Cyber News Live | Weekend Edition | 28 October 2023

In today's edition you will find:

• A weekly executive summary.
• A list of breaches not publicly reported.
• Our call to action.

Enjoy, and thanks for reading.

- The Cyber News Live Team

In the ever-evolving landscape of cybersecurity, a series of notable events and discussions have come to the forefront. American Family Insurance acknowledged a cyber attack stemming from unusual network activity, highlighting the vulnerabilities faced by even established organizations. A cyber-espionage group breached the systems of the International Criminal Court, emphasizing the need for enhanced security measures. Meanwhile, Malaysia seeks to bolster its cyber defenses with a call for 12,000 additional cybersecurity experts. Privacy concerns came to the fore as the DC Board of Elections potentially had its entire voter roll breached, necessitating stronger voter data protection measures.

In the cybersecurity funding domain, Chief Information Security Officers (CISOs) are urged to adopt more effective strategies when seeking financial support from boards and executives. A proactive prevention approach is advocated as the best defense against cyber threats. The line between organized cybercrime and cyberattacks continues to blur, exemplified by Spain's arrest of 34 cybercriminals who stole data from millions. The University of Michigan faced a significant data breach, compromising the information of students, applicants, alumni, donors, and employees. Scammers exploited global events such as the Israel-Hamas conflict to conduct cryptocurrency donation scams, illustrating the need for public awareness and vigilance. Microsoft's commitment to invest $5 billion in Australian cybersecurity reflects the escalating concerns around digital security. The issue of shared responsibility in data protection gained prominence with both 1Password and Okta disclosing security incidents. Amid a changing cybersecurity landscape, fostering diversity, equity, and inclusion (DEI) and Environmental, Social, and Governance (ESG) strategies is presented as a key to enhancing cyber resilience.

In the realm of law enforcement and cybercrime, intriguing developments unfolded. The Australian Federal Police (AFP) grappled with defining "notifiable breaches" after a cyber incident impacted 67 current and former AFP 'appointees.' A novel approach to advancing one's IT career in Australia was discussed, providing insights into the evolving industry. On an international level, the concept of establishing a NATO-like alliance for cybersecurity is under consideration to facilitate a collective response to cyber threats. The healthcare sector was underlined as particularly vulnerable, as a cyber attack on TransForm disrupted operations in five Canadian hospitals. Privacy measures on social media platforms were stressed as an effective means to limit user tracking. Addressing the cyber skills shortage became paramount, with five key steps suggested for mitigation. Cyber threats targeting Russian state industrial organizations challenged the notion of cyber immunity, raising global concerns. An espionage attempt by a former NSA employee and the evolving ransomware business model continued to shape the cybersecurity landscape. European government entities experienced email server hacks, prompting inquiries about potential false flag operations. Seiko's ransomware attack exposed sensitive customer data, while rumors circulated that organizations are contemplating moving away from Okta's support system following a breach. In China, new cyber safety rules aimed to protect minors by placing responsibilities on tech firms, authorities, and internet service providers. Chile's Grupo GTD encountered a ransomware attack that disrupted services, reinforcing the ever-present ransomware threat. Multi-factor authentication (MFA) came to the forefront as Service NSW prepared to enhance credential security at login. The Australian Signals Directorate (ASD) actively engaged in cyber offensive actions against multiple targets, while a Nigerian cybercrime hub was dismantled with six arrests. France reported Russian state hackers breaching critical networks, indicating the ongoing state-sponsored cyber threats. A Melbourne man faced charges related to aiding the laundering of millions for cybercrime victims, sparking discussions about appropriate punishments. On the global stage, governments and hackers alike pondered the application of the laws of war in cyberspace. In light of these complexities, users were advised to exercise caution when downloading apps from Google Play and to verify the authenticity of publishers.

This executive summary highlights the multifaceted and dynamic nature of the cybersecurity landscape, where adaptability, collaboration, and cutting-edge strategies are imperative in combating persistent threats in the digital realm.

Do you know if you were entangled in any of these breaches:

1. The City of Brazoria - 3,505 victims.
2. The New York Center for Research, Economic Advancement, Technology, Engineering and Science Corporation (@NY__CREATES), The State University of New York Polytechnic Institute (@SUNYPolyInst), and The Research Foundation for The State University of New York (@rfsuny) - 3,827 victims.
3. NASCO - 804,862 victims.
4. Wescom Credit Union - 34,515 victims.
5. Bank of Canton - 10,070 victims.
6. Wabash College - 3,979 victims.
7. Dollar Energy Fund - 28,539 victims.
8. CoinFlip - 36,646 victims.
9. Humana - 2,844 victims.
10. University of Missouri-Columbia - 18,808 victims.
11. Full Color, Inc. - 2,776 victims in total.
12. North River Company - 173 victims.
13. Livingston Street Capital - 1,347 victims.
14. McLeod Express LLC - an unknown number of victims.
15. Southern Illinois University, Carbondale - 38,286 victims.
16. Kearny Bank - 17,509 victims.
17. Andesa - 2,296 victims.
18. It Works! Global - 301 victims.
19. Chambersburg Area School District - 4265 victims.
20. FREDERICKSBURG FOOT & ANKLE CENTER - 14,912 victims.
21. Ben E. Keith Company - 39,789 victims.
22. PMA - 239 victims in total.
23. East Shore Specialty Foods, Inc. - 837 victims.

If you don't know what to do, just ask!

To stay updated on all this and more, be sure to follow us on LinkedIn. And, remember to show your support by engaging with our content — give us a like, leave a comment, tag a friend, and share our articles with your colleagues. If you'd like to go the extra mile, you can also contribute by making a donation or checking out our shop for a stylish polo shirt ?? or cap ??.

Thank you,

Cyber News Live

#cnl #cybernewslive #cyber #cybersecurity #cybersecuritynews