Ransomware attacks fuelled increase in data theft in 2020, says IBM Security

GRC World Forum reports: Ransomware attacks increased 20% in 2020 compared to the previous year, with “double-extortion” tactics used in 59% of cases, according to a report by IBM Security The 2021 X-Force Threat Intelligence Index also showed how criminals pivoted their attacks to businesses and organisations on which global Covid-19 response efforts relied, including hospitals,...

FDA Names First Acting Director of Medical Device Cybersecurity

Michael R. Bertoncini of JacksonLewis  writes: The U.S. Food and Drug Administration (FDA) named University of Michigan Associate Professor Kevin Fu Acting Director of Medical Device Security in its Center for Devices and Radiological Health. This is a newly created 12-month post in which Fu will “work to bridge the gap between medicine and...

Lazarus targets defense industry with ThreatNeedle

Vyacheslav Kopeytsev and Seongsu Park write: We named Lazarus the most active group of 2020. We’ve observed numerous activities by this notorious APT group targeting various industries. The group has changed target depending on the primary objective. Google TAG has recently published a post about a campaign by Lazarus targeting security researchers. After taking a closer...

Privacy Policy Ponderings

Matt Fisher writes: …  Could a Privacy Policy be viewed as a contract of adhesion? First, that raises the question of what exactly is a contract of adhesion. It can be a standard form contract that is drafted by one party, often with more leverage, and presented to another party for acceptance without the...

Insider Cloud Data Theft Plagues Healthcare Sector

Phil Muncaster reports: Over a third (35%) of global healthcare organizations suffered cloud data theft by malicious insiders last year, according to data from Netwrix. The findings come from the security vendor’s 2021 Netwrix Cloud Data Security Report, based on interviews with 937 IT professionals around the world. It claimed that while insider theft was...

Fr: Montélimar: a transport group targeted by a cyber attack

The Charles André group, headquartered in Montélimar, would have been the target of a cyberattack, Le Dauphiné Libéré learned on Monday February 22 from several corroborating sources. (Translated from Le Dauphine, which reports the firm has not responded to inquiries asking whether this was a ransomware attack). h/t, @Chum1ng0

MI: Covenant HealthCare reports data breach through employee emails

Stephen Borowy reports that Covenant HealthCare has been notifying an undisclosed number of patients about a data breach that occurred last May 4 when threat actor(s) accessed two employee email accounts. According to a forensics investigation and document review, the hospital learned on Dec. 21 that the impacted email accounts were accessed on May...

CISA Releases Joint Cybersecurity Advisory on Exploitation of Accellion File Transfer Appliance

The cybersecurity authorities of Australia, New Zealand, Singapore, the United Kingdom, and the United States have released Joint Cybersecurity Advisory AA21-055A: Exploitation of Accellion File Transfer Appliance. Cyber actors worldwide have exploited vulnerabilities in Accellion File Transfer Appliance to attack multiple federal, and state, local, tribal, and territorial government organizations as well as private industry...