We spend a lot of time reporting on ransomware because we are seeing more incidents than ever before, and our readers comment that keeping them up to date on ransomware tactics is helpful. The ransomware gangs, strains and...more
11/12/2020
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Hackers ,
Information Technology ,
Malware ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Risk Management ,
Vulnerability Assessments
CYBERSECURITY -
The GEO Group Hit with Ransomware Attack -
The GEO Group, Inc. (GEO), a publicly-held company located in Boca Raton, Florida, announced on November 3, 2020, that it is beginning to notify individuals...more
11/6/2020
/ California Privacy Rights Act (CPRA) ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Selling ,
Data-Sharing ,
Drones ,
Hackers ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Social Media
The GEO Group, Inc. (GEO), a publicly held company located in Boca Raton Florida, announced on November 3, 2020, that it is beginning to notify individuals following a ransomware attack that “impacted a limited amount of...more
The UK National Cyber Security Centre (NCSC) issued an alert on October 16, 2020, to raise awareness “of a new remote code execution vulnerability (CVE – 2020 – 16952)”, which affects Microsoft’s SharePoint product....more
The National Security Agency (NSA) issued a Cybersecurity Advisory on October 20, 2020, entitled “Chinese State-Sponsored Actors Exploit Publicly Known Vulnerabilities,” alerting IT professionals to 25 vulnerabilities that...more
Secureworks issues an annual Incident Response Report that is very helpful in obtaining information on what types of incidents are occurring in order to become more resistant to threats. The 2020 IR Report was recently...more
10/23/2020
/ Bring Your Own Device (BYOD) ,
Coronavirus/COVID-19 ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Security ,
Infectious Diseases ,
Information Technology ,
Multi-Factor Authentication ,
Popular ,
Remote Working ,
Risk Management ,
Telecommuting ,
Vulnerability Assessments
It has been widely reported that hackers are taking advantage of the pandemic to perpetrate scams and frauds. We have seen attacks against workers of companies through phishing emails that include an attachment or link...more
Morgan Stanley has settled claims by the Office of the Comptroller of the Currency (OCC) that it failed to properly decommission data centers that housed client data of its wealth-management operations two times—once in 2016...more
On October 8, 2020, New Jersey Attorney General Gurbir Grewal (AG) announced that his office has entered into a multi-state settlement agreement with Community Health Systems, Inc. (CHS) stemming from an investigation of a...more
10/16/2020
/ Cyber Attacks ,
Electronic Medical Records ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
Information Technology ,
OCR ,
Personally Identifiable Information ,
PHI ,
Popular ,
Settlement Agreements
As one of the largest information technology service providers to local governments, the cyber-attack on Tyler Technologies (Tyler) in Plano, Texas is a sobering reminder of how a cyber-attack on a third-party vendor can put...more
10/5/2020
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Federal Contractors ,
Hackers ,
Information Security ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Third-Party Service Provider ,
Vendors
CYBERSECURITY -
City of Hartford Hit with Ransomware Attack, Causing School Delay -
Cyber-attackers know that city and town officials have been gearing up for the start of school and the potential for remote learning,...more
9/14/2020
/ California Consumer Privacy Act (CCPA) ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Department of Justice (DOJ) ,
Facial Recognition Technology ,
Hackers ,
Information Technology ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Regulatory Violations ,
TCPA ,
Vulnerable Victims
Cyber-attackers know that city and town officials have been gearing up for the start of school and the potential for remote learning, in school or a hybrid model all summer. The daily monitoring of the coronavirus has kept...more
CYBERSECURITY -
FBI + CISA Issue Joint Alert on Vishing Attacks -
When the Federal Bureau of Investigations (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) get together to issue an alert to warn us...more
9/4/2020
/ Australia ,
Cisco ,
Cyber Crimes ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Drones ,
FBI ,
