The ALPHV/BlackCat ransomware gang filed a regulatory disclosure related to a material cybersecurity incident affecting its victim, MeridianLink, on Wednesday, November 15, 2023. The group used the U.S. Securities and Exchange Commission’s (SEC) Tips, Complaints, and Referrals page to file a complaint alleging that their victim failed to disclose a “significant breach” via a Form […]
Vishing Attack Cripples MGM Resorts Operations
On Monday, MGM Resorts International (NYSE:MGM) disclosed a cyberattack that forced it to take many of its IT systems offline. In a statement posted to its official X (Twitter) account, MGM Resorts said that it identified a “cybersecurity issue affecting some of the Company’s systems.” The statement indicated that it responded by shutting down certain […]
Cybersecurity for Urban & Suburban Municipalities – Part 2: Strategy
In Cybersecurity for Urban & Suburban Municipalities – Part 1: Overview, we learned about the vast and diverse range of considerations public officials need to consider when evaluating municipal cybersecurity. Shortly after we published Part 1, reports of multiple large cyberattacks broke. In one attack, the Colorado Department of Higher Education learned on June 19, […]
Data from Prospect Medical Cyberattack Appears for Sale on Dark Web
Stolen Data from the suspected ransomware attack on Prospect Medical Holdings in August recently appeared for sale on the dark web. The sensitive personally identifiable information (PII) includes more than 500,000 social security numbers, patient and employee passports, driver’s licenses, medical patient files including protected health information (PHI), financial documents, and legal documents, according to […]
Clorox Co Takes Systems Offline After Discovering Cybersecurity Breach
The Clorox Company (NYSE: CLX) disclosed on August 14, 2023 that it took certain systems offline following a cybersecurity breach. The manufacturing behemoth, which reported annual revenue of more than $7.3 billion for the year ending June 30, 2023, is known for its staple bleach, but its portfolio includes many other cleaning and personal care […]
Prospect Medical Suffers Critical ‘Data Security Incident,’ Emergency Departments Temporarily Close
“These are threat-to-life crimes, which risk not only the safety of the patients within the hospital but also risk the safety of the entire community that depends on the availability of that emergency department to be there.” -John Riggi, national advisory on cybersecurity and risk for the American Hospital Association and former FBI cybersecurity specialist […]
Cybersecurity for Urban & Suburban Municipalities – Part 1: An Overview
In the past few years, the Biden Administration has repeatedly demonstrated that infrastructure cybersecurity is a national security priority through the Federal Emergency Management Agency (FEMA) and Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA), as well as multiple pieces of legislation, including the Bipartisan Infrastructure Deal which was signed into law […]