Cyber Incident Response // Cyber Security // Cyber Crime // Cyber Terrorism // Cyber Defense
I just finished writing about INC Ransom spending eighteen months torching Australian healthcare organizations and I genuinely thought that was going to be my Friday. Then TELUS Digital dropped, and now I'm on my fourth coffee staring at the word "petabyte" like it's going to apologize and go away. It is not going to apologize. … Continue reading TELUS Digital Hemorrhages 1 Petabyte: ShinyHunterz Wins Again
I've been saying for years that vendor risk is not a checkbox exercise. I've been saying it in blog posts, in conference rooms, in papers, and presumably in my sleep. And then the Marquis vs. SonicWall lawsuit drops and it is the most perfect, catastrophic illustration of exactly that point that I could not have … Continue reading Marquis vs. SonicWall: When Your Firewall Vendor Hands Over the Keys
TL;DR SafePay ransomware hit Conduent and exposed 25 million Americans' personal data. Likely the largest breach in US history. Here's the full breakdown and what it means for third-party risk management. Twenty-five million Americans. Let that sit for a second. Twenty-five million people who had their data — Social Security numbers, financial records, personal identifiers … Continue reading Conduent Ransomware Exposes 25 Million Americans: SafePay’s Biggest Payday Yet
Twenty-eight South Korean financial firms just got ransomed through a single compromised MSP. One breach. One vendor. Twenty-eight victims. Qilin ransomware gang demonstrated that your trusted IT provider might be the weakest link in your entire security chain—and possibly working with North Korean state hackers because this timeline couldn't get more fucked. Read the full breakdown of how supply chain compromise is now the highest-ROI attack vector in cybercrime, and why your MSP access is probably your biggest vulnerability right now.