The Consumer Financial Protection Bureau has proposed a new rule that would block data brokers from selling personal and financial information on Americans, including their Social Security numbers and phone numbers, under the Fair Credit Reporting Act. In proposing the new rules, months after President Biden signed an executive order to curb the sale of […]
ENGlobal Corporation, a provider of engineering and automation services to the U.S. energy sector and federal government, says it has restricted access to its IT systems following a cyberattack, limiting the company to essential business operations only. In an 8-K filing with the SEC on Monday, Texas-based ENGlobal said it became aware of a “cybersecurity
US government contractor ENGlobal says operations are ‘limited’ following cyberattack Read More »
An Apple ad-tech employee filed a lawsuit against his employer on Sunday over how the company monitors its employees, reports Semafor. Apple wants its employees to use Apple devices for work but work-issued devices are so restricted that many employees use personal devices, or tie their work devices to their personal iCloud. To do so,
An Apple employee is suing the company over monitoring employee personal devices Read More »
For the last few years, the Polish government under Donald Tusk has been investigating the use — and alleged abuse — of Pegasus phone spyware by the previous government. On Monday, the former head of Poland’s internal security agency Piotr Pogonowski was arrested and forcibly taken to testify before parliament, as part of the current
Poland arrests former spy chief in Pegasus spyware probe Read More »
Signzy, a popular vendor offering online “know your customer” ID verification and customer onboarding services to several top financial institutions, commercial banks, and fintech companies, has confirmed a security incident. The Bengaluru-based startup, which serves over 600 financial institutions globally — including the four largest Indian banks, was hit by a cyberattack last week, according
Indian online ID verification firm Signzy confirms security incident Read More »
The Russian government has confirmed the indictment of a 32-year-old resident, who authorities accuse of creating and launching ransomware attacks. Russian prosecutors said last week that they charged the unnamed hacker, who lives in the Russian province of Kaliningrad, with the creation of ransomware to gain “illegal profit.” The arrest of a suspected ransomware member
Russian government confirms rare criminal charges against ransomware hacker Read More »
In November, we broke the news on how cybersecurity startup Upwind was getting a lot of inbound interest to raise money on a big valuation. Now, we can confirm that the deal is done: Upwind has closed a Series A of $100 million. The company confirmed that the round values it at $900 million post-money.
Confirmed: cloud security specialist Upwind raises $100M on a $900M valuation Read More »
A ransomware attack on supply chain software giant Blue Yonder continues to cause disruption to the company’s customers, almost two weeks after the outage first began. In a brief update to its cybersecurity incident page on Sunday, Arizona-based Blue Yonder said it is making “good progress” in its recovery from the attack, which hit its
Retail outages drag into second week after Blue Yonder ransomware attack Read More »
There is immense power in being in control of your own data. As ownership and governance of apps and online services consolidate, it’s understandable if you want to consider your options when it comes to where you store your private data and records of your everyday activities. Fortunately, not every service out there is trying
A venture capitalist, a recruiter from a big company, and a newly hired remote IT worker might not seem to have much in common, but all have been caught as imposters secretly working for the North Korean regime, according to security researchers. On Friday at Cyberwarcon, an annual conference in Washington DC focused on disruptive
