Collaborate Disseminate
AP and CNN report: Apple disclosed serious security vulnerabilities for iPhones, iPads and Macs that could potentially allow attackers to take complete control of these devices. In security updates posted online on Wednesday and Thursday, Apple said th… Continue reading UPDATE NOW: Apple warns hackers could get ‘full admin access’ to iPhones, iPads, iMacs
Lawrence Abrams reports: The LockBit ransomware gang has claimed responsibility for the June cyberattack on digital security giant Entrust. Last month, BleepingComputer broke the story that Entrust suffered a ransomware attack on June 18th, 2022. Start… Continue reading LockBit claims ransomware attack on security giant Entrust
By Hunton Andrews Kurth’s Privacy and Cybersecurity On June 10, 2022, New York became the first state to require attorneys to complete at least one credit of cybersecurity, privacy and data protection training as part of their continuing legal educatio… Continue reading New York Becomes First State to Require CLE in Cybersecurity, Privacy and Data Protection
From Microsoft’s Blog: The Microsoft Threat Intelligence Center (MSTIC) has observed and taken actions to disrupt campaigns launched by SEABORGIUM, an actor Microsoft has tracked since 2017. SEABORGIUM is a threat actor that originates from Russi… Continue reading Disrupting SEABORGIUM’s ongoing phishing operations
John Cassell, Imran Ahmad,and Miranda Sharpe of Norton Rose Fulbright write: On July 27, 2022, the Office of the Information and Privacy Commissioner of Alberta (OIPC) released its 2022 PIPA Breach Report.[1] The report analyzes the nearly 2,000 breach… Continue reading Alberta OIPC’s 2022 PIPA Breach Report – Trends and Key Takeaways
Michael Ramsey reports: Western Australia’s health department has apologised for accidentally leaking the personal details of passengers aboard a flight carrying a person infected with monkeypox. A woman who travelled on the flight from Doha last week … Continue reading Au: WA Health sorry over monkeypox data breach
Patrick H. Haggerty and Elise Elam of BakerHostetler write: On July 29, the New York Department of Financial Services (NYDFS) released Draft Amendments to its Part 500 Cybersecurity Rules that include a number of significant amendments to the rules, in… Continue reading NYDFS Proposed Amendments to Its Cybersecurity Rules
Joe Davies reports an update to the ransomware attack on Advanced that impacted the NHS 111 system: Hackers are holding an IT firm that supplies NHS trusts to ransom following a cyber attack last week, according to sources. Health bosses are concerned … Continue reading Update: Hackers issue ‘ransom demands’ to NHS IT supplier: Fears MILLIONS of confidential patient records could be leaked after major cyber attack
Linda Smith, Rajat Wason, and Syed Zaidi of Sophos write: In May 2022, an automotive supplier was hit with three separate ransomware attacks. All three threat actors abused the same misconfiguration – a firewall rule exposing Remote Desktop Protocol (R… Continue reading Lockbit, Hive, and BlackCat attack automotive supplier in triple ransomware attack
Valéry Rieß-Marchive reports: In the first half of the year, more than 420 victims were claimed on the showcase site of the LockBit 2.0 franchise. This figure is lower than the reality. But to what extent? The examination of clues present in the source… Continue reading Ransomware LockBit: a hundred victims per month in the first half