No Pressure: Water Utility Drips Alert 4 Months After Breach

Mathew J. Schwartz • December 2, 2022

Is a four-month delay between learning your systems were breached and notifying affected customers acceptable? After spotting an attack in August, private utility South Staffordshire Water in England is only beginning to alert customers that they're at risk of identity theft.

►

Cybercrime

Zeppelin Ransomware Proceeds Punctured by Crypto Workaround

Latest

Fraud Management & Cybercrime

Cuba Ransomware Targeting Critical Infrastructure, Feds Warn

Prajeet Nair • December 2, 2022

The U.S. federal government says the Cuba ransomware gang actively targets critical infrastructure and that its criminal efforts have netted it $60 million so far. The group has recently modified its techniques, says an alert from the FBI and the Cybersecurity and Infrastructure Agency.

Cloud Security

Pediatric EMR Vendor Hack Affects 2.2 Million

Marianne Kolbasuk McGee • December 2, 2022

A hacking incident at a cloud-based electronic health records software vendor affects dozens of the company's pediatric practice clients and more than 2.2 million of their patients and other individuals. The breach spotlights several common but serious risks.

Critical Infrastructure Security

Tories: Firms Should Pay More for Cybersecurity Regulation

Akshaya Asokan , David Perera • December 2, 2022

The Conservative U.K. government said it will propose updates to the country's main cybersecurity regulation, including a requirement for the private sector to reimburse the public sector for enforcement activities. The government downplayed concerns that it could create perverse incentives.

Cloud Security

Clumio CEO on Why AWS S3 Buckets Pose a Giant Security Risk

Michael Novinson • December 2, 2022

The need for AWS security has increased as S3 buckets have evolved from a dumping ground for data to the home for critical cloud-native applications, says Clumio co-founder and CEO Poojan Kumar. Information in S3 buckets is susceptible to both accidental deletions and cyberattacks.

Breach Notification

ISMG Editors: Twitter Breach May Be Worse Than Advertised

Anna Delaney • December 2, 2022

In the latest weekly update, ISMG editors discuss ways organizations commonly founder when implementing a zero trust strategy, what the latest version of India's digital data protection bill means for CISOs, and how a 2022 data breach confirmed by Twitter may be worse than initially thought.

Cryptocurrency Fraud

Hacked: What's the Next Step for Web3 Companies? - Part 2

Rashmi Ramesh • December 2, 2022

Web3 companies are under attack by cybercriminals all year. After a compromise occurs, how should organizations respond? In Part 2 of this interview, Martin Derka of Web3 security firm Quantstamp discusses short-term and long-term mitigation steps and how to defend against cryptocurrency theft.

Fraud Management & Cybercrime

Most Healthcare Ransomware Hits Include Patient Data Theft

Mathew J. Schwartz • December 2, 2022

Based on known ransomware attacks against the healthcare sector, here's good news: The volume of attacks seems to have declined, says Allan Liska, a principal intelligence analyst at Recorded Future. Unfortunately, most such attacks not only trigger downtime but include the theft of patient data.

Cloud Security

Zscaler CEO: 'Uncertainty Can Act as a Catalyst for Change'

Michael Novinson • December 1, 2022

Zscaler has notched large, multiyear, multipillar deals as the economic downturn prompts clients to seek replacements for expensive legacy point products, says CEO Jay Chaudhry. Clients are increasingly buying Zscaler's secure web gateway, private access and digital experience tools as one bundle.

Fraud Management & Cybercrime

Medibank Hackers Dump Stolen Data on the Dark Web

Mihir Bagwe • December 1, 2022

The Russia-based ransomware gang behind the hack of Australia's largest private health insurer says it posted a full set of stolen data. The Australian Information Commissioner said it will probe the insurer's personal information handling practices.

Governance & Risk Management

HHS: Web Trackers in Patient Portals Violate HIPAA

Marianne Kolbasuk McGee • December 1, 2022

Federal regulators issued a warning to healthcare entities and their tech vendors that the use of tracking code embedded in patient portals that transmit patient information to third-parties could be a violation of HIPAA and punishable with monetary fines.

Next-Generation Technologies & Secure Development

Elastic Lays Off Nearly 400 Employees as SMB Spend Dwindles

Michael Novinson • December 1, 2022

Security, observability and search vendor Elastic will shrink its workforce by 13% due to small and medium businesses reducing their purchases amid the economic downturn. Elastic will lay off nearly 400 of its 3,056 employees as it adopts an automated, low-touch motion for SMB customers.

Identity & Access Management

LastPass Breach Exposes Customer Data

Prajeet Nair • December 1, 2022

Hackers stole customer information but not passwords when they broke into password manager LastPass' third-party cloud storage service, the company disclosed. An unauthorized party used information stolen during a dayslong incident in August to exfiltrate the data.