Valid account credentials are behind most cyber intrusions, CISA finds

The success rate of these techniques underscores the staying power of the most common methods threat actors use to gain initial access to targeted systems.

By Matt Kapko • July 28, 2023

Average cost of healthcare data breach reaches $11M, report finds

The sector continues to be the most expensive industry for data breaches, with costs increasing 53% since 2020.

By Emily Olsen • July 25, 2023

Investigations are causing data breach costs to skyrocket, IBM finds

Organizations are under mounting pressure to conduct more thorough investigations as the complexity of data breaches grow.

By Matt Kapko • July 24, 2023

Microsoft attackers may have data access beyond Outlook, researchers warn

Microsoft is pushing back on claims by Wiz that compromised private encryption keys may have exposed SharePoint, Teams and OneDrive data to an APT actor.

By David Jones • July 21, 2023

Estée Lauder takes down some systems following cyberattack

ALPHV, the ransomware threat actor taking credit for the attack, threatened to reveal more information about the data it claims to have stolen.

By Matt Kapko • July 19, 2023

GoTo, parent company to LastPass, names new CISO

The change in security leadership comes months after the third-party cloud storage service GoTo shares with LastPass was breached.

By Matt Kapko • July 19, 2023

UKG agrees to pay up to $6M in lawsuit tied to 2021 breach

The payroll services provider reached an agreement to settle a class action lawsuit tied to a ransomware attack that targeted its Kronos Private Cloud service.

By Matt Kapko • July 18, 2023

Microsoft hardens key issuance systems after state-backed hackers breach Outlook accounts

The China-linked group, which Microsoft calls Storm-1558, has adopted new techniques after it took steps to disrupt their recent hacking activity.

By David Jones • July 17, 2023

MOVEit mass exploit timeline: How the file-transfer service attacks entangled victims

The slow-moving disaster has ensnared some of the world's largest enterprises. Cybersecurity experts expect further damage to come.

By Matt Kapko • July 14, 2023

Johns Hopkins hit with class action suit following MOVEit data breach

The suit alleges that the health system failed to implement safeguards to secure patients’ health information and provided insufficient details about the stolen data.

By Sydney Halleman • July 12, 2023

Suncor Energy confirms hackers breached Petro-Canada gas stations’ customer rewards data

The company, the largest integrated energy firm in Canada, said field operations were not impacted.

By David Jones • July 6, 2023

MOVEit vulnerability snags almost 200 victims, more expected

The education sector has been hit particularly hard as many widely used vendors in the space confirm impacts linked to the mass exploited vulnerability.

By Matt Kapko • July 5, 2023

Cyberattack exposes data on nearly 9K American and Southwest Airlines pilot applicants

Two of the world’s largest airlines no longer use recruitment portal Pilot Credentials after a cyberattack at the end of April.

By Matt Kapko • June 27, 2023

MOVEit vulnerability ensnares more victims

Some organizations have been impacted due to their direct use of MOVEit while others have been exposed by third-party vendors.

By Matt Kapko • June 27, 2023

Big names disclose MOVEit-related breaches, including PwC, EY and Genworth Financial

More than 100 organizations have been hit as part of the MOVEit attack campaign, including PBI Research Services, which exposed millions of customer data files to theft. 

By David Jones • June 23, 2023

Dole says February ransomware attack breached data of almost 3,900 US workers

The fresh produce giant disclosed the data security impact in a filing with the Maine Attorney General.

By David Jones • June 22, 2023

Progress Software faces federal class action lawsuits as MOVEit breach exposure widens

Louisiana residents allege their personal financial information was put at risk after the state's motor vehicles department had data exposed in the MOVEit data breach. 

By David Jones • June 21, 2023

US puts $10M bounty on Clop as federal agencies confirm data compromises

Additional private sector companies have disclosed attacks after multiple vulnerabilities were found in MOVEit Transfer software.

By David Jones • June 20, 2023

Another MOVEit vulnerability found, as state and federal agencies reveal breaches

The third vulnerability since Progress Software first disclosed a MOVEit Transfer zero day arrived just as CISA officials said a “small number” of federal agencies were impacted. 

By Naomi Eide • June 16, 2023

Clop names a dozen MOVEit victims, but holds back details

As its deadline expired, the ransomware group released the first batch of victim organizations, most of which were U.S.-based, ReliaQuest found.

By Naomi Eide • June 15, 2023

Minnesota Department of Education exposed in MOVEit data breach

The departments discovered on May 31 that 24 of its files on the MOVEit server had been accessed by an outside entity, including 95,000 student names in foster care across the state.

By Anna Merod • June 14, 2023

Ahead of summer holiday weekends, IT security leaders brace for deliberate cyber mischief

Recent history shows holiday weekends and vacations provide an attack surface bonanza for threat actors.

By David Jones • May 26, 2023

CISA updates ransomware guide 3 years after its debut

The #StopRansomware guide, updated in partnership with the FBI, NSA and MS-ISAC, reflects aggressive new techniques used by threat actors, including double extortion.

By David Jones • May 24, 2023

Yum Brands faces class action suits from employees after ransomware attack

The Taco Bell and KFC operator is facing litigation after some personal data of company employees was stolen in the attack.

By David Jones • May 16, 2023

Western Digital cyberattack not expected to have material impact on future earnings

The company is coordinating with law enforcement while it continues a forensic investigation. 

By David Jones • May 15, 2023