Blog
-
Half of French Population Exposed in Data Breach as Payment Providers Targeted
Two payment providers for the French medical insurance industry have been breached, and a total of over 33 million records that contain sensitive information have been exposed in the data breach.
-
Bank of America’s Third Party Data Breach Teaches Hard Lesson at Expense of 57,000 Customers
Though Bank of America does not appear to have been directly at fault, another third party data breach at one of its service providers has compromised the personal information of over 57,000 customers and has once again thrown vendor screening and security into the spotlight.
-
Chinese Hackers Have Been in US Critical Infrastructure for At Least Half a Decade
The infamous “Volt Typhoon” group has been hanging around in critical infrastructure for longer than previously documented, with CISA and the FBI warning that some companies have been compromised by the Chinese hackers for at least five years now.
-
Clorox and Johnson Controls Collectively Paid $76 Million to Cover 2023 Data Breach Costs
Clorox paid about $49 million and Johnson Controls paid about $27 million to cover data breach costs in 2023. The total of nearly $76 million is in actual money paid for contracting and assorted remediation measures.
-
Deepfake Scams Reach the Next Level as HK$200 Million Is Stolen in Hong Kong Fraud Case
A fake video conference managed to net threat actors HK$200 million in a first-of-its-kind deepfake scam. The attackers were able to simulate video for a virtual room full of company executives, apparently using nothing but existing public sources.
-
Asia Pacific Job Boards Raided by “ResumeLooters” Hacking Group
An unusual hacking group that focuses on resumes has been on a spree in the Asia Pacific (APAC) region, compromising at least 65 websites and gathering up over half a million in total.
-
Number of Data Breaches Continues to Surge, Pushed by Zero Days and Supply Chain Attacks
The ITRC has been tracking data breaches for nearly two decades now and has never seen a year as bad as 2023 before, with 72% more than the previous record year’s total.
-
Beijing Law Enforcement Claims to Have Broken AirDrop Sharing Encryption
Justice Bureau of Beijing has claimed it has the capacity to unmask the email addresses and phone numbers of senders using Apple’s AirDrop sharing.
-
To What Extent Are Chinese Hackers Still in US Critical Infrastructure? FBI Issues a Strong Warning
The plan for Chinese hackers appears to be a focus on the critical infrastructure that supports military installations, but Wray warns that these groups are also likely to make more general attacks aimed at causing chaos in the lives of US civilians.
-
US Takes On Volt Typhoon, Chinese Hacking Group That Has Nested in Critical Infrastructure Companies
The FBI and DOJ are on the offensive against a Chinese hacking group thought to have infiltrated US critical infrastructure. Its activity highlights the need for vigilance in keeping an updated inventory of outdated and known vulnerable devices.