May 26th, 2024

AI Helped IBM’s Hackers to Break into Major Tech Manufacturer in 8 Hours
Top 10 Issues GCs and Execs Need to Know About Ransomware in 2024
Zoom to Offer Post Quantum Encryption
Bug in Popular PDF Reader Foxit Delivers Malware
Veeam Patches Critical Flaw that Puts Backups at Risk
SEC to Require Financial Firms to Have Data Breach Incident Plans
Some in Congress Want to Repeal Section 230 and Figure Out a Replacement Later
House Working on National Privacy Law
Santander Breach Highlights Supply Chain Risk
Gala Games Hit By $21 Million Hack
Canadian Pharmacy Chain London Drug Says It Can’t/Won’t Pay $25 Million Ransom

Security News for the Week Ending May 24th, 2024

This week’s security news bites: docufakes on the rise, hackers are not always smart, college
kids figure out how to hack smart washers and dryers, Microsoft Recall is a privacy nightmare
and Teslas can be stolen in seconds with a cheap radio hack.

Read details here.

London Drugs is learning the hard way that if you are not preferred for a cyberattack, the
resulting meltdown will not be pretty and if your company survives, it will cost you a lot
more. If you need help with this please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com

May 19th, 2024

GE Healthcare Issues “Guidance” for Mitigating 11 Bugs in Ultrasound Devices
CISA Rolls Out New Guidelines to Mitigate AI Risks to Critical Infrastructure (and you)
Apple – It is NOT Your Father’s Oldsmobile, err, iPhone
Google Patches Third Exploited Chrome Zero-Day in a Week
Breach Forums, a Notorious Cybercrime Forum, Seized by the Cops
Cell Carriers Say They Don’t Sell Your Data; FCC Fines Them $200 Mil Because They Do
Board Audit Committee Practices Report
Cyberattack Shutters Christie’s Days Before $840 Million Art Auction
Europol Confirms Incident AFTER Alleged Auction of their Data
Hacker Leaks Data Stolen from HSBC & Barclays Banks, Including Source Code
Sonne Finance Hacked for at Least $20 Mil
City of Wichita Ransomware Attack Stole Law Enforcement Data

Security News for the Week Ending May 17th, 2024

This week’s security news bites: White House preps new cyber rules for healthcare after
ChangeHealth debacle, feds to launch Project Fortress to try and help banks from imploding
due to cyber attacks, should notifying breach victims a year after the breach be legal (hint:
Texas based WebTPA thinks so), are you hiring North Koreans to do your remote work and
Google demos 1984 coming to a phone near you soon.

Read details here.

I know I sound like a broken record, but each week we talk about that week’s vendor
breaches. This week it was GE, Apple, Christies, Europol, HSBC, Barclays and WebTPA.
Are you confident that your vendors are doing what they need to do because you are the
one who is going to be sued. If you need help with this please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com

May 12th, 2024

Big Brother IS Watching
The CISO and the SEC
Change Healthcare Doesn’t Have Cyber Insurance – Do You
State Privacy Law Update
New FTC Commercial Surveillance Rules Likely Soon
Wichita Government Shuts Down Systems After Ransomware Attack
Brandywine Realty Trust Loses Data in Ransomware Attack
Do You Consider ONE YEAR Timely Breach Notification?
Ascension Health Announces Breach; Tech Shutdown

Security News for the Week Ending May 10th, 2024

This week’s security news bites: TikTok sues US government; vows to prevail, Google unveils
Google Threat Intelligence, the AI model war continues, AT&T solution to spam? turn off
customer email and Dell loses info on 49 million customers due to brute force attack.

Read details here.

If you collect, buy, acquire or use the personally identifiable data of consumers in any of
the 30 plus states listed above you have to comply with those state’s laws, whether you
have an office in that state or not. In many cases there are exemptions or at least partial
exemptions, but you have to look at it state by state. These laws give consumers rights
and businesses responsibilities. Are you prepared? If you need help with this please
contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com

May 3rd, 2024

Russia’s APT28 Exploiting Old, Unpatched Print Spooler Bug
Block and Cash App Accused of Funding Terrorism
Apple Does Not Always Remove Fake Apps
Microsoft Confirms that April Update May Break VPN Connectivity
One of Two Reasons People Buy Bitcoin
Healthcare’s Version of Colonial Pipeline – The ChangeHealth Breach
UnitedHealth Tells Senate They Have Now Implemented MFA Everywhere
Belarus Secret Service Website Still Down Two Months After Being Hacked
Kansas City’s Traffic/Weather Monitoring and Alerting System Down After Cyberattack
Dropbox: Breach (Bad) and Breach Handling (Good)

Security News for the Week Ending May 3rd, 2024

This week’s security news bites: cyberattack ramifications: chain closes all stores to contain
attack, deepfake of principal’s voice: AI frames principal, here is why ransomware attacks won’t
go away: 91% of victims paid, Microsoft overhauls security – again and lawsuits against AI
companies continue to grow.

Read details here.

Dropbox gave us an example of how it is possible to disclose a breach quickly and with
useful information. If that is something you need to be able to do but are not sure that
you can, please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com