Security News
A new rule proposed by the US Securities and Exchange Commission would force public companies to disclose cyberattacks within four days along with periodic reports about their cyber-risk management plans. Specifically, the proposed rule would amend the Form 8-K reporting requirements to include cybersecurity incident disclosure "Within four business days after the registrant determines that it has experienced a material cybersecurity incident." The 8-K is the form that the SEC requires public companies file to publicly announce corporate changes or big events that may be material to shareholders.
Enterprises need to create a more strategic alliance between their application security and cybersecurity teams if they are going to better protect themselves against cyberthreats. Appsec team members tend to be developers and quality assurance pros creating internal applications used within the organization or exposed publicly or privately to customers, while cybersecurity teams' jobs include penetration testing and responding to incidents, he said.
Before it began, I'd been really worried about Russian cyberattacks, which would overrun Ukraine and flood into the West's infrastructure. Where are those massive attacks? Why is Ukraine's electrical system still up and running - except for damaged nuclear reactors? Why, instead of shutting down Ukraine's TV networks with cyber attacks, did they have to blow up a Kyiv TV tower? Did we just let paranoia overrule our common sense?
The findings of the report take into account security events occurring across more than 120,000 user accounts during the period of January 1st to December 31st, 2021 and shows that the vast majority of attacks on top SaaS platforms such as Microsoft 365, Google Workspace, Slack and Dropbox are originating from the countries of Russia and China. Over the last several weeks, there has been a sharp rise in activity from countries with consistently high levels of both attempted and successful attacks originating within their borders - Russia and China.
Security vendors pledge free protection for US hospitals and utilities amid fear of Russian cyberattacks. With that in mind, three security companies are offering their products for free to US hospitals and utilities.
Cyberattacks on SMBs are increasing, will your business be ready? As the number of cyberattacks continues to rise and may jump even higher with the new Senate bill passed Tuesday, small-to-medium businesses should be on higher alert of potential cyberattacks.
Over the course of 2021 we saw an increase in multiple attack approaches; some old, some new. In an upcoming webinar, Cybersecurity company Cynet will provide an in-depth review of the high-profile attacks we saw in 2021 and provide guidance to cybersecurity professionals for 2022.
Chipmaker giant Nvidia confirms that its network was breached in a cyberattack last week, giving intruders access to proprietary information data and employee login data. In an initial statement last week, Nvidia said it was investigating an incident that reportedly impacted some systems, causing an outage.
Toyota has closed all 14 plants it operates in Japan due to what it has described as a "System failure" at Kojima Industries Corporation - and local media report the cause of the failure is a cyberattack. Kojima Industries' is a Toyota subsidiary that manufacturers interior and exterior car parts and participates in Toyota's just-in-time supply chains.
Axis Communications has published a post mortem about a cyberattack that caused severe disruption in their systems, with some systems still partially offline. The Swedish manufacturer of network cameras, access control systems, and surveillance network appliances suffered a cyberattack on Sunday, February 20, 2021, forcing it to shut down all systems to limit the impact.