Cyber Security

The Swedish Club, a prominent marine insurer, has unveiled a pioneering step in maritime insurance by announcing comprehensive Cyber Insurance coverage for all its Club members starting January 1, 2024. This strategic move positions The Swedish Club among the first marine insurers to extend such protective coverage, aligning firmly with the cyber security guidelines...

Toronto Public Library (TPL) announced an extensive timeframe for service restoration following a cybersecurity attack on October 28. The library anticipates a gradual return of amenities, prioritizing the website and public computing services, aiming for a comprehensive and secure re-establishment by January. The attack resulted in the potential compromise of sensitive employee information, including personal...

CTS, a managed service provider (MSP) catering to UK law firms, is currently grappling with a cyberattack, leading to disruptions in their services. The incident potentially impacts numerous British law firms, hindering access to crucial case management systems. The company confirmed the cyber incident, prompting an urgent investigation into the service outage affecting a portion...

An alleged cyber extortion group known as N4ughtySec has resurfaced, claiming ongoing access to TransUnion and Experian's systems in South Africa. Threatening a data leak after failed ransom demands, the group declared their sustained presence and intentions to expose client data. Reports from TimesLive confirm the group's demands for separate ransoms of $30 million from...

Security researchers have discovered vulnerabilities in Windows Hello's fingerprint authentication system, exposing flaws in the top three fingerprint sensors integrated into laptops. Microsoft's Offensive Research and Security Engineering (MORSE) engaged Blackwing Intelligence to assess the security of fingerprint sensors by ELAN, Synaptics, and Goodix, embedded in a Dell Inspiron 15, Lenovo ThinkPad T14, and Microsoft...

A recent report from Russia-based Gazeta.ru has purportedly exposed the identity of the leader of the pro-Russia hacktivist group Killnet, known as Killmilk. Allegedly named Nikolai Serafimov, a 30-year-old Russian citizen, he gained prominence during Russia's conflict in Ukraine for spearheading politically motivated hacking activities. While the information disclosed by Gazeta.ru remains unverified independently, it...

Canada's Privacy Commissioner, Philippe Dufresne, has launched an investigation into a cyberattack impacting the personal data of current and former members of the Canadian armed forces and the Royal Canadian Mounted Police (RCMP). The breach, reported by Brookfield Global Relocation Services (BGRS) and Sirva Canada LP, involved sensitive data linked to personnel relocation services contracted...

London & Zurich, a direct debit collection company, grapples with the aftermath of a ransomware attack that has caused severe financial disruptions and prolonged service outages. The incident, commencing on November 10 and officially confirmed as a ransomware attack four days later, has left customers unable to process the majority of direct debit payments,...

Security researchers from Aqua have flagged a concerning revelation: publicly exposed Kubernetes configuration secrets posing a significant threat of supply chain attacks. According to the researchers, encoded Kubernetes configuration secrets were discovered uploaded to public repositories, potentially placing organizations at risk. Aqua's Yakir Kadkoda and Assaf Morag detailed their findings, highlighting that numerous entities, including...

Fidelity National Financial (FNF), a leading insurance entity in the Fortune 500, disclosed a cybersecurity incident in an 8-K filing with the Securities and Exchange Commission (SEC). The breach prompted the shutdown of multiple systems, impacting key services such as title insurance, escrow, mortgage transaction services, and technology for the real estate and mortgage...

The recent breach affecting 665,000 Marina Bay Sands (MBS) LifeStyle reward members, disclosed by MBS on Nov. 7, 2023, drew attention during a parliamentary sitting on Nov. 22. Minister for Communications and Information Josephine Teo addressed queries about the breach, emphasizing adherence to guidelines outlined in the Personal Data Protection Act (PDPA). MP Hany Soh...

A proposed class action lawsuit has been filed by Jarvis Bryant Jenkins against IBM Corp. and Johnson & Johnson Health Care Systems Inc. in the US District Court for the Southern District of New York. Jenkins alleges negligence on behalf of the companies regarding the safeguarding of sensitive health records, exposing his data and...

Fidelity National Financial (FNF), a Fortune 500 company specializing in title insurance and settlement services for the mortgage and real estate sectors, disclosed a cybersecurity breach to the Securities and Exchange Commission (SEC). The breach, described as an incident impacting specific FNF systems, prompted the company to enforce measures, including the blockage of system...

The Australian federal government is set to launch a $587 million cyber security strategy after a year-long consultation with industry leaders. This strategy, detailed following discussions with various industry heavyweights, encompasses an "action plan" intended to complement existing initiatives with a designated funding of $2.3 billion until 2030, as reported by several news outlets. The...

The recently unveiled federal government's cyber security strategy in Australia has received acclaim from industry groups as a pivotal asset for the nation's economy and community resilience. Kate Pounder, CEO of the Tech Council of Australia (TCA), hailed the strategy as a significant step towards fortifying national cyber capabilities. Pounder highlighted the strategy's comprehensive nature...