In a recent development within the cybersecurity landscape, a previously unidentified threat actor has been linked to a series of cyber-attacks targeting organizations in Taiwan’s manufacturing, IT, and biomedical sectors. This newly recognized entity, dubbed Grayling, was identified by the Symantec Threat Hunter Team, which operates under Broadcom, and is…
Data Breach Exposes Personal Information of 800,000 Individuals at Landmark Admin In a significant cybersecurity incident, Landmark Admin, a provider of administrative services to major U.S. insurance companies, revealed that a cyberattack in May 2024 compromised the personal data of over 800,000 people. This breach underscores the vulnerabilities prevalent within…
Rockwell Automation is urging its clients to disconnect any industrial control systems (ICSs) that are not intended for public internet access in order to prevent unauthorized or harmful cyber activities. This advisory comes in light of escalating geopolitical tensions and an increase in adversarial cyber actions across the globe, according…
Leadership & Executive Communication, Training & Security Leadership, Video CIO Alex Gallo Discusses Managing Digital Transformation, Security, and Lifelong Learning Anna Delaney (annamadeline) • November 1, 2024 Alex Gahlo, CIO and CyberEdBoard member In a landscape increasingly defined by rapid digital transformation, Alex Gallo, a member of CyberEdBoard and Chief…
Black Basta Ransomware Targets Critical Infrastructure Globally The Black Basta ransomware-as-a-service (RaaS) group has made a significant impact since its inception in April 2022, successfully compromising over 500 private and critical infrastructure entities across North America, Europe, and Australia. Recent joint advisories released by leading cybersecurity authorities, including the Cybersecurity…
Cyberattacks Disrupt Ukrainian Telecommunications Amid Ongoing Conflicts Recent reports from the Computer Emergency Response Team of Ukraine (CERT-UA) indicate that threat actors have compromised the operations of at least 11 telecommunications service providers in Ukraine between May and September 2023. This wave of cyber intrusions is being tracked under the…
Emergence of ExelaStealer: A New Player in Cybercrime A newly identified information-stealing malware, dubbed ExelaStealer, has emerged in a saturated market already teeming with tools designed to exfiltrate sensitive information from compromised Windows systems. This evolving threat, flagged by FortiGuard Labs, showcases how cybercriminals continually adapt their tactics and tools…
Governance & Risk Management, Incident & Breach Response, Insider Threat Everfox Acquires Yakabod to Enhance Cyber Incident Response and Insider Risk Management Michael Novinson (@MichaelNovinson) • November 1, 2024 Sean Berg, CEO, Everfox (Image: Everfox) Everfox has announced its acquisition of Yakabod, a company previously led by the former Chief…
The Medusa Ransomware group has potentially orchestrated one of the largest data breaches in the history of U.S. pathology laboratories, impacting over 1.8 million patients associated with Summit Pathology Laboratory in Colorado. This incident highlights significant vulnerabilities within the healthcare sector, raising alarming questions regarding data security practices in an…
