Incident Response Archives

SECURITYWEEK NETWORK:

ICS:

Hi, what are you looking for?

Incident Response

Palo Alto Networks Shares Remediation Advice for Hacked Firewalls

Palo Alto Networks has shared remediation instructions for organizations whose firewalls have been hacked via CVE-2024-3400.

Eduard Kovacs20 hours ago

Funding/M&A

Tines Bags $50 Million Funding for Security Workflow Automation

Irish startup Tines raises $50 million in new venture capital funding as investors make big bets on automation and orchestration startups.

Ryan Naraine2 days ago

UnitedHealth Change Healthcare cyberattack

Data Breaches

UnitedHealth Says Patient Data Exposed in Change Healthcare Cyberattack

UnitedHealth confirms that personal and health information was stolen in a ransomware attack that could cost the company up to $1.6 billion.

Ionut Arghire3 days ago

CISO Strategy

BreachRx Raises $6.5M to Revamp Incident Response Reporting Systems

Investors make an early-stage $6.5 million bet on BreachRx, a startup promising to shield cybersecurity executives from personal liability.

Ryan Naraine7 days ago

Data Breaches

Cisco Duo Says Hack at Telephony Supplier Exposed MFA SMS Logs

Cisco Duo warns that breach exposed phone numbers, phone carriers, metadata and other logs that could lead to downstream social engineering attacks.

Ryan NaraineApril 15, 2024

Data Breaches

US Government on High Alert as Russian Hackers Steal Critical Correspondence From Microsoft

The US government says Midnight Blizzard’s compromise of Microsoft corporate email accounts "presents a grave and unacceptable risk to federal agencies."

Ryan NaraineApril 11, 2024

Data Breaches

SEC Shares Important Clarifications as New Cyber Incident Disclosure Rules Come Into Effect

The SEC has provided some important clarifications on its new cyber incident disclosure requirements, which come into effect on December 18.

Eduard KovacsDecember 18, 2023

Data Breaches

MongoDB Confirms Hack, Says Customer Data Stolen

MongoDB CISO Lena Smart said the company was not aware of any exposure to the data that customers store in the MongoDB Atlas product.

Ryan NaraineDecember 17, 2023

Incident Response

Kansas Courts’ Computer Systems Are Starting to Come Back Online, 2 Months After Cyberattack

The court system in Kansas was hit by a cyberattack that caused outages and affected the courts in 104 counties.

Associated PressDecember 15, 2023

Government

GAO: Federal Agencies Yet to Fully Implement Incident Response Capabilities

A new GAO report reveals that 20 out of 23 US federal agencies have not fully implemented incident response plans.

Ionut ArghireDecember 6, 2023

Incident Response

New Relic Says Hackers Accessed Internal Environment Using Stolen Credentials

New Relic said hackers gained access to an environment using social engineering and stolen credentials for an employee account.

Ionut ArghireDecember 4, 2023

Identity & Access

Okta Broadens Scope of Data Breach: All Customer Support Users Affected

Okta expands scope of October breach, saying hackers stole names and email addresses of all its customer support system users.

Ryan NaraineNovember 29, 2023

Incident Response

Sumo Logic Completes Investigation Into Recent Security Breach

Sumo Logic has completed its investigation into the recent security breach and found no evidence of impact to customer data.

Eduard KovacsNovember 21, 2023

CISO Strategy

Biden Campaign Looking for CISO

The Biden for President campaign is looking for a cybersecurity chief to “define the organization's risk appetite” and manage its cybersecurity and IT initiatives.

Ryan NaraineNovember 16, 2023

Incident Response

Microsoft Warns of Critical Bugs Being Exploited in the Wild

Patch Tuesday: Redmond’s security response team flags two vulnerabilities -- CVE-2023-36033 and CVE-2023-36036 -- already being exploited in the wild.

Ryan NaraineNovember 14, 2023

Artificial Intelligence

Radiant Snags $15 Million for AI-Powered SOC Technology

Radiant Security gets $15 million in new financing as investors double down on early stage companies experimenting with AI technology.

Ryan NaraineNovember 14, 2023

Funding/M&A

Tidal Cyber Raises $5 Million for Threat-Informed Defense Platform

The Washington, DC startup is building a threat-informed defense platform that helps organizations automate detection and response work.

Ionut ArghireNovember 9, 2023

Incident Response

Offense Intended: How Adversarial Emulation Went From State Secret To Board Bullet Point

Offensive Security does not focus on discreet attacks, singular actors, or Indicators of compromise, but understands the entirety of both sides of the battlefield.

Tom EstonNovember 8, 2023