News - The Data Breach Times

November 09, 2023

973 views 12 secs 0

NYDFS Amends Cybersecurity Regulation; Some Provisions Go Into Effect December 1

New York State continues to strengthen cybersecurity regulations for financial institutions. New amendments to the Cybersecurity Regulation enacted in 2017 strengthen the regulation and add new security obligations. As Hunton Andrews Kurth summarizes it, “The new amendments strengthen the initial framework and require NYDFS-regulated entities to adhere to a number of additional prescriptive data security […]

November 07, 2023

1072 views 47 secs 0

Sun Life third-party breach exposes 212K individuals

CyberNews reports: Sun Life data was exposed after MOVEit hackers breached Pension Benefit Information (PBI), jeopardizing hundreds of thousands of individuals. Sun Life, a financial services company managing a trillion dollars worth of assets, informed the Maine Attorney General that a third-party breach had impacted 212,129 individuals. Earlier this year, the company was impacted by […]

News, Commentaries and Analyses, Legal News, Malware Ransomware

November 02, 2023

1282 views 9 mins 0

International Counter Ransomware Initiative 2023 Joint Statement

Released by the White House, November 2, 2023 The 50 members of the International Counter Ransomware Initiative (CRI)—Albania, Australia, Austria, Belgium, Brazil, Bulgaria, Canada, Colombia, Costa Rica, Croatia, the Czech Republic, the Dominican Republic, Egypt, Estonia, the European Union, France, Germany, Greece, India, INTERPOL, Ireland, Israel, Italy, Japan, Jordan, Kenya, Lithuania, Mexico, the Netherlands, New […]

Finance, Legal News, News

November 02, 2023

1066 views 14 secs 0

NY Financial Regulator Rolls Out Updated Cybersecurity Standards

Bloomberg reports: New York regulators assigned heightened cybersecurity requirements to banks, insurers, and financial services providers based in the state with the release of finalized rule amendments Wednesday. Covered entities will have to use multifactor authentication, expand cybersecurity governance duties, and conduct consistent threat testing under the regulation updated by the New York Department of Financial Services. […]

News, Vendor News

October 31, 2023

1149 views 0 secs 0

US sues software company targeted in massive Russian cyber espionage campaign

The Hill reports: The U.S. sued a software company targeted in a massive Russian cyber espionage campaign Monday. The Securities and Exchange Commission (SEC) suit against Texas-based SolarWinds is seeking civil penalties, reimbursement of “ill-gotten gains” and the removal of the company’s top security executive, Tim Brown, according to The Associated Press. “We allege that, for years, […]

Legal News, Malware Ransomware, News

October 31, 2023

951 views 50 secs 0

The U.S. And Its Allies Are Pledging Never To Pay Hacker Ransoms

An outstretched hand with the word "NO!"

Eric Geller reports: The Biden administration and dozens of foreign allies will pledge this week never to pay ransoms to hackers who lock up their national governments’ computer systems, hoping to discourage financially motivated cyber criminals from seeing those systems as attractive ransomware targets. The joint promise will occur as part of the third annual […]

News, Legal News

October 27, 2023

1110 views 2 mins 0

FTC announces new Safeguards Rule provision: Is your company up on what’s required?

October 2023 marks the 20th anniversary of the effective date of the Gramm-Leach-Bliley Safeguards Rule. Its purpose then – and its purpose now – is to protect consumers by requiring entities covered by the Rule to “develop, implement, and maintain reasonable administrative, technical, and physical safeguards to protect the security, confidentiality, and integrity of customer […]

News

October 22, 2023

524 views 2 mins 0

Okta shares fall 11% after company says client files were accessed by hackers via its support system

Stock prices often fall after a major breach is announced. Many will rebound quickly, but not all do. Here is an example from this past week of a firm taking a significant stock hit shortly after a breach was announced. CNBC reports: Shares of cybersecurity firm Okta closed down 11.5% after the company said an unidentified hacking group had […]

Data Breach News, News

October 19, 2023

948 views 48 secs 0

International coalition of law enforcement takes down Ragnar_Locker ransomware portal

An international group of law enforcement agencies have seized the dark web portal used by the Ragnar_Locker ransomware gang. The notice appeared today, and although there have been no press releases yet by either Interpol, Europol, or the FBI, TechCrunch was able to get confirmation from a spokesperson for Europol that information will be released […]

Data Breach News, News

October 19, 2023

544 views 2 mins 0

Hacker leaks millions more 23andMe user records on cybercrime forum

The same individual, “Golem,” who leaked DNA data from 23andMe on BreachForums has now leaked even more data. While the original leak was described as relating to Ashkenazi Jews, the newest leak of more than 4 million records was described as being users from Great Britain and Germany, including data from “the wealthiest people living […]