Security Operations ESET Identifies Significant Vulnerabilities Exploited by the Russian RomCom Hacking Group Chris Riotta (@chrisriotta) • November 26, 2024 ESET reports the discovery of critical vulnerabilities in Mozilla products and Windows, exploited by the RomCom group to deploy a backdoor. (Image: Mozilla Foundation) Two critical vulnerabilities affecting Mozilla products…
HDFC Life Insurance has officially reported a data breach, disclosing the incident in a regulatory filing after market hours. The company has acknowledged that it received unauthorized communications from an unidentified source claiming to possess certain customer data, which appears to have been shared with malicious intent. To address the…
A ransomware attack has significantly disrupted operations at Starbucks, compelling the global coffee retailer to revert to manual methods for employee scheduling and payroll management. This incident is part of a broader wave of cyberattacks affecting companies around the world, particularly as the holiday season approaches. The attack, which targeted…
Artificial Intelligence & Machine Learning, Cloud Security, Next-Generation Technologies & Secure Development Sysdig Appoints New CEO Bill Welch to Strengthen Real-Time Response Capabilities and Expand Partnerships Michael Novinson (MichaelNovinson) • November 26, 2024 Bill Welch, CEO, Sysdig (Image: Sysdig) In a strategic move, Sysdig has appointed Bill Welch, the former…
In a notable enforcement action, New York State has imposed hefty fines on prominent insurance firms Geico and Travelers Indemnity Company, totaling $11.3 million due to significant data breaches linked to cybersecurity lapses during the COVID-19 pandemic. The New York Department of Financial Services (DFS) revealed that these incidents compromised…
Examination of Autonomous Vehicle Vulnerabilities Amid Safety Concerns Tesla’s disbandment of its public relations department in 2021 has left the company unresponsive to inquiries from WIRED regarding its technology. Recent research has highlighted potential vulnerabilities in the emergency detection capabilities of various automotive camera systems, tested with equipment sourced from…
A recent ransomware incident has targeted Blue Yonder, a provider of supply chain software, leading to significant disruptions in the IT systems of its client, Starbucks, a leading entity in the food and beverage sector. The breach predominantly compromised employee data; however, customer-facing services remained intact, mitigating the potential fallout…
New Legislation Enhances Cybersecurity Reporting and Device Standards in Australia On November 26, 2024, the Australian Parliament passed significant cybersecurity legislation aimed at enhancing the nation’s defenses against cyber threats. The new law, known as the Cyber Security Act, serves to formalize government efforts to improve reporting of ransomware payments,…
Healthcare Cybersecurity: Rising Threats and the Summit Pathology Data Breach Healthcare data breaches are increasingly frequent and severe, affecting millions and extending beyond just financial implications. In 2023, over 133 million patient records were either stolen or improperly disclosed, reflecting a troubling trend as the healthcare industry becomes increasingly dependent…
