Hack
IOTW: Robinhood hit by scam exposing millions of customer data points
November 12 by Cyber Security Hub EditorInvestment company Robinhood falls victim to a data breach leaving customer data exposed
IOTW: Tokyo Olympics Suffers a Fujitsu-Related Breach
August 06 by Lisa MorganSome of the Tokyo Olympics victims had participated in a cyber security drill hosted by Japan's National Center of Incident Readiness and Strategy for Cybersecurity (NISC), which was yet another victi...
IOTW: Contractor Allegedly Responsible for Aramco $50 million Ransom
July 30 by Lisa MorganSaudi Aramco's data is particularly concerning because in addition to the employee data, reports, products specs, invoices and other sensitive company information that was stolen, also for sale is a m...
IOTW: Irish Healthcare Data for Sale on the Dark Web
May 28 by Lisa MorganThe fear now is that scammers unrelated to the Health Service Executive (HSE) attack will buy the data for their own nefarious use. Already, HSE is facing regulatory fines as the result of GDPR and ma...
2021 Top Breaches: Part I
April 02 by Seth AdlerQ1, 2021 saw the fallout from the Solarigate which of course began last year as well as the gargantuan Microsoft Exchange incident. Not to be outdone, nation state actors also showcased real world aff...
IOTW: End-Of-Life Third Party Software Responsible For Singtel Hack
February 19 by Seth AdlerBank account information was stolen from 28 former employees. A few dozen credit card numbers belonging to staff members of a Singtel corporate customer and information from 23 related enterprises wer...
IOTW: Washington State Audit Into Hacking Fraud Is Compromised In A Hacking Inception
February 05 by Seth AdlerThe ESD is insistent that this new breach—after the criticism it faced for the spring breach—is not responsible for this incident. Instead, the blame is placed on Accellion, a third-party file transfe...
IOTW: While The Solarigate Rages On, A New Strategy To Cyber Security Emerges
January 29 by Seth AdlerIn America’s free market, private sector and third-party technology vendors create information silos, both intentionally and unintentionally, which muddies the waters when it comes to investigating cy...
IOTW: Another Solarigate Target Identified by Microsoft
January 22 by Seth AdlerMicrosoft’s investigation into Solarigate, has identified yet another victim. Mimecast is a cloud-based email management system that incorporates security, archiving, and other services into the Offic...
Nation State Cyber Security Behavior
January 21 by Seth AdlerAn unprecedented opportunity for public and private cyber security collaboration has arrived. The opportunity for corporate cyber security executives to gain more holistic threat intelligence through...
IOTW: Russian Hack Deeper And Wider Than First Anticipated
January 08 by Seth AdlerSolarWinds' Orion update is currently inside of thousands of public and private institutions. Some have remediated the vulnerability. But Microsoft itself has noted in a statement that their investiga...
IOTW: US Treasury & Commerce Departments, DHS, NIH & Others Significantly Exposed
December 18 by Seth AdlerRussian operatives are now equipped with the very tools that were built to keep them out. The DHS, FBI, and CISA are working together to counter the attack, which Russia denies.