More than decade of personal data stolen in Pearland ISD breach
Source: Click 2 Houston
More than a decade of personal data was stolen from Pearland ISD, according to a letter that went out to parents, staff and students in the district last week. The letter explained, in November 2022, the district became aware of unusual activity in their network.
They hired cybersecurity experts and five months later in April, they learned the following information was compromised: name, date of birth, address, Social Security number, driver’s license or state identification number, financial account information, username and password to an online account, payment card details, health insurance information, and/or medical information.
DOJ's New Cyber Unit to Focus on Nation-State Cybercrimes
Source: Data Breach Today
The U.S. Department of Justice unveiled a new team - the National Security Cyber Section - to disrupt nation-state threat actors and prosecute them at the "earliest stages." NatSec Cyber will work closely with the DOJ's Computer Crime and Intellectual Property Section.
The MOVEit Transfer Mayhem: Why Do We Fail in Vulnerability Management?
Source: The Cyber Express
CVE-2023-34362, CVE-2023-35036, and failed vulnerability management. That is what hundreds of organizations across the world currently have in common. And the impending probability of the Cl0p ransomware group listing them as victims.
SEC Delays Final Rules on Breach Disclosure, Board Expertise
Source: Info Risk Today
Federal market regulators delayed until October a final decision for new rules mandating private sector disclosure of cybersecurity incidents and cyber expertise on public boards.
VMware warns of critical vRealize flaw exploited in attacks
Source: Bleeping Computer
VMware updated a security advisory published two weeks ago to warn customers that a now-patched critical vulnerability allowing remote code execution is being actively exploited in attacks. "VMware has confirmed that exploitation of CVE-2023-20887 has occurred in the wild," the company said today.