The explaination to why CISO's are feeling the way they are.

We have now reached MORE than 23,400 subscribers! Thanks for your support. Help us with our mission of helping 100,000 organizations become cyber-resilient by sharing this newsletter with your network.

Be sure to read the "My thoughts" section to learn strategies for navigating and combating cyber attacks. I'm here to assist you in avoiding and battling these threats should they ever affect you.

Contact me if you have any questions regarding your enterprise's cybersecurity strategy --> Luigi Tiano.

P.S. We often do giveaways on our company page -->

North Korean man indicted for which ransomware attacks?!?

?

Rim Jong Hyok, allegedly affiliated with North Korean intelligence and the hacking group Andariel, has been indicted by U.S. prosecutors. The indictment accuses him of conspiring in ransomware attacks targeting U.S. health care providers using Maui ransomware to extort ransoms, including a Kansas City hospital in May 2021. These attacks disrupted medical services and encrypted electronic health records, demanding ransom payments in Bitcoin. The funds obtained were purportedly used to finance further cyber operations against U.S. government entities and defense contractors. Hyok also faces charges of money laundering, with the FBI seizing approximately $600,000 in stolen funds. The U.S. government has issued a $10 million reward for information leading to his capture. ( gizmodo.com ) ?

?

My Thoughts: This is bad. These attacks not only disrupt essential healthcare services but also jeopardize patient data integrity and major confidentiality. Our focus is on developing robust defenses against ransomware and other cyber threats to safeguard sensitive medical information and ensure uninterrupted healthcare delivery. There seems to be an?interconnected nature of cybercrime and financial fraud. This story reinforces the urgency of proactive cybersecurity strategies to mitigate such risks effectively. ?

?

A prime example of?when your security measures fail?

?

Crimson Wine Group, a prominent U.S. wine producer, disclosed a cybersecurity breach that significantly disrupted its operations. Discovered on June 30, the breach involved unauthorized access by a third party to internal information systems. The hackers exfiltrated data, potentially including sensitive consumer and corporate information. Crimson Wine is still investigating the breach’s full impact, particularly regarding customer data. The company took immediate action to contain the breach, shutting down affected systems and isolating functions from the internet. Despite having cybersecurity insurance, Crimson Wine anticipates potential losses beyond coverage, such as litigation risks and regulatory scrutiny. ( finance.yahoo.com ) ?

?

My Thoughts:?This is an example of?the devastating consequences businesses face when their security measures fail...?There is an?urgent need for all organizations, regardless of industry, to fortify their defenses against cyber threats. You are never too small or too large of a company. The breach’s disruption to operations and potential compromise of sensitive data should serve as a wake-up call for Crimson Wine and others to invest more aggressively in robust cybersecurity protocols. ?

?

Complacency is not an option—every company must prioritize cybersecurity as a fundamental pillar of their business strategy to safeguard against such costly and damaging breaches.?

?

CISO’s are feeling unprepared... ?

?

Onyxia Cyber’s 2024 report reveals that 67% of CISOs feel unprepared for stringent cybersecurity regulations such as the SEC’s Cybersecurity Disclosure Rule and the EU’s DORA. Additionally, 52% admit to lacking knowledge on how to report cyber attacks to government entities. The study highlights the evolving role of CISOs from technical experts to strategic business leaders, emphasizing the need for enhanced security measures and AI integration. Key findings include discomfort with current incident response strategies (56%) and challenges in persuading the C-suite on security strategies (67%). ( securityinfowatch.com ) ?

?

My Thoughts: It's clear that CISOs need strong support in adapting to these challenges. Support must come from the executive branch of management in order to properly fund the cybersecurity investments needed to protect the enterprise. At Assurance IT, we are well-equipped to assist CISOs in strengthening their security postures, implementing effective incident response plans, and leveraging AI to optimize their security operations. By bridging these gaps, we can help CISOs not only comply with regulations but also protect their organizations from evolving cyber threats more effectively.?

We only partner with the best.

Have questions about your cybersecurity posture? Let’s chat.?

?

Calendar Link ?

?

12.9 million individuals affected... What now??

?

MediSecure, an Australian electronic prescriptions provider, experienced a significant cyber attack resulting in the potential exposure of personal and health information for numerous customers, including healthcare provider and prescription details up to November 2023. The breach, affecting approximately 12.9 million individuals according to the Australian Department of Home Affairs, has prompted national concern and response efforts, including warnings about online scams and the establishment of a mental health hotline. ( securitymagazine.com ) ?

?

My Thoughts: With sensitive personal and medical data now in the hands of cybercriminals, the implications for targeted attacks and scams are profound... This incident should serve as a wake-up call not only for healthcare providers but also for regulators and legislators to bolster cybersecurity measures across critical infrastructure sectors. At Assurance IT, we recognize the urgent need for robust governance and risk management in healthcare IT systems to prevent such breaches and protect patient confidentiality effectively. We are experts at what we do. ?