Cyber Threat Report: Cyber Security News for 12/08/21

Bosses Are Reluctant to Spend Money on Cybersecurity... Then They Get Hacked
Cyberattacks like ransomware, business email compromise (BEC) scams, and data breaches are some of the key issues businesses are facing today. Despite the number of high-profile incidents and their expensive fallout, many boardrooms are still reluctant to free up the budget. Read Article

The Dark Web Has Its Own People's Court
At least a few cyberthieves seem to be abiding by a set of underground rules for sorting out differences among themselves over broken promises, unpaid dues, and ineffective malware. Read Article

Lloyd’s Carves Out Cyber Insurance Exclusions for State-Sponsored Attacks
This narrowing of coverage is in response to evolving threats, increased risk, and a 95 percent increase in demand during the third quarter. Read Article

Ransomware Victims Pay $700K in Extra Extortion Fees
A staggering 96 percent of ransomware victims that agree to their extorters’ demands are subsequently forced to pay additional fees amounting to hundreds of thousands of dollars. Read Article

New HP MFP Vulnerabilities Show Why You Should Update and Isolate Printers
Researchers have discovered two dangerous vulnerabilities in 150 HP multifunction printers that use its FutureSmart firmware, including one that is exploitable remotely. Read Article

Colorado Energy Company Loses 25 Years of Data After Cyberattack
DMEA did not use the term "ransomware" but said much of their data had been corrupted while phone and email services were down for weeks. Read Article

Israeli Gov't Pledges Greater Oversight of Cyber-Exports
After NSO tools hacked US officials, the agency said it will force countries to sign a pledge not to use the spyware tools for anything besides "terrorism" and "serious crimes." Read Article

Zoho Confirms New Zero-Day, Ships Exploit Detector
Security problems at enterprise software provider Zoho continue with confirmation of a new critical authentication bypass vulnerability, the third in four months, being exploited in the wild by advanced threat actors. Read Article

Cyberattack Pushes Maryland Department of Health Website Offline
A cyberattack forced the Maryland Department of Health website offline, preventing residents from accessing the site’s healthcare resources. Read Article

Why Cryptominers Aren't Just a Headache
They're a big neon sign that 'bad things' are on your network, says Sophos in warning about Tor2Mine Monero malware. Read Article

Headline Privacy & IT Security Compliance News

In our reoccurring Cyber Threat Report, we share the latest and most critical industry headline news. The new year is just around the corner, cyberattacks like email scams, malware, ransomware, and data breaches are just a few of the many cyber threats facing businesses today.

Despite the number of rising incidents and costly remediation, most businesses still lack a proper and updated Business Continuity/Disaster Recovery (BCDR) plan. The importance of having a Chief Information Security Officer (CISO) or a virtual CISO (vCISO) and an Incident Response Plan (IRP) will help protect your operations and save your business valuable time and money in the event of a cyber incident.

Get in touch with Chris Kniffin, Corporate Director, to learn more about how a team of experts at JANUS can help protect your business effectively. Subscribe to the JANUS Associates Cyber Threat Report through the opt-in form in the footer below to stay updated.