Recent Data Breaches in the News

A massive hacking network that Microsoft and the US military tried to stop last month is already back — and it could be a bad sign for Election Day

November 2, 2020 | Business Insider

Last month, Microsoft announced it had won a major victory in the fight against cybercrime. The company said in mid-October that it had thwarted Trickbot — a stubborn malware network that's been used to infect critical computer systems, often shutting them down for ransom.

REvil ransomware gang hacked gaming firm Gaming Partners International

October 31, 2020 | Security Affairs

Gaming Partners International (GPI) is a full-service supplier of gaming furniture and equipment for casinos worldwide. The REvil ransomware gang (aka Sodinokibi) claims to have stolen info from the systems at the company before encrypting them.

U.S. Treasury Sanctions Russian Institute Linked to Triton Malware

October 26, 2020 | Security Week

The United States Department of the Treasury’s Office of Foreign Assets Control (OFAC) has announced sanctions against a Russian government institute connected to the destructive Triton malware.

Ransomware Takes Down Network of French IT Giant

October 23, 2020 | Threat Post

French IT giant Sopra Steria was hit with a cyber attack this week that disrupted the business of the firm and is widely believed to be the work of the threat actors behind Ryuk ransomware.

NSA publishes list of top vulnerabilities currently targeted by Chinese hackers

October 20, 2020 | ZDNet

The US National Security Agency has published today an in-depth report detailing the top 25 vulnerabilities that are currently being consistently scanned, targeted, and exploited by Chinese state-sponsored hacking groups.

800,000 SonicWall VPNs vulnerable to new remote code execution bug

October 16, 2020 | ZDNet

Almost 800,000 internet-accessible SonicWall VPN appliances will need to be updated and patched for a major new vulnerability that was disclosed on Wednesday.

New research shows risk in healthcare supply chain

October 16, 2020 | Help Net Security

Exposures and cybersecurity challenges can turn out to be costly, according to statistics from the US Department of Health and Human Services (HHS), 861 breaches of protected health information have been reported over the last 24 months.

CVE-2020-5135: Critical SonicWall VPN Portal Stack-based Buffer Overflow Vulnerability

October 15, 2020 | Tenable

Researchers disclose a critical pre-authentication vulnerability in the SonicWall VPN Portal that is easily exploitable.

Ohio hospital reopens inpatient unit 3 weeks after cyberattack; system still not fully online

October 14, 2020 | Becker's Health IT

Ashtabula (Ohio) County Medical Center reopened its inpatient hospital unit Oct. 13, three weeks after a cyberattack that forced its computer system offline, according to a report from the Star Beacon.

A Millionaire Hacker’s Lessons For Corporate America

October 13, 2020 | The Wall Street Journal

Santiago Lopez started invading corporate computer systems at age 16, after he learned to hack from YouTube videos and like-minded friends.

How to build up cybersecurity for medical devices

October 12, 2020 | Help Net Security

Manufacturing medical devices with cybersecurity firmly in mind is an endeavor that, according to Christopher Gates, an increasing number of manufacturers is trying to get right.

Ransomware attacks are increasing at an unprecedented rate — and the US is now begging people not to pay ransoms

October 5, 2020 | Business Insider

The COVID-19 pandemic has shunted business across the globe online — and the transition has created countless new money-making opportunities for cybercriminals.

Understanding Third-Party Risk

White Paper
56% of organizations have experienced a data breach due to a third party.