It’s not really news that attackers may attack over a weekend when there are fewer IT people working to detect and respond to attacks. That’s also true for ransomware attacks. Read the government’s new advisory and see if you can implement or prepare better for the possibility of a ransomware attack. Immediate Actions You Can…
Singapore adds a third bug bounty program – this time to fortify government digital services
Laura Dobberstein reports: Singapore’s governmental digital services arm, GovTech, has launched a “rewards programme” to further crowdsource tests of the nation’s cybersecurity. The Vulnerability Rewards Programme (VRP) joins the Government Bug Bounty Programme (GBBP) and the Vulnerability Disclosure Programme (VDP), all of which work alongside the government’s own security checks. Read more on The Register.
Switzerland: Citizen and municipality data published on Darknet
MRT reports: At the end of May, the municipal administration of the tranquil town of Rolle in French-speaking Switzerland was the victim of a cyber attack. This became known to the public recently through research on the news portal watson.ch. The result of the attack: The data of all residents and other documents have been…
Indian companies go scot-free despite breach of customer data
Vishal Raghavan has an opinion piece in The Leaflet about the failure of Indian firms to notify customers of breaches or to be held accountable and fined monetarily by regulators. He begins by reviewing a number of high-profile breaches reported in the last year or so, and the notes that all of the companies didn’t…
Cybercriminals are holding schools ransom for billions and some are paying up
R. Dallon Adams reports: In recent months, a slew of cyberattacks hamstrung domestic meat and petroleum production and also set off a few alarms at a Florida water treatment facility. With companies willing to shell out big bucks to bring their companies back online and risk further fallout, it’s becoming increasingly clear that no sector…
Ruling Breaks New Ground For CGL Policy Data Breach Coverage Hackings
Peter Selvin of Ervin Cohen & Jessup writes: A recent case from the 5th U.S. Circuit Court of Appeals breaks new ground on the question of whether a commercial general liability policy provides coverage for damages arising from a data breach caused by a third-party hacker. Landry’s Incorporated v. Insurance Company of the State of Pennsylvania, 4…