Jay Peters reports: Ubisoft experienced a “cyber security incident” last week that temporarily disrupted some games, systems, and services, the company reported Thursday. Ubisoft hasn’t said who might be responsible, but on Friday evening, the group who purportedly hacked Nvidia took credit. Ubisoft said it believes that “at this time there is no evidence any player…
NHS Management, LLC issues updated statement about cyberattack in 2021
The following press release is not the first press release we have seen from NHS Management, LLC, a business associate in Alabama. Coverage of a previous press release in January can be found on this site, here. Comparing the new press release, below, to the previous one, it appears that ongoing investigation revealed that the…
MO: Capital Region reaching out to patients about cyberattack
The News Tribune reports that the Capital Region Medical Center in Missouri has started notifying patients whose protected health information (PHI) was accessed during a ransomware incident in December, 2021 that left their phone systems and network down for several days. CRMC had disclosed the incident promptly but had not been able to immediately determine…
Class action lawsuit against UKG over Kronos Private Cloud ransomware incident
A class action lawsuit has been filed in a California federal court against workplace management software company UKG Inc. UKG makes timekeeping and payroll management software and offers Kronos Private Cloud services. As a result of a ransomware attack in December, employees of the firm’s clients were not paid at all, were paid late, or…
Report: Recent 10x Increase in Cyberattacks on Ukraine
Brian Krebs reports: As their cities suffered more intense bombardment by Russian military forces this week, Ukrainian Internet users came under renewed cyberattacks, with one Internet company providing service there saying they blocked ten times the normal number of phishing and malware attacks targeting Ukrainians. Read more at KrebsOnSecurity.com
SEC Proposes Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies
Washington D.C., March 9, 2022 — The Securities and Exchange Commission today proposed amendments to its rules to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting by public companies. “Over the years, our disclosure regime has evolved to reflect evolving risks and investor needs,” said SEC Chair Gary Gensler. “Today,…