Planned Parenthood has confirmed it suffered a cyberattack affecting its IT systems, forcing it to take parts of its infrastructure offline to contain the damage. Planned Parenthood is a New York-based nonprofit organization that provides a range of reproductive health care services, education, and advocacy for birth control. It is one of the largest providers of reproductive and sexual health services in the United States. READ MORE...
US-based semiconductor manufacturer Microchip Technology has confirmed that the cyberattack it suffered in August 2024 resulted in the theft of data, including "employee contact information and some encrypted and hashed passwords." The breach was claimed later that month by the Play ransomware gang, who say that they have stolen "private and personal confidential data, clients documents, budget, payroll, accounting, contracts, taxes, IDs, finance information and etc." READ MORE...
The Transport for London (TfL) "cyber incident" is heading into its third day amid claims that a popular appliance might have been the gateway for criminals to gain access to the organization's network. TfL remains tightlipped over the nature of the incident and its broader impact, sticking instead to the line that there is currently no evidence of customer data being compromised or impact to TfL services. However, claims have emerged regarding how criminals got a foothold. READ MORE...
Cisco's site for selling company-themed merchandise is currently offline and under maintenance due to hackers compromising it with JavaScript code that steals sensitive customer details provided at checkout. It is unclear how the malicious JavaScript landed on Cisco's store but BleepingComputer has been told by researchers who wish to remain anonymous that it appears to be a CosmicSting attack. The Cisco Merchandise Store is a gift shop that provides Cisco-branded apparel and accessories READ MORE...
The vast majority of corporate finance professionals, 85%, now view such scams as an "existential" threat, a Medius study found. Just over half of businesses in the U.S. and U.K. have been targets of a financial scam powered by "deepfake" technology, with 43% falling victim to such attacks, according to a survey by finance software provider Medius. Of the 1,533 U.S. and U.K. finance professionals polled by Medius, 85% viewed such scams as an "existential" threat to their organization's financial security. READ MORE...
The automotive industry is facing many of the same cybersecurity risks and threats that successful organizations in other sectors are up against, but it's also battling some distinct ones. In this Help Net Security interview, Josh Smith, Principal Threat Analyst at Nuspire - a managed security services provider that has deep roots in the automotive sector and protects clients like GM and Subaru - talks about the present risks and threats and opines on the future of automotive cybersecurity. READ MORE...
The group has been among the most active threat groups of 2024, and is linked to a tool that can neutralize endpoint security. The Cybersecurity and Infrastructure Security Agency and FBI are warning network defenders about a growing threat from RansomHub, a prolific ransomware group that has attacked more than 210 organizations since launching in February 2024. The Department of Health and Human Services and MS-ISAC joined CISA and the FBI in authoring the advisory. READ MORE...