Ransomware Attack Hit US Natural Gas Facility

Ishita Chigilli Palli • February 19, 2020

A ransomware attack on a U.S. natural gas compression facility led to a two-day shutdown of operations, according to an alert from the Cybersecurity and Infrastructure Security Agency.

Governance

Joker's Stash Advertises Second Batch of Indian Card Data

Latest

Fraud Management & Cybercrime

Phishing Campaigns Tied to Coronavirus Persist

Apurva Venkat • February 19, 2020

As the coronavirus generates headlines around the world, cybercriminals are continuing to use this public health crisis to spread phishing emails and create malicious domains for a variety of fraud. Here's an update on the latest developments.

Endpoint Security

Amazon's Ring Mandates Two-Factor Authentication

Jeremy Kirk • February 19, 2020

Amazon's Ring is mandating the use of two-factor authentication for all users, a move designed to help stop creepy takeovers of the web-connected home security cameras. A passcode will be sent to a user's email address or by SMS.

Breach Notification

Canadian Government Breaches Exposed Citizens' Data: Report

Akshaya Asokan • February 19, 2020

Data breaches at Canadian government agencies exposed the personal information of approximately 144,000 citizens over a two-year period, according to a news report.

3rd Party Risk Management

Health Data Breach Tally Update: 2020 Trends

Marianne Kolbasuk McGee • February 19, 2020

Hacking incidents involving email appear to be the most common type of major health data breach being reported to federal regulators so far in 2020. But the largest breach added to the tally involved a type of incident rarely seen in recent years: the theft of an unencrypted laptop.

Governance

Coronavirus Update: Tips for Travel

Tom Field • February 19, 2020

Globally, the coronavirus has infected more than 75,000 people and led to over 2,000 deaths. But business travelers should avoid panic, says pandemic expert Regina Phelps, who offers preventive health tips for those headed to international events, such as the RSA 2020 conference.

Endpoint Security

Preview: 12 Top Keynote Sessions at RSA Conference 2020

Mathew J. Schwartz • February 19, 2020

Are you attending the RSA 2020 conference? To help navigate the show, here's a preview of 12 top keynote sessions featuring some of the biggest names in cybersecurity tackling critical subjects, including cryptography, critical infrastructure security, bug bounties and supply chain risks.

Business Continuity Management / Disaster Recovery

Hacked Off: Patients Sue Ransom-Paying Hospital Group

Marianne Kolbasuk McGee • February 18, 2020

Hacked-off patients are suing New Jersey healthcare organization Hackensack Meridian Health for damages after it suffered a ransomware attack last December and paid attackers an unspecified ransom to unlock its systems.

General Data Protection Regulation (GDPR)

Plastic Surgery Database Exposed: Researchers

Apurva Venkat • February 18, 2020

An unsecured database belonging to a French technology firm that supplies video and digital equipment to plastic surgery and dermatology clinics exposed content on 900,000 patients, according to a report from two independent security researchers.

Account Takeover

Mobile Banking Users Targeted in SMS Phishing Campaign

Ishita Chigilli Palli • February 18, 2020

Cybercriminals targeted mobile banking users by sending malicious SMS messages to their smartphones as part of a phishing campaign to steal account holders' information, including usernames and passwords, according to the cybersecurity firm Lookout.

Events

RSA Conference 2020 Preview

Tom Field • February 18, 2020

"The Human Element" is the theme of the RSA Conference 2020, but there are plenty of technology-rich topics in store for attendees, including session tracks that focus on election security, open source tools, product security and anti-fraud. Britta Glade, a conference director, previews the event.

Application Security

Cybersecurity Plan for 2020 US Election Unveiled

Akshaya Asokan • February 17, 2020

The U.S. Cybersecurity Infrastructure and Security Agency has released its cybersecurity plan for the run-up to the 2020 presidential election, outlining the agency's role as a facilitator that will assist federal, state and local agencies in protecting critical election infrastructure.

Business Continuity Management / Disaster Recovery

IBM Exits RSA Conference 2020 Over Coronavirus Worries

Mathew J. Schwartz • February 17, 2020

With IBM and seven other sponsors withdrawing from next week's RSA Conference 2020 - as worries over the China-centered outbreak of the coronavirus continue - will others follow suit?