The Breach News

5 Practical Strategies to Safeguard Against GenAI Data Leaks While Maintaining AI Accessibility

Since its inception, Generative AI has significantly transformed productivity within enterprises, streamlining processes such as software development, financial analysis, business strategy formulation, and customer interaction. Nonetheless, this surge in efficiency brings substantial risks, notably regarding the possibility of sensitive data leaks. Organizations find themselves in a precarious position, striving to…

Read More5 Practical Strategies to Safeguard Against GenAI Data Leaks While Maintaining AI Accessibility

Cyberattack Strikes American Water, Disables Customer Portal and Billing Services

American Water has recently reported a significant cybersecurity incident that has disrupted its computer networks and systems, impacting its customer portal and billing functions. The company, which is the United States’ largest publicly traded water and wastewater utility, based in Camden, New Jersey, reassured its clients that their water services…

Read MoreCyberattack Strikes American Water, Disables Customer Portal and Billing Services

DHS Investigates $4.3 Billion in Ransomware Payments

A recent report from Homeland Security Investigations (HSI), published on October 4, 2024, indicates significant advancements in the recovery of funds linked to ransomware activities. HSI officials have successfully tracked and recovered approximately $4.3 billion in cryptocurrency payments associated with ransomware over the last three years. The Department of Homeland…

Read MoreDHS Investigates $4.3 Billion in Ransomware Payments

Over 237,000 Comcast Customers Affected by Security Breach

On February 14, 2023, a significant data breach affecting over 237,000 customers of Comcast was reported, underscoring the vulnerabilities associated with third-party vendor relationships in the cybersecurity landscape. The recently disclosed incident involved the theft of sensitive personal data, including names, addresses, Social Security numbers, birth dates, and Comcast account…

Read MoreOver 237,000 Comcast Customers Affected by Security Breach

CISA Alerts on Serious Jenkins Vulnerability Being Targeted in Ransomware Attacks

The Cybersecurity and Infrastructure Security Agency (CISA) has recently added a significant vulnerability related to Jenkins to its Known Exploited Vulnerabilities (KEV) catalog due to its exploitation in ransomware attacks. This vulnerability, designated as CVE-2024-23897 with a critical CVSS score of 9.8, is classified as a path traversal flaw that…

Read MoreCISA Alerts on Serious Jenkins Vulnerability Being Targeted in Ransomware Attacks

Oyster Backdoor Distribution Through Compromised Popular Software Downloads

In a recent analysis by Rapid7, a new malvertising campaign has emerged that exploits trojanized installers for widely used software like Google Chrome and Microsoft Teams to deploy a backdoor known as Oyster. This malicious software, which is also referred to as Broomstick and CleanUpLoader, poses significant risks to unsuspecting…

Read MoreOyster Backdoor Distribution Through Compromised Popular Software Downloads

China’s Salt Typhoon Breaches AT&T and Verizon, Compromising Wiretap Data: Report

A sophisticated hacking group, known as Salt Typhoon and believed to be linked to China, has infiltrated major U.S. telecom providers AT&T, Verizon, and Lumen Technologies, compromising wiretap systems crucial for criminal investigations. The breach raises significant national security concerns in the United States and jeopardizes critical telecommunications infrastructure. Reports…

Read MoreChina’s Salt Typhoon Breaches AT&T and Verizon, Compromising Wiretap Data: Report

Insurance Companies Could Stop Covering Ransomware Payments Due to White House Pressure

In a significant development regarding ransomware payments, insurance firms may soon be prompted to reevaluate their policies. A call for mandatory directives on the subject emerged from a White House official, signaling potential shifts in the industry. This issue was a focal point during the 4th Annual International Counter Ransomware…

Read MoreInsurance Companies Could Stop Covering Ransomware Payments Due to White House Pressure

A Holistic Strategy for Outsourcing Cybersecurity – Fierce Healthcare

A Comprehensive Approach to Outsourcing Cybersecurity As organizations increasingly rely on digital frameworks, the landscape of cybersecurity threats continues to evolve, mandating a robust and adaptive response strategy. A recent report sheds light on a significant trend in the cybersecurity industry: the outsourcing of cybersecurity functions to specialized firms. This…

Read MoreA Holistic Strategy for Outsourcing Cybersecurity – Fierce Healthcare