping the Attack Cycle at Phase…
Another plastic surgery practice appears to have been hit — this time by Hunters International (5)
On October 17, the FBI issued a Public Service Announcement, Cybercriminals are Targeting Plastic Surgery Offices and Patients. Five days later, DataBreaches learned that there had been another attack on a plastic surgery practice where patient data had allegedly been stolen and is in danger of being leaked publicly. It would not be surprising if…
The digital battlefront amid Israel-Hamas war includes hospitals
i24News reports a surge in anti-Israel cyberattacks, including targeting critical entities such as hospitals: Notably, around 40 to 50 different groups have claimed responsibility for approximately 400 cyber attacks against Israeli targets. The cyber conflict has also drawn in ‘hacktivists’ from countries such as Iran and Russia. Messing notes, that in the past few days…
Top US Cyber Agency Pushing Toward First Hack Reporting Rule
Skye Witley reports: A new US notification requirement for victims of malicious hacks could push in-house counsel to disclose cyberattacks when faced with ransomware and other network compromises. Among the first-ever cyber regulations to be enforced by the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, the top US cyber authority, the proposed rules…