New York City- based IoT device maker Ubiquiti recently disclosed a data breach that was downplayed. After news of the catastrophic data breach, the shares of the company fell significantly this week. In January, Ubiquiti informed customers that unauthorized access to some IT systems hosted by a third-party cloud provider occurred. The company said in…
Critical Infrastructure Security , Cybercrime , Fraud Management & Cybercrime DOJ: Wyatt Travnichek Allegedly Accessed Cleaning and Disinfecting System Prajeet Nair (@prajeetspeaks) • April 2, 2021 This is the website of the Ellsworth County Rural Water District in Kansas. The facility was targeted in an attack in 2019, according to the Justice Department….
New York’s Department of Financial Services (DFS) warns of an ongoing series of attacks resulting in the theft of personal information belonging to hundreds of thousands of New Yorkers. The warning follows another alert issued last month describing how this aggressive cybercrime campaign exploits cybersecurity flaws found in public-facing websites to steal Nonpublic Information (NPI). The attacks…
Shares of New York City-based IoT device maker Ubiquiti (NYSE: UI) fell significantly this week following a report claiming that the recently disclosed data breach was “catastrophic” and that its impact was downplayed. Ubiquiti informed customers in January that it had detected unauthorized access to some IT systems hosted by an unnamed third-party cloud provider….
Breach Notification , Incident & Breach Response , Security Operations Seller of 99 Million Customers’ Stolen Data Calls Firm ‘Incompetent,’ but Stops Sale Mathew J. Schwartz (euroinfosec) • April 1, 2021 A broker of breached data claims via dedicated .onion leak site to have deleted 8TB of stolen MobiKwik customer data that the…
Application Security & Online Fraud , Cybercrime , Fraud Management & Cybercrime NY Officials: Fraudsters Continue to Probe Sites for Security Weaknesses Prajeet Nair (@prajeetspeaks) • April 2, 2021 New York state officials are warning CISOs and other executives in the banking and insurance industries that fraudsters continue to probe for security weaknesses…
Governance & Risk Management , Identity & Access Management , IT Risk Management Discussion Tackles Critical Risk Management Issues Anna Delaney (annamadeline) • April 1, 2021 Clockwise, from top left: Suparna Goswami, Anna Delaney, Mathew Schwartz and Tom Field Four editors at Information Security Media…
UK Cyber Security Council Officially Launches as Independent Body | IT Security News Sponsors Endpoint Cybersecurity www.endpoint-cybersecurity.com – Consulting in building your security products– Employee awareness training– Security tests for applications and pentesting… and more. Daily Summary Categories CategoriesSelect Category(ISC)2 Blog (323)(ISC)2 Blog infosec (13)(ISC)² Blog (334)2020-12-08 – Files for an ISC diary (recent Qakbot activity) (1)2020-12-11 – Quick…
The US Department of Justice has indicted today a Kansas man on charges of hacking into the computer system of a local water utility and trying to sabotage water processing operations with the intent to harm the local public. According to court documents, the incident took place on March 27, 2019, and involved Wyatt Travnichek,…
Greg Woolf of FiVerity Discusses a Federal Reserve Initiative to Better Define the Crime Nick Holland (@nickster2407) • April 2, 2021 Greg Woolf, CEO and founder, FiVerity Synthetic identity fraud (SIF) is a pervasive yet ill-defined crime. Greg Woolf of FiVerity discusses a recent initiative by the…
