Cyberattacks
-
At least 8 US companies hit in telecom attack spree, officials say
A deputy national security advisor warned that the China-affiliated Salt Typhoon attack spree potentially infiltrated more telecom companies and the threat group still has network access.
By Matt Kapko • Dec. 4, 2024 -
Ascension reduces operating loss as it rebounds from cyberattack
A sweeping cyberattack this spring took the provider’s electronic health record offline for weeks and led to significant losses.
By Susanna Vogel • Dec. 4, 2024 -
Trendline
Top 5 stories from Cybersecurity Dive
A wave of rules, regulations and federal action is putting pressure on businesses to shore up security amid a backdrop of emboldened threat actors has a nice ring to it.
By Cybersecurity Dive staff -
Feds raise alarm on China-linked infiltration of telecom networks
Salt Typhoon gained access to many telecom networks and stole large amounts of data, including audio and text of targeted people involved in government or politics.
By Matt Kapko • Dec. 4, 2024 -
ENGlobal IT systems impacted by ransomware attack
The attack marks at least the third disruptive cyberattack impacting energy sector providers based in Texas since August.
By Matt Kapko • Dec. 3, 2024 -
Blue Yonder moves closer to full recovery after November ransomware attack
U.K. supermarket chain Morrisons says its operations are mostly restored, while Blue Yonder is working with other customers to recover operations.
By David Jones • Dec. 2, 2024 -
New York fines Geico, Travelers $11.3M for pandemic-era breaches
The auto insurance companies were penalized for a series of attacks that exposed the personal data of 120,000 people in late 2020 and early 2021.
By Matt Kapko • Nov. 26, 2024 -
Starbucks confirms Blue Yonder attack impacted employee scheduling platform
The company is reverting to manual operations to make sure workers are paid on time, a spokesperson said.
By David Jones • Nov. 26, 2024 -
Gambling tech vendor’s IT systems impacted by cyberattack
International Game Technology, which makes slot machines and other gambling technology, said it took systems offline following a Nov. 17 cyberattack.
By Matt Kapko • Nov. 25, 2024 -
Ransomware hits supply chain software firm Blue Yonder ahead of Thanksgiving
The attack against Blue Yonder led to issues for Morrisons, a U.K.-based grocery chain, in its warehouse management system for fresh food and produce.
By David Jones • Nov. 25, 2024 -
Palo Alto Networks pushes back as Shadowserver spots 2K of its firewalls exploited
The security vendor maintains only a limited number of customers’ firewalls have been exploited by a zero-day it patched earlier this week.
By Matt Kapko • Nov. 22, 2024 -
Attackers wield password-spray attacks to zero-in on targets, research finds
The highly effective brute-force attack method requires little effort, Trellix said. Organizations with weak password policies or no MFA are especially at risk.
By Matt Kapko • Nov. 20, 2024 -
Palo Alto Networks customers grapple with another actively exploited zero-day
The security vendor warned of an unconfirmed vulnerability in PAN-OS earlier this month. A CVE entry and patch came 10 days later.
By Matt Kapko • Nov. 19, 2024 -
AI training vendor iLearningEngines discloses cyberattack in wake of SEC probe
The company said an attacker stole data, misdirected a $250,000 wire payment and deleted emails.
By Matt Kapko • Nov. 19, 2024 -
Palo Alto Networks’ customer migration tool hit by trio of CVE exploits
CISA warned of two critical and actively exploited vulnerabilities in Expedition one week after another CVE came under active exploitation in the same product.
By Matt Kapko • Nov. 15, 2024 -
Feds find ‘broad and significant’ China espionage campaign in US telecom networks
The FBI and CISA warned the nation-state affiliated malicious activities are extensive and include the theft of sensitive call records and court-ordered information.
By Matt Kapko • Nov. 14, 2024 -
5th Circuit dismisses Cargill employee’s Kronos hack, discrimination claims
The decision is also a victory for UKG, whom the employee sued separately for privacy violation allegations stemming from a 2021 ransomware attack.
By Ryan Golden • Nov. 14, 2024 -
Zero-days from top security vendors were most exploited CVEs in 2023
The top five vulnerabilities exploited by attackers last year were found in security gear from Citrix, Cisco and Fortinet, the Five Eyes’ cyber agencies found.
By Matt Kapko • Nov. 13, 2024 -
Critical Veeam CVE targeted by new ransomware variant
Multiple ransomware variants are now targeting the CVE, which has a CVSS of 9.8. For customers, the risk of exploitation is only increasing.
By Matt Kapko • Nov. 12, 2024 -
Grocery giant Ahold Delhaize’s US operations disrupted by cyberattack
The parent company said the disruption forced it to take certain systems offline and affected some pharmacies and e-commerce services.
By Catherine Douglas Moran , Sam Silverstein • Nov. 11, 2024 -
Newpark Resources discloses October ransomware attack
The incident occurred just two months after an attack against oilfield services giant Halliburton.
By David Jones • Nov. 11, 2024 -
Halliburton incurs about $35M in expenses related to August cyberattack
The company said the intrusion forced it to delay billing and collections, but the impact is not considered material.
By David Jones • Nov. 8, 2024 -
Attackers target Palo Alto Networks’ customer migration tool
An actively exploited vulnerability in Expedition allows attackers to achieve admin account takeover. The product reaches end of life in January.
By Matt Kapko • Nov. 8, 2024 -
Microchip Technology reports $21.4M expense from August cyberattack
The chipmaker said the financial impact from the attack was immaterial and largely linked to unscheduled factory outages.
By Matt Kapko • Nov. 7, 2024 -
Columbus, Ohio confirms July ransomware attack compromised data of 500K people
The city notified half a million people their personal information was at risk following the attack it attributed to a foreign threat actor.
By David Jones • Nov. 6, 2024 -
Cyberattacks hit 1 in 3 SMBs last year
Cyber woes for SMBs are exacerbated by a lack of resources to enact advanced security measures, Microsoft Security said in a report.
By Matt Kapko • Nov. 5, 2024