CYBERSECURITY -
CISA + FBI Remind Organizations to “Stay Vigilant” During Holiday Season -
The Cybersecurity & Infrastructure Security Agency (CISA) and the FBI issued a joint Alert this week, entitled “Reminder for...more
11/24/2021
/ Critical Infrastructure Sectors ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
FBI ,
GrubHub ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Personally Identifiable Information ,
Ransomware ,
TCPA
The Cybersecurity & Infrastructure Security Agency (CISA) and the FBI issued a joint Alert this week, entitled “Reminder for Critical Infrastructure to Stay Vigilant Against Threats During Holidays and Weekends” outlining...more
11/24/2021
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Protection ,
FBI ,
Holidays ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Information Technology ,
Ransomware ,
Risk Management ,
Vulnerability Assessments
The Cybersecurity and Infrastructure Security Agency (CISA) recently issued a Binding Operational Directive requiring all federal agencies to apply patches to new and old vulnerabilities that are being exploited in the wild....more
In a blog post entitled “New activity from Russian actor Nobelium,” Microsoft’s V.P. of Customer Security & Trust Tom Burt discussed a recent alert issued by the Microsoft Threat Intelligence Center (MSTIC) regarding the...more
10/29/2021
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Hackers ,
Information Technology ,
Microsoft ,
Phishing Scams ,
Popular ,
Risk Management ,
SolarWinds ,
Supply Chain ,
Third-Party Service Provider ,
Vulnerability Assessments
The Cybersecurity & Infrastructure Security Agency, the Federal Bureau of Investigation, and the National Security Agency recently issued two joint alerts to critical infrastructure entities—one addressing BlackMatter...more
10/27/2021
/ Critical Infrastructure Sectors ,
Cybersecurity ,
Data Protection ,
FBI ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Information Technology ,
National Security Agency (NSA) ,
Popular ,
Ransomware ,
Risk Mitigation ,
Vulnerability Assessments ,
Wastewater ,
Water
The bi-partisan infrastructure bill presently being debated in the U.S. Senate includes up to $1 billion in funding to state and local governments to enhance cybersecurity measures over four years....more
In an unusual and exciting twist to the Colonial Pipeline ransomware attack, the Department of Justice (DOJ) announced this week that it was able to retrieve $2.3 million of the $4.4 million paid by Colonial Pipeline to...more
6/11/2021
/ Bitcoin ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cybersecurity ,
Department of Justice (DOJ) ,
Digital Wallets ,
Hackers ,
National Security ,
Oil & Gas ,
Pipelines ,
Ransomware ,
Supply Chain
Since the Colonial Pipeline and JBS meat manufacturing security incidents, attention is finally being paid to the cybersecurity vulnerabilities of critical infrastructure in the U.S. and in particular, the potential effect on...more
CYBERSECURITY -
President Biden Signs Executive Order to Strengthen Cybersecurity for Federal Government Following Colonial Pipeline Attack -
President Joe Biden signed an Executive Order on Wednesday, May 12, 2021,...more
5/14/2021
/ Biden Administration ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Sellers ,
FBI ,
Hackers ,
Pipelines ,
Regulatory Agenda ,
Supply Chain
It is being reported late on May 12, 2021, that Colonial Pipeline is returning to full operations following a devastating ransomware attack that was discovered on May 7, 2021....more
President Joe Biden signed an Executive Order on Wednesday, May 12, 2021, on the heels of the cyber-attack against Colonial Pipeline Co., which suffered a major ransomware attack late last week that has caused supply chain...more
5/13/2021
/ Biden Administration ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cybersecurity ,
Executive Orders ,
Federal Contractors ,
Hackers ,
National Security ,
Oil & Gas ,
Pipelines ,
Ransomware ,
Supply Chain
Applus Technologies, Inc., a vendor of multiple state Departments of Motor Vehicles that assists states with vehicle inspections, recently announced that its systems have been affected by malware, disrupting motor vehicle...more
4/9/2021
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
DMV ,
Hackers ,
Information Technology ,
Malware ,
Motor Vehicles ,
Popular ,
Safety Inspections
CYBERSECURITY -
$50 Million Ransom Demand is Largest Ever -
In what is being reported as the largest ransom demand ever, Taiwanese electronics and computer manufacturer Acer has reportedly been hit with a ransomware...more
3/26/2021
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
Facebook ,
Hackers ,
Honeywell International ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Vaccinations ,
Vulnerability Assessments
Cyber-attacks and Cybersecurity Failure Are Top Risks of the Next Decade Says World Economic Forum -
Although somewhat obvious, the World Economic Forum, in partnership with Marsh McLennan, SK Group and Zurich Insurance...more
2/16/2021
/ Critical Infrastructure Sectors ,
Cryptocurrency ,
Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
Cybertheft ,
Data Breach ,
Data Protection ,
Hackers ,
NYDFS ,
Personally Identifiable Information ,
Popular ,
Social Media
The Department of Health and Human Services’ (HHS) Division of Critical Infrastructure Protection (CIP) issued a health care and public health sector notification this week entitled “Ransomware Activity Targeting the...more
