The Breach News

AI-Driven Personalized Skincare: Balancing Innovation with Data Privacy

Haut.AI’s AI-Driven Innovations in Skincare: A Conversation with CEO Anastasia Georgievskaya Artificial intelligence (AI) is making notable advancements in the skincare industry, offering personalized insights and enhancing customer interactions. Haute.AI, an Estonia-based company co-founded by CEO Anastasia Georgievskaya, is at the forefront of this transformation. By integrating data-driven methods and…

Read MoreAI-Driven Personalized Skincare: Balancing Innovation with Data Privacy

Guernsey’s Data Protection Authority Releases Updated Breach Statistics

Recent Data Breach Insights from Guernsey’s Office of the Data Protection Authority In the latest update from Guernsey’s Office of the Data Protection Authority (ODPA), officials have reported on data breaches occurring between July 1 and September 30, 2024. During this quarter, a total of 40 personal data breaches were…

Read MoreGuernsey’s Data Protection Authority Releases Updated Breach Statistics

APT31 Linked to Cyberattacks on Air-Gapped Systems in Eastern Europe

August 01, 2023
Cyber Attack / Data Security

A Chinese-affiliated nation-state actor is under suspicion for a series of cyberattacks targeting industrial organizations in Eastern Europe last year, aimed at extracting information from air-gapped systems. Cybersecurity firm Kaspersky has attributed these intrusions with medium to high confidence to the hacking group known as APT31, which is also recognized by the aliases Bronze Vinewood, Judgement Panda, and Violet Typhoon (previously Zirconium). This conclusion is based on shared tactics observed in the attacks. The intrusions involved over 15 different implants and their variants, categorized into three primary functions: establishing persistent remote access, collecting sensitive data, and transmitting the stolen information to infrastructure controlled by the attackers. Notably, one type of implant appeared to be an advanced modular malware, designed to profile removable drives and infect them with a worm to extract data from isolated air-gapped networks.

China’s APT31 Linked to Data Breaches in Eastern Europe’s Industrial Sector In a developing cybersecurity crisis, it has been reported that a state-sponsored hacking group with ties to China has been implicated in a series of targeted attacks on industrial organizations in Eastern Europe. These attacks, which occurred over the…

Read More

APT31 Linked to Cyberattacks on Air-Gapped Systems in Eastern Europe

August 01, 2023
Cyber Attack / Data Security

A Chinese-affiliated nation-state actor is under suspicion for a series of cyberattacks targeting industrial organizations in Eastern Europe last year, aimed at extracting information from air-gapped systems. Cybersecurity firm Kaspersky has attributed these intrusions with medium to high confidence to the hacking group known as APT31, which is also recognized by the aliases Bronze Vinewood, Judgement Panda, and Violet Typhoon (previously Zirconium). This conclusion is based on shared tactics observed in the attacks. The intrusions involved over 15 different implants and their variants, categorized into three primary functions: establishing persistent remote access, collecting sensitive data, and transmitting the stolen information to infrastructure controlled by the attackers. Notably, one type of implant appeared to be an advanced modular malware, designed to profile removable drives and infect them with a worm to extract data from isolated air-gapped networks.

Fundamentals of Sustainability Data Management

We Appreciate Your Registration with ISMG Enhance your profile and keep informed Title LevelAnalytics/Architecture/EngineeringAttorney / General Counsel / CounselAVPBoard of DirectorC – levelC Level – OtherCCOCEO / PresidentCFOChairpersonCIOCISO / CSOCISO/CSO/CIOCOOCROCTODirectorEVP / SVP / FVPHeadHealthcare ProfessionalManagerManager / SupervisorPartnerSpecialist/OtherStaffVP–Other Title Level– Job FunctionAnti-Money Laundering (AML)AuditBSABusiness Continuity/Disaster RecoveryBusiness DevelopmentCashier / Customer Service /…

Read MoreFundamentals of Sustainability Data Management

Could You Qualify for Up to $10,000 from the 23andMe Data Breach Settlement?

23andMe recently announced its intention to settle a class-action lawsuit amounting to $30 million, following allegations of inadequate protection of user data. In 2023, a data breach compromised the personal information of approximately half of the company’s user base, leading to increased skepticism surrounding the well-known ancestry service. Individuals who…

Read MoreCould You Qualify for Up to $10,000 from the 23andMe Data Breach Settlement?

Researchers Uncover Cyber Campaign by Space Pirates Targeting Organizations in Russia and Serbia

August 1, 2023
Cyber Attack / Malware

The cyber threat group known as Space Pirates has been implicated in attacks on at least 16 organizations across Russia and Serbia in the past year, utilizing innovative tactics and expanding their cyber arsenal. According to a detailed report from Positive Technologies released last week, the group’s primary objectives remain espionage and the theft of sensitive information, but they have broadened both their targets and geographical reach. The affected entities include government agencies, educational institutions, private security firms, aerospace manufacturers, agricultural producers, and companies in the defense, energy, and healthcare sectors. Space Pirates was initially identified by Positive Technologies in May 2022, specifically for its attacks on the aerospace industry in Russia. The group is believed to have been active since at least late 2019 and is linked to another cyber adversary tracked by Symantec under the name Webworm. Positive Technologies’ investigation into these attacks reveals further insights into the group’s methods and targets.

Space Pirates’ Cyber Operations Targeting Organizations in Russia and Serbia Unveiled In a troubling revelation, researchers from Positive Technologies have identified a series of cyber attacks conducted by a threat actor known as Space Pirates, targeting at least 16 organizations in Russia and Serbia throughout the past year. This group…

Read More

Researchers Uncover Cyber Campaign by Space Pirates Targeting Organizations in Russia and Serbia

August 1, 2023
Cyber Attack / Malware

The cyber threat group known as Space Pirates has been implicated in attacks on at least 16 organizations across Russia and Serbia in the past year, utilizing innovative tactics and expanding their cyber arsenal. According to a detailed report from Positive Technologies released last week, the group’s primary objectives remain espionage and the theft of sensitive information, but they have broadened both their targets and geographical reach. The affected entities include government agencies, educational institutions, private security firms, aerospace manufacturers, agricultural producers, and companies in the defense, energy, and healthcare sectors. Space Pirates was initially identified by Positive Technologies in May 2022, specifically for its attacks on the aerospace industry in Russia. The group is believed to have been active since at least late 2019 and is linked to another cyber adversary tracked by Symantec under the name Webworm. Positive Technologies’ investigation into these attacks reveals further insights into the group’s methods and targets.

Live Webinar | Empowering Teams for Compliance and Cyber Resilience in Meeting Security Standards

Profile of Theo Zafirakos: CISO and Cybersecurity Strategist CISO and Professional Services Lead at Fortra’s Terranova Security Theo Zafirakos stands out as a prominent figure in the cybersecurity landscape, serving as the Chief Information Security Officer at Fortra’s Terranova Security. With extensive expertise in security awareness strategy, governance, and privacy,…

Read MoreLive Webinar | Empowering Teams for Compliance and Cyber Resilience in Meeting Security Standards

Safaricom Faces Scrutiny as Senators Seek Explanations on Alleged Data Breaches

Pedestrians walk past a Safaricom customer service center in Nairobi’s central business district during the launch of its 5G internet service on October 27, 2022. (Reuters) Safaricom, Kenya’s leading telecommunications provider, is currently under investigation by Kenyan legislators regarding allegations of subscriber privacy violations and potential state surveillance facilitation. The…

Read MoreSafaricom Faces Scrutiny as Senators Seek Explanations on Alleged Data Breaches