Royal Mail's parent company, International Distribution Services, will spend more than £10 Million in ransomware recovery costs from the January 2023 LockBit cyberattack.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
In a recent analysis of the companies that make up the Global 2000, nearly three quarters implemented less than half of all domain security measures. As attacks targeting domains continue to rise, it is critical to determine who is responsible for overseeing their security and the processes they implement.
Pro-Russian hacktivists breached the Idaho nuclear lab and stole sensitive employee data after compromising a federally-approved third-party vendor system.
IntelBroker claims to have broken into General Electric (GE) and stolen sensitive military files belonging to DARPA. GE has yet to confirm the data theft, only saying that it is still investigating the incident.
The British Library has confirmed that the October cyber attack disrupted services and leaked employee's personal data listed for sale on the dark web by the Rhysida ransomware gang.
A very rough year of cyber attacks prompted quick and dramatic legislative action in Australia, and the latest development is the announcement of a new national cybersecurity plan to be funded with A$587 million.
As attacks evolve and become more sophisticated, the industry's response has been to adopt the zero-trust architecture. However, with the rise of zero-trust architecture, we've also seen an unexpected, unwelcome guest: complexity.
The new New York cybersecurity regulations require healthcare facilities to appoint a CISO, implement incident response plans, and to face new breach reporting requirements. They will also have access to a total of $500 million in new funding from the state.
Third party data breach of two relocation services providers may have exposed the passports, financial information and other personal information of Canadian government employees dating back to 1999.
Due to their large membership pools, the rewards programs offered by top brands represent sizable assets. Attacks against rewards programs are becoming more frequent as these customer accounts often fly under the radar as potential targets for cybercrime.










