Cyber Threat Report: Cyber Security News for 06/27/24

CISA warns chemical facilities may have been hacked in CSAT breach
Attacker may have site security plans for chemical facilities all over the US, CISA warns. Read More

Cloud Breaches Impact Nearly Half of Organizations
Nearly half (44%) of organizations have experienced a cloud data breach, with 14% reporting having had an incident in the past 12 months. Read More

Is the cybersecurity industry ready for AI?                                             
AI-generated threats have already impacted three-quarters of organizations, yet 60% admitted they aren’t prepared to handle AI-based attacks, according to a study. Read More

Did hackers steal 33TB of data from the Federal Reserve?
The central banking system is allegedly negotiating with the ransomware gang LockBit to restore 33 terabytes of confidential banking data. Read More

Levi’s caught with pants down: Hackers expose 72,000 customer account details   
To remedy the matter, Levi Strauss has forced password resets for all of the stolen accounts. Read More

After 2 hacks, CDK Global warns customers of social-engineering attacks                         
The CDK Global voicemail (855-356-3270) said the threat actors are engaging in follow-up social engineering to obtain system access and underscored the need for vigilance among its 15,000 auto dealership customers. Read More

US Bans Kaspersky Software             
The US government announced a ban on the sale of Kaspersky software over fears that the company is controlled by the Russian government. Read More

KrebsOnSecurity Threatened with Defamation Lawsuit Over Fake Radaris CEO             
Their attorney has admitted that the person Radaris named as the CEO from its inception is a fabricated identity. Read More

Microsoft blamed for million-plus patient record theft at US hospital giant                  
Probe: Worker at speech-recognition outfit Nuance wasn't locked out after firing American healthcare provider Geisinger fears highly personal data on more than a million of its patients has been stolen – and claimed a former employee at a Microsoft subsidiary is the likely culprit. Read More

HEADLINE PRIVACY & IT SECURITY COMPLIANCE NEWS

Chemical facilities across the US that utilize the Cybersecurity & Infrastructure Security Agency’s (CISA) ‘Chemical Security Assessment Tool’ could be at risk following thanks to a data breach that reportedly struck in January 2024.

The attackers may have been able to access sensitive and confidential material relating to facility security assessments after abusing an Ivanti device to plant a webshell.

CSAT is supposed to help facilities stay on top of risk-assessments by providing a security vulnerability assessment (SVA) and site security plan (SSP) if they are determined to be a high-risk facility that could be targeted by terrorists.

Get in touch with us to learn more about how the team of experts at JANUS can help protect your business effectively. Follow us on Twitter and LinkedIn.