In a notable enforcement action, New York State has imposed hefty fines on prominent insurance firms Geico and Travelers Indemnity Company, totaling $11.3 million due to significant data breaches linked to cybersecurity lapses during the COVID-19 pandemic. The New York Department of Financial Services (DFS) revealed that these incidents compromised…
Examination of Autonomous Vehicle Vulnerabilities Amid Safety Concerns Tesla’s disbandment of its public relations department in 2021 has left the company unresponsive to inquiries from WIRED regarding its technology. Recent research has highlighted potential vulnerabilities in the emergency detection capabilities of various automotive camera systems, tested with equipment sourced from…
A recent ransomware incident has targeted Blue Yonder, a provider of supply chain software, leading to significant disruptions in the IT systems of its client, Starbucks, a leading entity in the food and beverage sector. The breach predominantly compromised employee data; however, customer-facing services remained intact, mitigating the potential fallout…
New Legislation Enhances Cybersecurity Reporting and Device Standards in Australia On November 26, 2024, the Australian Parliament passed significant cybersecurity legislation aimed at enhancing the nation’s defenses against cyber threats. The new law, known as the Cyber Security Act, serves to formalize government efforts to improve reporting of ransomware payments,…
Healthcare Cybersecurity: Rising Threats and the Summit Pathology Data Breach Healthcare data breaches are increasingly frequent and severe, affecting millions and extending beyond just financial implications. In 2023, over 133 million patient records were either stolen or improperly disclosed, reflecting a troubling trend as the healthcare industry becomes increasingly dependent…
Aqua Nautilus researchers have uncovered a significant Distributed Denial of Service (DDoS) campaign attributed to a threat actor known as Matrix, which appears to have Russian affiliations. This investigation highlights the vulnerabilities that are being exploited, the techniques employed, and the potential repercussions for businesses globally. The newly identified DDoS…
The landscape of cyber threats has evolved dramatically in recent years, with hackers increasingly targeting not just individual entities, but also utilizing interconnected systems to expand their attack surface. This shift is epitomized by the notorious Russian cyber group dubbed Fancy Bear, also recognized as APT28 or Forest Blizzard. Their…
3rd Party Risk Management, Fraud Management & Cybercrime, Governance & Risk Management Blue Yonder Outage Disrupts Operations for Starbucks and Major Grocery Chains Mathew J. Schwartz (euroinfosec) • November 26, 2024 Starbucks reports that the outage has compromised its payroll systems but not customer service. (Image: Shutterstock) A significant ransomware…
Ford Motor Company has recently come under scrutiny following allegations of a significant data breach that has reportedly affected around 44,000 of its customers. The incident has raised serious concerns regarding data privacy and cybersecurity within one of America’s largest automotive manufacturers. The breach is said to involve sensitive customer…
