HelpNetSecurity.com reported that Rackspace disclosed that “on Friday, December 2nd, 2022, we became aware of suspicious activity and immediately took proactive measures to isolate the Hosted Exchange environment to contain the incident. We have since determined this suspicious activity was the result of a ransomware incident,…”  The December 6, 2022

Continue Reading Ransomware attack caused Rackspace outage!

HealthInfoSecurity.com reported “Federal regulators warned healthcare entities over commercial web traffic trackers embedded into patient portals, saying their use may violate patient privacy law.”  The December 1, 2022 report entitled ” HHS: Web Trackers in Patient Portals Violate HIPAA” (https://tinyurl.com/y4fdbpfk) included these comments:

A Department of Health and

Continue Reading Are your web trackers violating HIPAA?

DataBreachToday.com reported that “…the dumped database says it includes the 5.4 million users’ usernames, display names, bios, locations, email addresses and phone numbers. The attacker amassed the data by exploiting APIs tied to the “let others find you by your phone” feature.”  The November 28, 2022 report entitled ” Cybercrime

Continue Reading 5.4Million Twitter Users’ Data Posted Online for free!

HealthCareInfoSecurity.com reported that “Total losses tied to business email compromise theft domestically and internationally totaled $43.3 billion from June 2016 through December 2021, according to the most recent FBI Internet Crime Complaint Center annual report (https://www.ic3.gov/Media/PDF/AnnualReport/2021_IC3Report.pdf).” The November 19, 2022 report entitled ” DOJ Charges 10 With BEC

Continue Reading Since 2016 there has been more than $43B in Spearphishing (aka Business Email Comprise) attacks!

DarkReading.com reported that “Organizations are struggling with mounting data losses, increased downtime, and rising recovery costs due to cyberattacks — to the tune of $1.06 million in costs per incident. Meanwhile, IT security staffs are stalled on getting defenses up to speed.” The November 17, 2022 article entitled “Zero-Trust Initiatives Stall, as

Continue Reading Cyberattacks now cost at least $1M per incident!

DataBreachToday.com reported that “Bankrupt cryptocurrency exchange platform FTX says unsanctioned actors made off with customers’ digital assets, initiating a scramble to cut off digital wallets from the internet.”  The November 14, 2022 report entitled “’Unauthorized Transactions’ Lead to Missing Funds at FTX” (https://tinyurl.com/4jnumzjy) included these comments:

FTX filed

Continue Reading FTX cryptocurrency bankruptcy began with “Unauthorized Transactions”!

The US Department of Justice reported that on November 4, 2022 “that JAMES ZHONG pled guilty to committing wire fraud in September 2012 when he unlawfully obtained over 50,000 Bitcoin from the Silk Road dark web internet marketplace.”  The November 7, 2022 Press Release entitled “U.S. Attorney Announces Historic $3.36

Continue Reading $3.36B Crypto Theft Leads to Guilty Plea!

DarkReading.com reported that “The US Securities and Exchange Commission (SEC) appears poised to take enforcement action against SolarWinds for the enterprise software company’s alleged violation of federal securities laws when making statements and disclosures about the 2019 data breach at the company.” The November 7, 2022 article entitled “SolarWinds Faces

Continue Reading SolarWinds faced SEC penalties for disclosing cyber intrusion!

HealthInfoSecurity.com reported to “Add DropBox to the list of tech companies experiencing a multifactor fail moment. The file storage and sharing company acknowledged Tuesday that employees fell for a well-crafted phishing campaign that gave hackers access to internal code repositories and some personally identifying information.”  The November 3, 2022 report

Continue Reading Dropbox’s MFA (Multifactor Authentication) Failed!

BankInfoSecurity.com reported that “Ransomware attacks against U.K. hospitals and schools remained the biggest cybersecurity threat facing country in 2022, the country’s cybersecurity agency warns, adding that these attacks are likely to surge in the coming months.”  The November 1, 2022 article entitled “Ransomware Attacks Pose Biggest Threat to UK Organizations”

Continue Reading Raas (Ransomware as a Service) expanding in the UK!