Cyberattacks
-
American Water Works reconnecting systems a week after cyberattack
The water utility said there is no evidence of damage to its facilities, but law enforcement and forensic experts are still investigating.
By David Jones • Oct. 11, 2024 -
FTC settles yearslong investigation into Marriott’s ‘security failures’
The settlement caps a pattern of major data breaches at Marriott and its subsidiary Starwood Hotels and Resorts Worldwide over the last decade.
By Matt Kapko • Oct. 10, 2024 -
Trendline
Top 5 stories from Cybersecurity Dive
A wave of rules, regulations and federal action is putting pressure on businesses to shore up security amid a backdrop of emboldened threat actors has a nice ring to it.
By Cybersecurity Dive staff -
Trio of Ivanti CSA zero-day vulnerabilities under exploit threat
The latest round of exploitation follows more than three weeks of CVE disclosures involving various Ivanti products.
By David Jones • Oct. 9, 2024 -
MoneyGram attack exposed a trove of sensitive customer data
The attack led to a days-long outage in September. The money transfer firm hasn’t described the nature of the incident or said how many people are impacted.
By Matt Kapko • Oct. 9, 2024 -
ADT employee account data stolen in cyberattack
The alarm system company said an attacker accessed its network with compromised credentials obtained from an unnamed third party.
By Matt Kapko • Oct. 8, 2024 -
American Water Works investigates unauthorized cyber intrusion
The New Jersey-based utility said none of its water or wastewater operations were impacted by the hack.
By David Jones • Oct. 7, 2024 -
Ivanti up against another attack spree as hackers target its endpoint manager
Ivanti customers are facing a new series of exploitation attempts after the company pledged in April to launch a comprehensive overhaul of its internal security practices.
By David Jones • Oct. 3, 2024 -
Two-thirds of healthcare organizations hit by ransomware in past year: survey
Nearly 40% of healthcare organizations reported it took more than a month to recover after an attack, according to the survey by cybersecurity firm Sophos.
By Emily Olsen • Oct. 2, 2024 -
Phishing remains cloud intrusion tactic of choice for threat groups
The long-lasting effectiveness and success of phishing campaigns underscores the most central challenge in cybersecurity — people are the weakest link.
By Matt Kapko • Oct. 2, 2024 -
Ransomware attacks surge despite international enforcement effort
Progress remains elusive as federal authorities point to ransomware payments inhibiting progress to reduce the volume and impact of attacks.
By Matt Kapko • Oct. 1, 2024 -
MoneyGram faces backlog after cyberattack
The international wire transfer company has restarted some services since the incident, but is battling to fulfill transactions after taking its systems offline for much of the week.
By Lynne Marek • Sept. 27, 2024 -
Major companies keep hiring North Korean IT workers
Dozens of Fortune 100 organizations have inadvertently hired workers from North Korea applying for remote jobs, Mandiant said.
By Matt Kapko • Sept. 24, 2024 -
Cybersecurity firm flags attack on construction accounting system
Users of Foundation Software, which serves 43,000 construction pros, may be at risk of intrusion if they still use default credentials, according to cybersecurity firm Huntress.
By Matthew Thibault • Sept. 20, 2024 -
Port of Seattle official flags a cyber dilemma, ‘one-way street’ with federal agencies
A ransomware atttack disrupted the Seattle-Tacoma International Airport for weeks. Part of the problem, one official said, is that federal cyber recommendations are not timely.
By Matt Kapko • Sept. 19, 2024 -
US authorities take down a Mirai-variant botnet tied to DDoS threat
An FBI-led operation to disrupt a China-linked botnet comes months after a similar operation in January linked to Volt Typhoon.
By David Jones • Sept. 19, 2024 -
Suffolk County ransomware attack linked to lack of planning, ignored warnings
A special report blames county officials for ignoring FBI warnings during the 2022 attack and an overall failure of IT and security leadership.
By David Jones • Sept. 18, 2024 -
AT&T settles a 2023 data breach for $13M. Recent incidents are much worse.
Telecom cybersecurity remains a challenge with widespread impacts. AT&T is not alone in experiencing a pattern of extensive breaches exposing customer data.
By Matt Kapko • Sept. 18, 2024 -
Valid accounts remain top access point for critical infrastructure attacks, officials say
CISA attributed 2 in 5 successful intrusions to valid account abuse last year, but that is down from 2022.
By Matt Kapko • Sept. 17, 2024 -
Hackers exploit CVE in older versions of Ivanti Cloud Service Appliance
Version 4.6 has reached end of life and the company is urging customers to upgrade to version 5.0 to receive support.
By David Jones • Sept. 16, 2024 -
Port of Seattle officials pin attack, data theft to Rhysida ransomware group
The port restored most of the systems impacted by the ransomware attack as officials warn their refusal to pay extortion demand could result in data leaks.
By Matt Kapko • Sept. 16, 2024 -
Fortinet customer data stolen from third-party file-sharing service
The breach marks yet another attack originating in a file-sharing or -transfer service, a common and highly damaging attack vector for opportunistic cybercriminals.
By Matt Kapko • Sept. 13, 2024 -
SonicWall firewall CVE exploits linked to ransomware attacks
Active exploits aimed at firewalls mark yet another string of attacks targeting devices with high-value initial access, researchers said.
By Matt Kapko • Sept. 10, 2024 -
MOVEit victims are still coming forward. This time it’s Wisconsin Medicare.
The delayed notifications underscore the difficulty organizations confront in discovering breaches and attributing compromises to a root cause or source.
By Matt Kapko • Sept. 9, 2024 -
Feds warn of broad Russia-linked CVE exploits targeting critical infrastructure
Attackers operating under the direction of Russia’s military intelligence service are targeting governments, finance, transportation, energy and healthcare.
By Matt Kapko • Sept. 6, 2024 -
Microchip Technology says its data was stolen amid alleged leaks online
The chipmaker said an unidentified attacker stole employee contact information and some encrypted and hashed passwords.
By Matt Kapko • Sept. 5, 2024