Breach Roundup: US Ambassador to China's Email Hacked Too

Anviksha More • July 20, 2023

This week, the U.S. ambassador to China was the latest Chinese hack victim, Linux malware infected 70,000 routers, Norway banned Meta ads, the MOVEit breach affected 1.2 million more customers, a Russian medical lab suffered a ransomware attack, and Estée Lauder shut down systems after a breach.

Cybercrime

Russian Hackers Probe Ukrainian Defense Sector With Backdoor

Latest

Cloud Access Security Brokers (CASB)

Manny Rivelo on Why Forcepoint Will Sell Its Government Unit

Michael Novinson • July 20, 2023

The proposed $2.45 billion sale of Forcepoint's government security business to TPG will fuel investment and growth for both public sector and commercial customers, CEO Manny Rivelo said. Forcepoint determined that its government practice would benefit from an additional set of investments.

3rd Party Risk Management

Feds Warn Hospitals, Telehealth Firms About Web Tracker Use

Marianne Kolbasuk McGee • July 20, 2023

The U.S. Federal Trade Commission and the Department of Health and Human Services are jointly warning dozens of hospitals and telehealth providers of potential patient data privacy and cybersecurity violations involving the use of online tracking technologies.

API Security

Graylog Buys API Security Firm Resurface for Added Telemetry

Michael Novinson • July 20, 2023

Graylog bought an API security startup founded by a former Dell and Intel software engineer to give its customers broader and more complete threat detection. Resurface.io will allow companies to conduct threat hunting across the full set of API request response data rather than rely on metadata.

Cryptocurrency Fraud

Cryptohack Roundup: Regulations, Multichain Update

Rashmi Ramesh • July 20, 2023

Between July 14 and 20, senators introduced a bill to address DeFi risk, Nasdaq held back crypto custody plans, DeFi hackers laundered lesser amounts of stolen funds in the first half of this year than in H1 2022, and an Australian bank blocked payments to high-risk crypto exchanges.

Endpoint Detection & Response (EDR)

Combat IT Team Burnout by Embracing Automation

Anna Delaney • July 20, 2023

Unnecessary cyber alerts are a threat that can overwhelm defenders, leading to burnout and reduced efficiency within the team. Chris Waynforth, vice president and general manager at Expel, said adopting automation solutions to filter and prioritize alerts allows for more effective incident response.

Finance & Banking

Lessons Learned From Brazil's PIX for US FedNow Program

Suparna Goswami • July 20, 2023

Brazil's instant payment system, PIX, is second only to India's UPI in number of transactions. As the United States prepares for the launch of FedNow, GFT's Carlos Kazuo Missao shares his experience with PIX and some important lessons U.S. banks can learn from Brazil.

Endpoint Security

White House Unveils Cyber Trust Label for Smart Devices

Prajeet Nair • July 19, 2023

The Biden administration on Tuesday initiated a nationwide cybersecurity certification and labeling program aimed at helping consumers choose smart devices that offer enhanced protection against hacking risks. Products will have a QR code and follow NIST standards.

Cyberwarfare / Nation-State Attacks

Microsoft Expands Logging Access After Chinese Hack Blowback

Michael Novinson • July 19, 2023

Microsoft customers will gain access to expanded cloud logging capabilities at no additional cost just days after lower-level customers were unable to detect a Chinese cyberattack. CISA has identified several security logs - critical to detect and prevent threat activity - that currently cost extra.

Cyberwarfare / Nation-State Attacks

Ukrainian Police Shutter Propaganda-Spreading Bot Farm

Mihir Bagwe • July 19, 2023

The Ukrainian Cyber Police dismantled yet another large-scale bot farm spreading Russian propaganda over social media. Cyber police seized nearly 150,000 SIM cards of different mobile operators used in the campaign to create fake social media profiles.

Governance & Risk Management

What Info Security Can Learn From Product Security

Tony Morbin • July 19, 2023

Product security is the other half of the security picture. While IT security focuses on an internal audience, product security teams must respond quickly to issues identified by customers and researchers. Quentyn Taylor of Canon EMEA discussed the value of product security programs.

Breach Notification

Reporting Cyber Incidents Within 72 Hours: Challenges Ahead

Marianne Kolbasuk McGee • July 19, 2023

Many critical infrastructure sector organizations, especially smaller entities, will likely struggle to comply with an upcoming requirement to report cyber incidents to federal regulators within 72 hours - due to an assortment of reasons, said Stanley Mierzwa of Kean University.

Governance & Risk Management

Utility Experts Highlight Chinese Threat to US Electric Grid

Michael Novinson • July 18, 2023

China poses a growing threat to U.S. electric infrastructure and could potentially disrupt the power grid, gas and pipeline systems by exploiting compromised equipment and harnessing emerging artificial intelligence technologies for cyberattacks, experts told Congress on Tuesday.