Security News

Cyber attack risks faced by businesses across states and reported data breaches are relative to the respective state governments' cybersecurity investment, according to Network Assured. While expectedly, California, with its high concentration of businesses in technology and healthcare recorded the highest number of data breaches at 1,338, the relatively small state of Maryland ranked 5th worst in the nation with 343 breaches.

In this Help Net Security video, Caroline Wong, Chief Strategy Officer at Cobalt, offers valuable insight into what leaders can do to instill stronger cybersecurity practices from the bottom up...

The number of data breaches affecting healthcare providers declined in the second half of 2022, consistent with a downward trend over the past two years, according to Critical Insight. Healthcare industry sees a decrease in data breaches.

Subsequently, the first attacker group monetized the first attack not only through the ransom they obtained, but also by selling the company's network information to the second ransomware group. In the 13 months between the two attacks, the victim changed its network and removed servers, but the new attackers were not aware of these architectural modifications.

Toyota's Global Supplier Preparation Information Management System was breached by a security researcher who responsibly reported the issue to the company. The issues were responsibly disclosed to Toyota on November 3, 2022, and the Japanese car maker confirmed they had been fixed by November 23, 2022.

Despite growing attention and budgets for cybersecurity in recent years, attacks have only become more common and more severe. It's easy to assume that the solution to the cybersecurity problem is money- to hire more security experts, to invest in more tools and technology.

DOUG. OK, we've got some tips if you are affected by this, starting with: Don't click "Helpful" links in emails or other messages. Apple patches are out - old iPhones get an old zero-day fix at last!

SMBs are aware of increasing cyber threats and allocating resources and investing in areas such as network and cloud security, according to Datto. 69% of SMBs currently have cyber insurance and 34% of those without cyber insurance are highly likely to get it in the next year.

Personal employee or customer data accounted for nearly 45% of all data stolen between July 2021 and June 2022, while companies' source code and proprietary information accounted for a further 6.7% and 5.6% respectively, according to Imperva. "It's very encouraging to see such a decline in stolen credit card data and passwords. It suggests that more organizations are using basic security tactics such as Multi-factor Authentication, which makes it much harder for outside cyber attackers to gain the access required to breach data," says Terry Ray, SVP and Field CTO at Imperva.

So we though we'd take a quick look back at some of the major issues we covered over the last couple of weeks, and reiterate the serious security lessons we can learn from them. If you are ever stuck with doing a data breach notification, don't try to rewrite history to your marketing advantage.