The Nigeria Data Protection Commission (NDPC) has unveiled plans to enhance compliance enforcement rigorously and impose significant fines on data controllers and processors violating the Nigeria Data Protection Act (NDPA). This announcement was made by Dr. Vincent Olatunji, the National Commissioner and CEO of the Commission, during a recent video…
Title: Confronting Cyber Threats: Insights from the Recent Under Attack Webinar on Phishing and Ransomware Risks In a recent live webinar titled "Under Attack: Preventing Phishing and Ransomware Disasters," industry leaders gathered to discuss the escalating threats posed by phishing and ransomware. This session highlighted critical vulnerabilities affecting businesses today,…
Chinese government hackers have reportedly infiltrated the U.S. Treasury Department office responsible for administering economic sanctions, according to a report by the Washington Post. This breach, characterized as a significant cyberattack, resulted in the theft of unclassified documents, as disclosed in a recent letter to Congress. Sources within the U.S.…
Governance & Risk Management, IT Risk Management, Vulnerability Assessment & Penetration Testing (VA/PT) Amit Yoran Passes Away After Brief Battle with Cancer Michael Novinson ( @MichaelNovinson) • January 4, 2025 On January 4, 2025, Amit Yoran, a prominent figure in the cybersecurity industry and the CEO of Tenable, passed away…
Rutherford County Schools Data Breach: An Examination of Cybersecurity Vulnerabilities In mid-December, the hacker group known as "Rhysida" surfaced on the dark web, advertising an auction that offered sensitive data stolen from Rutherford County Schools. The group initially sought a ransom of 20 Bitcoin, roughly equivalent to $2 million. When…
Governance & Risk Management, Privacy Plaintiffs Sue Apple, Alleging Eavesdropping via Siri Akshaya Asokan (asokan_akshaya) • January 4, 2025 Image: Shutterstock Apple Inc. has agreed to a $95 million settlement in response to a lawsuit alleging that the technology giant unlawfully recorded conversations through its Siri virtual assistant. Plaintiffs claimed…
New Draft Digital Personal Data Protection Rules Mandate Enhanced Data Security Measures for Companies In a significant move to bolster data privacy in India, businesses are now required to adopt stringent data security protocols in response to the recently unveiled draft Digital Personal Data Protection (DPDP) rules. Key measures such…
Fraud Management & Cybercrime , HIPAA/HITECH , Ransomware Indiana Attorney General Imposes $350,000 Fine on Westend Dental Following 2020 Ransomware Incident Marianne Kolbasuk McGee (HealthInfoSec) • January 3, 2025 Indiana’s Attorney General claims Westend Dental attempted to downplay its 2020 ransomware breach. (Image: Getty Images) In a significant…
Atos Denies Breach Amid Ransomware Allegations The French technology company Atos has refuted claims made by the ransomware group known as Space Bears, stating that its internal systems were not compromised. In a statement released on January 3, the struggling IT service provider emphasized that no internal infrastructure was breached,…
