Over half of SMBs using the cloud faced more attacks in the past year
Source: SC Media
Sophos on Tuesday reported that among Infrastructure-as-a-Service (IaaS) users at small- and medium-sized businesses (SMBs), 56% experienced an increase in the volume of attacks on their organization when compared with last year — and 67% were hit by ransomware. For many of these SMBs, a lack of visibility into their infrastructure, unpatched vulnerabilities, and resource misconfigurations make them susceptible to a variety of attacks, including ransomware.
Meta fined $277 million by top European regulator
Source: SC Media
A top European regulator has fined Facebook owner Meta €265 million ($277 million) for failing to protect more than half a billion users’ information from so-called data scrapers. The Irish Data Protection Commission, Meta’s main privacy watchdog in the European Union, levied the fine following disclosure of an investigation in the spring of 2021 that revealed over 530 million Facebook users’ information had been leaked on a public forum.
Indiana Health Entity Reports Breach Involving Tracking Code
Source: Data Breach Today
5 Million People Are Affected by This Breach and 2 Similar Incidents. An Indiana healthcare network is the latest medical entity to classify its use of online tracking code as a data breach reportable to federal regulators. Community Health Network on Nov. 18 reported to the U.S. Department of Health and Human Services an unauthorized access/disclosure breach affecting 1.5 million individuals involving the use of website tracking code.
Black Basta ransomware group targeting US companies with QakBot malware
Source: SC Media
The ransomware group Black Basta has been observed by researchers aggressively using the QakBot trojan to target primarily companies based in the United States. In a Wednesday threat alert, the Cybereason researchers said they began observing Nov. 14 that more than 10 customer environments were infected by a particularly aggressive campaign using QakBot to gain initial entry and often led to the Black Basta ransomware being deployed. The infections began with phishing emails that led to malicious URLs.
Attackers target vulnerable financial customers, rather than the institutions themselves
Source: SC Media
Cybercriminals are changing how they target financial institutions this holiday season: some 80% of them are going after vulnerable customers rather than the institutions themselves. A new report from Akamai also found a massive 257% increase in the number of web applications and API attacks against the financial services sector in the past year.