3rd Party Risk Management, Governance & Risk Management, Incident & Breach Response DOJ Accuses Alleged Hackers of Stealing Terabytes of Data From Snowflake Victims Chris Riotta (@chrisriotta) • November 13, 2024 Connor Moucka and John Binns face charges for allegedly stealing terabytes of data from Snowflake, affecting over 165 organizations.…
Kroll Reports SIM Swapping Incident Affecting Employee’s Data On August 19, 2023, Kroll, a prominent risk and financial advisory solutions provider, disclosed that one of its employees fell prey to a sophisticated SIM swapping attack targeting their T-Mobile account. The company emphasized that, without authorization or communication with Kroll, T-Mobile…
The recent investigation by Mandiant, a cybersecurity arm of Google, has unveiled significant insights regarding the breach incidents attributed to a hacker identified as UNC5537. Austin Larsen, a threat intelligence analyst at Mandiant, characterizes this hacker as “one of the most consequential threat actors of 2024.” The repercussions of these…
A hacker believed to be behind a significant series of breaches involving Snowflake accounts has been apprehended in Canada, following a request from U.S. law enforcement. The Canadian Justice Department confirmed the detention of Alexander Moucka, also known as Connor, under a provisional arrest warrant on October 30. Reports of…
In 2024, organizations navigated a complex landscape of emerging cybersecurity regulations as governments around the world introduced stricter mandates aimed at safeguarding privacy and data security across various sectors. While these regulations emerged, security and risk leaders raced to fortify their defenses against evolving technologies, such as generative AI (genAI),…
Spike in Complaints to ICO Signals Growing Data Breach Concerns Recent data reveals a significant increase in complaints regarding potential data breaches, with reports to the Information Commissioner’s Office (ICO) more than doubling since the implementation of stricter regulations in May. According to statistics from commercial law firm EMW, the…
A prominent data leaker has claimed to have successfully infiltrated Cisco, a leading networking technology firm, and exfiltrated sensitive company data. This discovery has prompted Cisco to initiate an investigation into the incident. Earlier this week, a cybercriminal operating under the alias IntelBroker took to BreachForums, a well-known hacking marketplace,…
Major Data Breach Allegedly Targets Cisco Systems: Intel Broker Claims Responsibility Intel Broker, a notorious figure in the realm of cybercrime, has asserted that he successfully breached Cisco Systems, Inc., resulting in the theft of a significant trove of sensitive data, including source codes, confidential documents, and various credentials. The…
The U.K. National Cyber Security Centre (NCSC) is urging smart device manufacturers to align with new regulatory measures set to take effect on April 29, 2024. These regulations prohibit the use of default passwords, marking a significant shift toward enhancing cybersecurity for Internet of Things (IoT) devices. The legislation, known…
