With an average of 10 direct partners and up to 90 fourth parties, 98% of primary organizations analyzed by IT security firm SecurityScorecard work with breached third parties.
Staff Correspondent at CPO Magazine
Alicia Hope has been a journalist for more than 5 years, reporting on technology, cyber security and data privacy news.
Data Breach on Instant Checkmate and Truthfinder Background Check Services Leaked 20 Million Records
PeopleConnect, the parent company of Instant Checkmate and Truthfinder background check services, confirmed a data breach that leaked 20 million customer records online.
Reddit confirmed a security breach that allowed hackers to access internal business systems after an employee became the victim of a sophisticated phishing attack.
A firmware update introduced a serious Secure Boot default configuration flaw on nearly 300 MSI motherboards that could allow the execution of malware during PC startup.
The FBI confirmed that North Korea’s state-sponsored hacking group Lazarus carried out the $100 million Horizon bridge crypto theft. The agency said it successfully stopped the transfer of some stolen assets and subsequently published wallet addresses with purloined cryptocurrencies.
Health authorities warned that Russian hacktivists were actively targeting US hospitals with DDoS attacks in a widespread campaign also targeting other Ukraine's allies.
Zero trust will not stop over 50% of attacks by 2026 because only 10% of large firms will have mature programs, and hackers will expand the attack surface beyond zero trust coverage.
A joint cybersecurity alert warned that hackers breached multiple federal agencies via remote monitoring and management software in a widespread helpdesk-themed phishing campaign.
A wanted Swiss hacker accessed a federal No Fly List containing millions of records that was sitting on an unsecured server operated by a regional airline company.
A ransomware attack on KFC, Pizza Hut, and Taco Bell parent company Yum! Brands shut down 300 restaurants in the United Kingdom and leaked the company's corporate data.
