Security News

US federal bank regulatory agencies have approved a new rule ordering banks to notify their primary federal regulators of significant computer-security incidents within 36 hours. Banks are only required to report major cyberattacks if they have or will likely impact their operations, the ability to deliver banking products and services, or the US financial sector's stability.

As has been reported, approximately 60% of SMBs go out of business within six months of getting hacked. While the pandemic forced many SMBs to scale back their operations, cyberattacks actually increased throughout 2020 and 2021 for small and midsize businesses.

Midsize companies often lack the staff, expertise and expensive tools needed to defend themselves against attack, says security provider Coro. To generate its new report, named "The Great Cyber Security Market Failure and the Tragic Implications for Mid-Sized Companies," Coro analyzed information on more than 4,000 midsize companies across six industries: retail, manufacturing, professional services, healthcare, transportation and education.

The survey, conducted by The Harris Poll among more than 700 American adults who currently play online games, found that 47% of American gamers have experienced a cyberattack to their gaming account or device. 23% U.S. gamers are likely to hack into the gaming account of a friend, family member or romantic partner if they knew it would give them a competitive advantage in an online game.

On Saturday, spam tracker Spamhaus tweeted that it had learned of "Scary" emails being sent purportedly from the FBI and Department of Homeland Security. Though the emails were sent from a portal owned by the FBI and DHS, Spamhaus said that the messages themselves were fake.

The Spamhaus Project, a European nonprofit that monitors email spam, detected the exploit and tweeted about it early Saturday morning, saying that "We have been made aware of 'scary' emails sent in the last few hours that purport to come from the FBI/DHS. While the emails are indeed being sent from infrastructure that is owned by the FBI/DHS, our research shows that these emails *are* fake." "Hi its pompompurin. Check headers of this email it's actually coming from FBI server. I am contacting you today because we located a botnet being hosted on your forehead, please take immediate action thanks."

The Federal Bureau of Investigation email servers were hacked to distribute spam email impersonating FBI warnings that the recipients' network was breached and data was stolen. The emails pretended to warn about a "Sophisticated chain attack" from an advanced threat actor known, who they identify as Vinny Troia.

More than half of large companies are not effectively stopping cyberattacks, finding and fixing breaches quickly or reducing the impact of breaches, according to a new research study from Accenture. "Accenture's State of Cybersecurity Resilience 2021 study explored the extent to which organizations prioritize security, the effectiveness of current security efforts and how their security investments are performing. The pandemic served as"a breeding ground for new attacks,'' according to the study, which was based on a survey of more than 4,700 executives globally.

The Identity Theft Resource Center (ITRC) has published a report on the impacts of identity crimes and cyberattacks on small businesses. There is little information about how small businesses are impacted by the rise in identity crimes and cyberattacks.

The attack took place on October 30th, causing regional health systems to shut down their networks and cancel thousands of medical appointments. This outage affected health systems in Central Health, Eastern Health, Western Health, and the Labrador-Grenfell Regional Health authorities.