A data breach at ILS affected millions of individuals. While the incident is a summer old, the revelation is recent. Speaking of breaches, a consumer finance provider warned its customers as threat actors pilfered over 300,000 customer records. Quis custodiet ipsos custodes? This question looms over this cybersecurity company that suffered a data breach at the hands of Cl0p ransomware. Here is everything you need to know about cyberspace from the last 24 hours.
01
Florida-based Independent Living Systems, a third-party admin service to managed care organizations, disclosed a data breach incident from last summer that impacted over 4.2 million people.
02
Latitude Finance, a consumer finance provider, disclosed a major cyberattack in which the attackers stole 103,000 identification documents and 225,000 customer records.
03
The CISA, the FBI, and the MS-ISAC issued a joint advisory warning against the XE Group, a nation-state threat actor, abusing known vulnerabilities in Progress Telerik software to intrude on the Microsoft IIS web server of an unnamed government agency.
04
The LockBit ransomware group claimed responsibility for an attack on Essendant, which caused a network outage knocking offline the company’s operations.
05
Rubrik revealed suffering a data breach after the Cl0p ransomware gang added the cybersecurity firm to its data leak site, published samples of stolen files, and threatened to leak the data.
06
European and U.S. law enforcement authorities announced the takedown of a cryptocurrency mixer, named ChipMixer, involved in transactions worth over $3 billion made by North Korean and Russian hackers.
07
The NSA released guidance on fortifying Identity, Credential, and Access Management (ICAM) capabilities by enhancing zero-trust principles and designs in enterprise networks.
08
CrowdStrike spotted the first-ever illicit Dero cryptocurrency mining campaign that has been ongoing since February. The campaign finds Kubernetes clusters with anonymous access enabled on a Kubernetes API.
09
New report from Secureworks stated that BEC attacks replaced ransomware as the topmost cybercrime category, in 2022, with phishing accounting for 33% of Initial access vectors.
10
Security operations firm Rapid7 announced the acquisition of Minerva Labs, an Israeli anti-ransomware startup for $38 million, with an aim to strengthen its MDR portfolio.
