Displaying items by tag: Cyber Attack

LONDON (Reuters) - U.S. travel management firm CWT paid $4.5 million (3.4 million pounds) this week to hackers who stole reams of sensitive corporate files and said they had knocked 30,000 computers offline, according to a record of the ransom negotiations seen by Reuters.
Published in Global News
The online world seems to become more complex by the day. As more and more applications are moved to the cloud, the growing number and severity of data breaches makes it clear that attitudes about cybersecurity must change. It’s no longer possible to assume that “someone else” is going to be responsible. Instead, data protection and a strong cybersecurity defense must be a team effort. How have cybersecurity roles changed over the last decade? Ten years ago, cybersecurity was the responsibility of IT. Organizations were guarded by firewalls, antivirus companies were keeping up with basic malware and the world seemed to be (relatively) safe. The IT manager was responsible for cybersecurity, and in the event of a breach, wipe and restore from back-up was the preferred course of action. When breaches started happening more frequently, we were startled. Too bad we weren’t shocked enough to change our bad habits! Too many of us still clicked on every link, and opened every attachment. By 2015, as more and more vulnerabilities were unveiled, and as knowledge about how easy it is to orchestrate automated large-scale attacks spread, ransomware became a real issue. In response, cybersecurity vaulted to the top of the priority list at most organizations. The internet of things (IoT) has changed the way work gets done, and it has forced organizations to adapt and change the way they secure data. Now, in 2019, cybersecurity is everyone’s responsibility. Data is the most important resource on earth, and one mistake by a single employee can endanger an entire company. Employees have become targets for phishing and social engineering, with the C-suite heading up the priority list for cybercriminals.
Published in Cybersecurity
Wednesday, 19 June 2019 16:31

U.S. Customs And Border Protection Breach

The data compromised was part of a ‘malicious cyber attack’ on a federal subcontractor.   U.S. Customs and Border Protection (CBP) officials said on June 10, 2019, that photos of travelers had been compromised as part of a ‘malicious cyber attack.’ CBP uses cameras and video recordings extensively at airports and land border crossings, as part of a growing agency facial-recognition program. It is designed to track the identity of people entering and exiting the U.S. Officials said that the data breach included images of people’s faces and license plates, which were compromised as part of an attack on a federal subcontractor. “If the government collects sensitive information about Americans, it is responsible for protecting it — and that’s just as true if it contracts with a private company,” Sen. Ron Wyden (D-Ore.) said in a statement to The Post. “Anyone whose information was compromised should be notified by Customs, and the government needs to explain exactly how it intends to prevent this kind of breach from happening in the future.” Unable To Confirm Breach Source While less than 100,000 people were impacted as initially reported by CBP, the photographs involved in the breach were from over a month and a half long through a single land border entry port (not named by CBP). However, there was no other identifying information stolen, no passports, or travel document photos compromised so far.
Published in Cybersecurity