Natural Gas Compressor Facility Shut Down After Ransomware Attack -
The Department of Homeland Security (DHS) announced this week that a ransomware attack shut down a natural gas compressor facility for two days. While in...more
2/25/2020
/ Bitcoin ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Department of Health and Human Services (HHS) ,
Emergency Response ,
Extortion ,
Hackers ,
OCR ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Settlement Negotiations ,
TCPA
Ransomware Attacks Predicted to Occur Every 11 Seconds in 2021 with a Cost of $20 Billion -
Confirming what we are seeing in the field, cybersecurity firm Cybersecurity Ventures has predicted that, globally, businesses in...more
2/14/2020
/ Bitcoin ,
Brand ,
California Consumer Privacy Act (CCPA) ,
China ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Digital Wallets ,
Drones ,
Email ,
Emergency Response ,
General Data Protection Regulation (GDPR) ,
Hackers ,
Legislative Agendas ,
Medical Devices ,
Personal Data ,
Personally Identifiable Information ,
Phishing Scams ,
Proposed Legislation ,
Regulatory Requirements ,
Risk Mitigation ,
Rulemaking Process ,
State Attorneys General ,
Threat Management ,
Unmanned Aircraft Systems ,
Vulnerability Assessments
Researchers at Sentinel One and Dragos have detected malicious code, called EKANS or Snake, that has been designed specifically to target industrial control systems (ICS), including those of oil refineries, manufacturing...more
2/10/2020
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Hackers ,
Information Technology ,
Malware ,
Manufacturing Facilities ,
Oil & Gas ,
Pipelines ,
Power Grid ,
Ransomware ,
Refineries ,
Risk Assessment ,
Risk Management ,
Vulnerability Assessments
Researchers at Sentinel One and Dragos have detected malicious code, called EKANS or Snake, that has been designed specifically to target industrial control systems (ICS), including those of oil refineries, manufacturing...more
2/7/2020
/ China ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Department of Health and Human Services (HHS) ,
Drones ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Identity Theft ,
Infectious Diseases ,
Malware ,
Medical Records ,
OCR ,
Personally Identifiable Information ,
Point of Sale Terminals ,
Public Health ,
Retailers ,
Tax Fraud ,
Vulnerability Assessments
Department of Homeland Security Warns of Cyber-Attacks by Iran -
The Department of Homeland Security (DHS) issued a grave warning to U.S. businesses and critical infrastructure operators on January 6, 2020, alerting the...more
1/10/2020
/ Assassinations ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Department of Homeland Security (DHS) ,
Drones ,
Federal Aviation Administration (FAA) ,
Financial Services Industry ,
Foreign Relations ,
Hackers ,
Information Sharing ,
Iran ,
Microsoft ,
NYDFS ,
Operating System Developers ,
Personally Identifiable Information ,
Risk Management ,
Risk Mitigation ,
Unmanned Aircraft Systems ,
Vulnerability Assessments
Pretty much the only time I don’t feel like I am Chicken Little predicting a massive cyber-attack is when I am with my colleagues at the FBI, Secret Service, NSA and my students in the Brown Executive Masters of Cybersecurity...more
1/10/2020
/ Assassinations ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Department of Homeland Security (DHS) ,
Foreign Relations ,
Hackers ,
Information Technology ,
Iran ,
Malware ,
NYDFS ,
Risk Management ,
Risk Mitigation ,
Vulnerability Assessments
We reported last week that a spyware maker recently compromised users’ and victims’ sensitive information. Since that time, another spyware maker, mSpy, which holds itself out as having over a million users employing its...more
9/11/2018
/ Banking Sector ,
Class Action ,
Class Certification ,
Consumer Privacy Rights ,
Criminal Convictions ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cybersecurity ,
Cybersecurity Framework ,
Data Breach ,
Financial Services Industry ,
Hackers ,
Insurance Industry ,
Legislative Agendas ,
NYDFS ,
Pending Legislation ,
Personally Identifiable Information ,
Popular ,
Spyware ,
State and Local Government ,
Vulnerability Assessments ,
Yahoo!
Not to be super scary, but the reality is that we live in a scary cyber world. A new report published by the Intelligence and National Security Alliance outlines the findings of a cyber exercise based on a hypothetical...more
9/7/2018
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cybersecurity ,
Emergency Management Plans ,
Emergency Response ,
Energy Sector ,
Hackers ,
Popular ,
Risk Management ,
Utilities Sector ,
Vulnerability Assessments
A new ransomware, dubbed “Ryuk,” has surfaced in the last few weeks and is said to be targeting large organizations in the United States. The attackers behind Ryuk have reportedly made more than $640,000 in just two weeks,...more
8/27/2018
/ Airspace ,
Banking Sector ,
Biometric Information ,
Biometric Information Privacy Act ,
Cell Phones ,
Commercial Use ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Protection ,
Drones ,
Employee Privacy Rights ,
Employer Liability Issues ,
Employment Litigation ,
Hackers ,
National Security ,
Popular ,
Ransomware ,
Risk Management ,
State and Local Government ,
State Departments of Transportation ,
Unmanned Aircraft Systems
The Department of Homeland Security (DHS) has indicated that Russian hackers targeted the energy, nuclear, aviation and critical manufacturing sectors through targeting phishing campaigns throughout 2017 and were successful....more