Main Points from today’s show:
1. Moveit Data Breach: The episode starts with a discussion on the data breach of the file transfer service Moveit, affecting over 2,600 organizations and 77.2 million people since May, potentially the worst in history. The majority of affected organizations are from the education sector in the U.S., followed by health and finance sectors.
2. SEC Investigation and Lawsuit: Progress Software, the parent company of Moveit, faces an SEC investigation and a class action lawsuit. The case echoes the SolarWinds breach and its legal repercussions for security practitioners.
3. Idaho National Laboratory Data Leak: SiegeSec, a cybercrime group, leaked personal data of thousands of employees at the Idaho National Laboratory, including sensitive information like social security numbers and bank details.
4. Russian Cybersecurity Situation: The podcast discusses Russia's cybersecurity dynamics, noting an increase in state-sponsored cyber attacks from North Korea and China. This situation contrasts with Russia's traditional geopolitical alliances and indicates shifts in cyber warfare trends.
5. Canadian Government Data Breach: Personal information of Canadian government employees, including those in the armed forces and police, was exposed due to a breach in a third-party service provider.
6. Northwell Health Data Breach: Northwell Health in New York experienced a data breach impacting nearly 9 million patient records, part of a larger breach affecting multiple healthcare systems.
7. Morgan Stanley Fine: Morgan Stanley settled for a $6.5 million fine for insecurely disposing of hardware containing unencrypted personal identifiable information (PII).
8. Sumo Logic Data Breach: Sumo Logic reported a breach with no current proof of customer data impact. Customers are advised to rotate API access keys as a precaution.
9. Cybersecurity COO Hacks Hospital: Vikas Singla, COO of Securolytics, pleaded guilty to hacking Gwinnett Medical Center to boost his company's business, compromising patient information and disrupting services.
Closing: The podcast concludes with a reminder of no show for the rest of the week due to Thanksgiving, inviting listeners to subscribe to their Substack for exclusive content and to obtain a travel espresso mug.
Overall Theme:The episode focused on various significant cybersecurity breaches and incidents, highlighting the ever-evolving landscape of cyber threats and the need for vigilant and robust security measures.
Story Links:
https://cyberscoop.com/idaho-national-laboratory-siegedsec/
https://therecord.media/russian-analysts-point-finger-at-china
https://www.securityweek.com/canadian-military-police-impacted-by-data-breach-at-moving-companies/
https://www.securityweek.com/sumo-logic-completes-investigation-into-recent-security-breach/
https://therecord.media/millions-of-patient-records-breached-cyberattack
Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!
Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact
******
Listen here: https://linktr.ee/cyberhubpodcast
SubStack:
******
Website: https://www.cyberhubpodcast.com
Youtube: https://www.youtube.com/c/TheCyberHubPodcast
Rumble: https://rumble.com/c/c-1353861
Facebook: https://www.facebook.com/CyberHubpodcast/
Linkedin: https://www.linkedin.com/company/cyberhubpodcast/
Twitter: https://twitter.com/cyberhubpodcast
Instagram: https://www.instagram.com/cyberhubpodcast
The Hub of the Infosec Community.
Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.
Share this post