The Latest

• 

  CrowdStrike says flawed update was live for 78 minutes

  Though CrowdStrike pulled the update, companies across sectors were already dealing with the cascading consequences that required manual remediations.

  Strategy

• 

  Dragos warns of novel malware targeting industrial control systems

  FrostyGoop, the ninth ICS-specific malware observed by Dragos, was linked to a January attack on an energy provider in Ukraine.

  Threats

• 

  CrowdStrike, Microsoft scramble to contain fallout from global IT outage

  Cybersecurity and IT experts said users are having major difficulties in recovery efforts, despite workarounds and guidance the vendors released.

  Strategy

• 

  CrowdStrike’s unforced error puts its reputation on the line

  The widespread release of defective code suggests CrowdStrike didn’t properly test its update before it was released or that process failed to catch the mistake, experts said.

  Strategy

• 

  CrowdStrike software update at the root of a massive global IT outage

  A defective software update led to major disruptions in aviation, banking and other industries as Microsoft 365 services were impacted worldwide.

  Updated July 19, 2024

  Strategy

• 

  Healthcare is an ‘easy victim’ for ransomware attacks. How hospitals can mitigate the damage.

  Limited resources in a highly connected ecosystem can make hospitals vulnerable, but planning ahead and implementing key protections could help thwart attacks.

  Strategy

• 

  Majority of SEC civil fraud case against SolarWinds dismissed, but core remains

  The court ruling related to claims leading up to and immediately following the 2020 Sunburst supply chain hack.

  Updated July 18, 2024

  Strategy

• 

  Larger deals propel cybersecurity funding to 2-year high in Q2

  Bigger rounds for more mature startups fueled a sustained period of funding growth for the sector, according to Crunchbase.

  Strategy

• 

  Weak credentials behind nearly half of all cloud-based attacks, research finds

  Credential mismanagement was the top initial access vector for cloud environment attacks during the first half of 2024, a Google Cloud report found.

  Breaches

• 

  UnitedHealth’s cyberattack response costs to surpass $2.3B this year

  The healthcare giant’s new estimate is roughly $1 billion higher than previous forecasts as the cyberattack on subsidiary Change Healthcare continues to hamper its profit outlook.

  Breaches

• 

  Ransomware leak site posts jumped 20% in Q2

  Threat groups claimed attacks on 1,237 organizations during the quarter, marking an increase from Q1. U.S.-based businesses accounted for more than half of all victims, Reliaquest found.

  Cyberattacks

• 

  Nearly 1 in 3 software development professionals unaware of secure practices

  The knowledge gap, identified in a Linux Foundation report, comes as malicious hackers increasingly target critical vulnerabilities.

  Strategy

• 

  Snowflake-linked attack on Advance Auto Parts exposes 2.3 million people

  One of the few customers to publicly link Snowflake to a third-party intrusion said its database was breached for 40 days. 

  Cyberattacks

• 

  AutoNation warns CDK cyberattack will dent quarterly earnings

  The major North American car dealership estimates the attack will lead to a $1.50 per-share earnings impact.

  Breaches

• 

  Massive Snowflake-linked attack exposes data on nearly 110M AT&T customers

  Attackers breached AT&T’s Snowflake environment for 11 days in April, and stole customers’ call and text message records spanning a six-month period from 2022.

  Cyberattacks

• 

  76% of SaaS companies use ‘dark patterns,’ analysis finds

  With federal regulators and states clamping down on the practice, companies might take a hard look at how they’re presenting information on their websites and in their apps.

  Threats

• 

  CISA calls for elimination of OS command injection vulnerabilities

  Threat groups target vulnerabilities in widely used network devices. CISA’s latest advisory urges software makers to eliminate them at the source.

  Vulnerability

• 

  What does your CEO need to know about cybersecurity?

  CEOs can no longer skim over their cybersecurity plans. When big incidents occur, they risk shareholder lawsuits, regulatory charges or even job loss. 

  Leadership & Careers

• 

  MOVEit legal liabilities, expenses pile up for Progress Software

  The prospective financial hit from a widely exploited vulnerability in the file-transfer service is growing. Progress confronts lawsuits, regulator scrutiny and government investigations.

  Vulnerability

• 

  Risk escalates as communication channels proliferate

  The chance of losing data to a breach rises in tandem with the number of channels — like email and file sharing — that an organization uses.

  Strategy

• 

  Snowflake allows admins to enforce MFA as breach investigations conclude

  Three months after an attacker targeted more than 100 customer environments, Snowflake is making it easier for existing customers to enforce MFA, but it isn’t requiring it.

  Strategy

• 

  As CISOs grapple with the C-suite, job satisfaction takes a hit

  Research found CISO job satisfaction has direct ties to how much — or little — access security leaders have to company management.

  Leadership & Careers

• 

  Critical infrastructure providers seek guardrails on scope, timeline for CIRCIA rules

  In a last-minute push, critical infrastructure stakeholders urged federal officials to give more flexibility on the detail required during the first 72 hours of covered cyber incidents.

  Policy & Regulation

• 

  Sonic Automotive’s sales dip as CDK cyberattack causes material impact

  The company reported ongoing service disruptions and said vehicle sales declined after an attack on a third-party vendor.

  Cyberattacks

• 

  Microsoft warns of elevated risk in Rockwell Automation PanelView Plus CVEs

  Microsoft researchers warn the vulnerabilities can be exploited, potentially resulting in remote code execution and denial of service.

  Vulnerability

More stories