Federal Trade Commission (FTC) ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Mobile Apps ,
Online Education ,
Phishing Scams ,
Popular ,
Vulnerability Assessments
Cisco warned its customers last weekend that it has become aware of a zero-day vulnerability that it is working to fix by developing a patch. The flaw involves Cisco’s iOS XR Software, an operating system for carrier-grade...more
CYBERSECURITY -
U.S. Organizations Doing Business in China Warned of Malware in Tax Software -
The Federal Bureau of Investigations (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint...more
8/28/2020
/ ALEXA ,
Amazon Echo ,
Audits ,
Automatic License Plate Readers ,
Connected Cars ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Financial Industry Regulatory Authority (FINRA) ,
Location Data ,
Malware ,
Motor Vehicles ,
Personal Assistants ,
Personally Identifiable Information ,
Popular ,
Scams ,
Websites ,
Zoom®
The Federal Bureau of Investigations (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint Flash Alert to U.S. based businesses doing business in China about a remote targeting campaign...more
8/28/2020
/ Banks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
FBI ,
Foreign Corporations ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Malware ,
Popular ,
Software ,
Tax Planning ,
Tax Preparers
The Financial Industry Regulatory Authority (FINRA) recently warned financial professionals that imposters are attempting to collect personal information of investors by spoofing financial professionals’ websites, reaching...more
CYBERSECURITY -
NSA + FBI Warn Defense Contractors of Russian Hackers -
When the National Security Agency (NSA) and the Federal Bureau of Investigations (FBI) get together to issue a joint warning, you may wish to listen...more
8/21/2020
/ California Consumer Privacy Act (CCPA) ,
Carnival Cruise Lines ,
Class Action ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
FBI ,
Instagram ,
NASA ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Social Media ,
TikTok ,
Vulnerability Assessments ,
YouTube
When the National Security Agency (NSA) and the Federal Bureau of Investigations (FBI) get together to issue a joint warning, you may wish to listen up....more
8/21/2020
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Defense Contracts ,
FBI ,
Federal Contractors ,
Hackers ,
National Security Agency (NSA) ,
Popular ,
Russia ,
Vulnerability Assessments
Adding insult to injury for cruise ship company Carnival Corporation (Carnival) following the hit from the pandemic to the travel industry, as well as a class action lawsuit relating to the Diamond Princess’ fate during the...more
8/20/2020
/ Carnival Cruise Lines ,
Cruise Ships ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Disclosure Requirements ,
Form 8-K ,
Hackers ,
Information Technology ,
Personally Identifiable Information ,
Popular ,
Ransomware
CYBERSECURITY -
Connecticut Insurance Department Reminds Licensees to Comply with Data Security Law -
On July 20, 2020, the Connecticut Insurance Department issued a bulletin to licensees reminding them that the Connecticut...more
The U.S. Office of the Comptroller of the Currency (OCC) announced this week that it has entered into a Consent Order and fined Capital One $80 million for the data breach the company experienced last year....more
8/7/2020
/ Banking Regulators ,
Capital One ,
Consent Order ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Enforcement Actions ,
Financial Services Industry ,
Hackers ,
OCC ,
Personally Identifiable Information ,
Popular ,
Settlement Agreements
As a follow-up to last week’s post on the importance of due diligence regarding high-risk vendors’ security practices, Blackbaud, a global company providing financial and fundraising technology to not-for-profit entities,...more
Last week, authorities from the United States, United Kingdom and Canada accused a well-known hacker group tied to the Russian government, APT29 a/k/a Cozy Bear of using malware to exploit security vulnerabilities to enable...more
7/23/2020
/ China ,
Coronavirus/COVID-19 ,
Hackers ,
Intellectual Property Protection ,
Life Sciences ,
Malware ,
Pharmaceutical Industry ,
Popular ,
Research and Development ,
Russia ,
Vaccinations ,
Virus Testing ,
Vulnerability Assessments
Amazon has announced that it has developed and is offering a “CMMC Quickstart Package” to help contractors comply with the Department of Defense’s (DOD) Cybersecurity Maturity Model Certification (CMMC) required for...more