NFL's San Francisco 49ers are mailing notification letters confirming a data breach affecting more than 20,000 individuals following a ransomware attack that hit its network earlier this year. The San Francisco Bay Area professional American football team confirmed that personal information (including names and Social Security numbers) belonging to 20,930 impacted individuals was accessed and/or stolen in the attack between February 6 and February 11, 2022. READ MORE...
Cloud sprawl is a big issue for organizations, with business teams to spinning up cloud systems and services on their own, often without IT oversight. That leads to cloud data sprawl as data is scattered across different environments. If IT doesn't know about the cloud systems and services, then IT is also not managing the data being collected, processed, and stored there. READ MORE...
Chile's national computer security and incident response team (CSIRT) has announced that a ransomware attack has impacted operations and online services of a government agency in the country. The attack started on Thursday, August 25, targeting Microsoft and VMware ESXi servers operated by the agency. The hackers stopped all running virtual machines and encrypted their files, appending the ".crypt" filename extension. READ MORE...
Google says it took additional steps in the past week so that brands would no longer see their ads on Russian state-owned websites that are a regular source of Ukraine war propaganda. The move comes after a software developer tweeted screenshots of ads from major Western companies placed through Google's display advertisement service alongside headlines spreading disinformation about the war. READ MORE...
Multifactor authentication is widely regarded as a must-have among cybersecurity professionals and authorities, but it's not always a quick fix. Threat actors can still evade and even exploit MFA via phishing or social engineering attacks, as evidenced by the persistent and widespread text-message phishing campaign dubbed Oktapus or Scatter Swine. Technology companies, telecommunications providers and organizations or individuals linked to cryptocurrency have been targeted since the attacks began in March. READ MORE...