Industry News: ESG5

The Target: Ticketmaster, the world’s leading online ticketing platform owned by Live Nation.

The Take: The stolen data trove reportedly includes names, addresses, phone numbers, and partial credit card information.

The Vector: While the specific circumstances of the breaches—including exactly what information was stolen and how it was accessed—remain unclear, the incidents may be linked to attacks against company accounts with cloud hosting provider Snowflake.

This breach highlights the extreme importance of timely software updates for known software vulnerabilities, not only in systems directly under a firm’s control, but in third-party systems the firm relies upon as well. The longer a firm, or its vendors, hold out on deploying the most up-to-date software for their systems, the greater the chance an attacker will exploit the issue.

Read more...

2024-06-05

Dark Reading: Notable Capital, a global venture capital firm, announced the inaugural launch of "Rising in Cyber," an independent list recognizing the 30 most promising cybersecurity companies as selected by Chief Information Security Officers (CISOs), security leaders, and startup investors.

Read more...

2024-06-05

Yahoo Finance/Reuters: CrowdStrike Holdings Inc forecast second-quarter revenue above market estimates, helped by strong demand for its cybersecurity offerings in the wake of growing online challenges spurred by the use of artificial intelligence (AI).

Read more...

2024-06-05

SecurityWeek: Over 200,000 more cybersecurity workers are needed in the United States to close the talent gap, according to data from CyberSeek. CyberSeek, a joint initiative of NIST’s NICE program, CompTIA, and Lightcast, aims to provide detailed and actionable data on the cybersecurity job market. 

Read more...

2024-06-05

Coindesk: Web3 cybersecurity company GoPlus has raised $10 million in a private financing round with participation from a host of heavyweight crypto investors including OKX Ventures, HashKey Capital and Animoca Brands, according to an emailed announcement shared with CoinDesk.

Read more...

2024-06-05

MSN: The ransomware business is booming in Canada. Recent victims have included large corporations such as retailer London Drugs, as well as the City of Hamilton, Ont., and the government of Newfoundland and Labrador.

Read more...

2024-06-04

Yahoo Finance: Cybersecurity is the practice of protecting computer systems, networks, programs, and data from unauthorized access, attacks, damage, or any form of unauthorized manipulation.

Read more...

2024-06-03

Australian Prudential Regulation Authority: The Australian Prudential Regulation Authority (APRA) has written to all APRA-regulated entities emphasising the critical role of data backups in cyber resilience. 

Read more...

The Target: Cencora, formerly AmerisourceBergen, is a pharmaceutical services provider specializing in drug distribution, specialty pharmacy, consulting, and clinical trial support.

The Take: Cencora's internal investigation, which concluded on April 10, 2024, confirmed that the following information had been exposed: full name, address, health diagnosis, medications, and prescriptions.

The Vector: In February 2024, Cencora disclosed a data breach in a Form 8-K filing with the SEC, stating that unauthorized parties gained access to its information systems and exfiltrated personal data.

This breach is a stark reminder of how strong authentication controls are in an overall robust cybersecurity posture, and that good password hygiene plays a pivotal role in protection.

Read more...

2024-05-30

Forbes: Cybersecurity has evolved into an indispensable foundation for doing business. The past several years have seen the rise of a permanent hybrid workforce that uses software to connect to their corporate networks.

Read more...