CrowdStrike's Legal Challenges
CrowdStrike is facing significant legal issues following a widespread IT outage on July 19th, 2024, which impacted around 8.5 million devices globally. The incident, caused by a faulty update, resulted in substantial financial losses estimated at $15 billion globally.
Delta Airlines, a major victim, is considering legal action, and CrowdStrike is also facing a class action lawsuit from investors. The outcome of these cases may hinge on whether the company's leadership disclosed the risks associated with the update.
Cencora Data Breach
Pharma giant Cencora disclosed that additional personal identifiable information (PII) and protected health information (PHI) were stolen in a data breach on February 21st. The breach has not materially impacted the company's operations.
Ransomware Attack on OneBlood
A ransomware attack on OneBlood, a major blood supply organization, has disrupted its operations, prompting hospitals to activate blood shortage protocols. OneBlood is working with cybersecurity specialists to resolve the issue.
Action Items:
Assess and strengthen ransomware prevention and response strategies.
Support blood donation efforts if possible, as shortages could impact healthcare services.
DigiCert Certificate Revocation
DigiCert is revoking nearly 84,000 certificates after discovering a flaw in their validation process. Impacted customers must reissue certificates promptly to avoid service disruptions.
Action Items:
Check if your organization is affected by this issue and reissue certificates as necessary.
Regularly audit certificate management processes to prevent similar issues.
BingoMod Malware Targeting Android Users
A new remote access trojan, Bingo Mod, is targeting Android devices to steal information and perform fraudulent activities. The malware is in the development phase and is distributed via smishing attacks.
Action Items:
Educate users on recognizing and avoiding smishing attacks.
Implement robust mobile device security measures and regularly update antivirus solutions.
Australian Cybersecurity Regulation
Australia is introducing a new cybersecurity regulation requiring companies to disclose ransomware payments. Failure to comply may result in fines.
Germany-China Cyber Relations
Germany has summoned China's ambassador following a cyber attack on a German cartography agency. This diplomatic move underscores the growing tensions around cyber activities.
AWS Outage
An AWS outage affected various services, causing disruptions. The issue was resolved within a few hours.
Action Items:
Review and update business continuity plans to account for cloud service disruptions.
Consider multi-cloud strategies to mitigate risks associated with single-provider outages.
The CyberHub Podcast continues to provide vital cybersecurity updates. Stay tuned for more insights and ensure your systems and policies are up to date to navigate these challenges effectively.
✅ Story Links:
https://www.securityweek.com/crowdstrike-faces-lawsuits-from-customers-investors/
https://www.securityweek.com/personal-health-information-stolen-from-pharma-giant-cencora/
https://therecord.media/ransomware-attack-blood-center-shortage-protocols-hospitals
https://www.securityweek.com/bingomod-android-rat-wipes-devices-after-stealing-money/
https://therecord.media/germany-summons-chinese-ambassador-over-hack
https://www.crn.com/news/cloud/2024/aws-outage-hits-amazon-services-ring-whole-foods-alexa
🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1
✅ Important Links to Follow:
👉Substack:
👉Listen here: https://linktr.ee/cyberhubpodcast
✅ Stay Connected With Us.
👉Facebook: https://www.facebook.com/CyberHubpodcast/
👉LinkedIn: https://www.linkedin.com/company/cyberhubpodcast/
👉Twitter (X): https://twitter.com/cyberhubpodcast
👉Instagram: https://www.instagram.com/cyberhubpodcast
✅ For Business Inquiries: info@cyberhubpodcast.com
=============================
✅ About The CyberHub Podcast.
The Hub of the Infosec Community.
Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.
Tune in to our podcast Monday through Thursday at 9AM EST for the latest news.
For Collaboration and Business inquiries, please use the contact information below:
📩 Email: info@cyberhubpodcast.com
Share this post