Cybersecurity

Cybersecurity

$11 billion North Face owner, VF Corp., hit by ransomware

Attacker "disrupted… business operations by encrypting some IT systems, and stole data from the company"

SEC

New SEC cyber rules are go...

Firms need to disclose any cybersecurity incident they determine to be material and to describe the material aspects of the incident's nature, scope, and timing within four days.

banks

Europe's banks steel themselves for a tough ECB cyber resilence test after blistering criticism

"Institutions continue to report gaps in risk control areas considered fundamental to cyber hygiene, such as proper identity and access management, timely vulnerability patching or network security"

NATO

NATO signs up IBM to build and run a custom cybersecurity offering

IBM is providing a custom "Asset, Configuration, Patching and Vulnerability” service with a special focus on vulnerability management.

New Relic

New Relic says customer accounts were breached, but not via the hack of its staging environment...

Hackers gained access to an employee account and pivoted to staging environment, but did not move laterally, company says.

Citrix

Boeing shares ransomware incident TTPs as Citrix Bleed attacks ramp up

Hey criminals! Fire an HTTP GET request. Grab system memory including session cookies issued post-authentication. Don't worry about logs. Pillage and loot. Thanks, Citrix.

New Relic

New Relic warns its 15,000 customers of cyber incident

Incident comes weeks after the Application Performance Monitoring firm was taken private in a $6.5 billion buyout

CISO

The Big Interview: JPMorgan’s Global CISO, Pat Opet

"Industry has gotten good at identifying vulnerabilities in the supply chain; SBOMs and so on [but not at] at insidious backdoors and logic issues that are built into software, and update mechanisms that could cause implants..."

Citrix

1 Citrix bug alone triggered 13 “nationally significant” UK cybersecurity incidents

You filthy animals are **** at network architecture, and it may be "necessary to expand threat hunting" says NCSC.

Kubernetes

Public Kubernetes API server numbers pass one million, as attackers start to consider K8s a "central target"

"Once an attacker is past the initial access, the opportunities are ample for lateral movement and privilege escalation within a cluster..."

CISO

“Security is a full contact sport”: Aerospace firm Sierra Nevada Corporation CSO Robert Daugherty

"We operate with the assumption that a sophisticated nation state threat actor is always active inside the organisation"

ransomware

World’s Biggest Bank hacked: ICBC may have failed to patch "Citrix Bleed" vulnerability

Courier dispatched with a USB stick carrying trade settlement details after systems disrupted...