#Databreaches

2025-06-12

Are #cybersecurity incidents growing more costly?

Cyentia Institute's recent Information Risk Insights Study points to a 15-fold increase in the cost of #incidents and #databreaches over the last 15 years.

The chart on the left shows the distribution of known/reported financial losses from incidents across the time period of the study. The typical (median) incident costs about $600K, while more extreme (95th percentile) losses swell to $32M. Note that the chart uses a log scale, so the tail of large losses is a lot longer than it appears.

The chart on the right trends the escalating costs of cyber events over time. Median losses from a security incident have absolutely exploded over the last 15 years, rising 15-fold from $190K to almost $3 million! The cost of extreme events has also risen substantially (~5x). So, yeah—cyber events are definitely growing more costly.

That said, this picture looks a lot different among different types and sizes of organizations. How are financial losses and other #cyberrisk factors trending for orgs like yours?

Download the full IRIS 2025 to find out!
Free with no reg req'd - though you can join Cyentia's free membership forum for bonus analytical content related to the report.

cyentia.com/iris2025/

Chart showing 15x increase in financial losses from cyber events since 2008.
2025-06-12

Le retour de Flame

Flame, en mai 2012 est un programme malveillant dont le but est d’intercepter les e-mails, de collecter des fichiers et d’enregistrer des conversations à distance. Ce dernier est présumé créé par les États-Unis et Israël, en vue d'un objectif précis : retarder l'enrichissement d'uranium en Iran.
Ce pays semble mener d'une main de fer, le Moyen-Orient. Cette affaire ce cyberespionnage remonte au mois de mai 2012.« Il s’agit de préparer le champ de bataille pour un autre type d’action secrète », déclarait un ancien haut responsable du renseignement américain au The Wahington Post.

Le passé sert de référence, pour dessiner le futur d'une vie au présent, car la géopolitique du monde actuel se conçoit à travers ses cyberattaques. Roel Schouwenberg, chercheur principal chez Kaspersky Lab résumait (en 2012) ainsi la situation : « Flame a probablement été utilisé pour l'espionnage et Stuxnet pour le sabotage ».

(Crédits : Markus Spiske/Pexels)

librexpression.fr/flame-le-vir

washingtonpost.com/world/natio

#cyberattack #databreaches #equationgroupe #Europe #flame #France #Gaza #informatique #Iran #ISNU #Israel #Librexpression #Pegasus #ransomware #Russie #shadowbrokers #USA #threats

Des lignes de code se suivent verticalement. Elles semblent faire référence au film Matrix.
2025-06-11

Texas Dept. of Transportation breached, 300k crash records stolen

lemmy.zip/post/41059136

2025-06-10

Stolen Ticketmaster data from Snowflake attacks briefly for sale again

lemmy.zip/post/40906450

2025-06-10

Sensata Technologies says personal data stolen by ransomware gang

lemmy.zip/post/40906357

2025-06-09

Tasmanian Department of State Growth reports data breach affecting 260 bus and taxi drivers

lemmy.zip/post/40776346

2025-06-09

Tax resolution firm Optima Tax Relief hit by ransomware, data leaked

lemmy.zip/post/40776181

2025-06-09

Old AT&T data leak repackaged to link SSNs, DOBs to 49M phone numbers

lemmy.zip/post/40776132

2025-06-09

Interlock ransomware claims Kettering Health breach, leaks stolen data

lemmy.zip/post/40776128

2025-06-07

ZDNet: 86 million AT&T customer records reportedly up for sale on the dark web. “Hackers on the dark web are hawking a database of 86 million customer records that they claim were stolen in an AT&T breach last year. The data in question was posted on a Russian cybercrime forum on May 15 and then uploaded again on June 3, apparently garnering attention from other cybercriminals and potential […]

https://rbfirehose.com/2025/06/07/zdnet-86-million-att-customer-records-reportedly-up-for-sale-on-the-dark-web/

2025-06-05

Discover the latest insights on safeguarding against cyber threats and the importance of employee training. redoracle.com/News/Safeguardin

2025-06-05

Media giant Lee Enterprises says data breach affects 39,000 people

lemmy.zip/post/40341124

2025-06-03

Indian grocery startup KiranaPro was hacked and its servers deleted, CEO confirms

lemmy.zip/post/40106041

2025-06-03

Cartier discloses data breach amid fashion brand cyberattacks

lemmy.zip/post/40105714

2025-06-01

Akira, le ransomware

Depuis son apparition en mars 2023, le Ransomware-as-a-Service Akira ne cesse de produire des victimes. Pratiquant la double extorsion, il affiche ainsi 808 entreprises.

Peu de temps après ses premiers actes, une clé de déchiffrement est trouvée. Mais depuis, le groupe de cybercriminels monte en puissance. Les attaques produisent la chute d'entreprise. En 2023, la britannique KNP Logistics Group subit les foudres d'Akira ; en mai 2025, après 160 années d'existence, elle disparaît.

librexpression.fr/akira-ransom

#Akira #blackbasta #chiffrement #conti #cyberattack #databreaches #europe #France #informatique #librexpression #raas #ransomware #Russie #RUST #threats #USA

(Crédits : Ylanite Koppens/Pexels)

Deux clés anciennes se trouvent posées sur un papier aussi ancien. Des écritures presque indéchiffrables sont calquées sur le papier. Entre légende et carte au trésor.
Healthcare Privacy & HIPAA BotHIPAABot@mastodon.clinicians-exchange.org
2025-05-30

DATE: May 30, 2025 at 12:59PM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Recently disclosed #healthcare #databreaches:
- Bradford Health Services
- Doctors Hospital at Renaissance
- Molecular Testing Labs
Ransomware groups claim attacks on
- Desert Behavioral Health
- Curewell Specialty Pharmacy & Surgicals
t.co/Mg5BvWvRlB

Here are any URLs found in the article text:

t.co/Mg5BvWvRlB

Articles can be found by scrolling down the page at hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

#security #healthcare #doctors #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #HIPAA #privacy #healthcaresecurity #BAA #patientrecords #telehealth #socialengineering

Healthcare Privacy & HIPAA BotHIPAABot@mastodon.clinicians-exchange.org
2025-05-30

DATE: May 30, 2025 at 12:59PM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Recently disclosed #healthcare #databreaches:
- Bradford Health Services
- Doctors Hospital at Renaissance
- Molecular Testing Labs
Ransomware groups claim attacks on
- Desert Behavioral Health
- Curewell Specialty Pharmacy & Surgicals
t.co/Mg5BvWvRlB

Articles can be found by scrolling down the page at hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

#security #healthcare #doctors #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #HIPAA #privacy #healthcaresecurity #BAA #patientrecords #telehealth #socialengineering

2025-02-06

New Tria stealer intercepts text messages on Android | Kaspersky official blog

Attackers are distributing the Tria stealer under the guise of wedding invitations. Getting married is certainly one of the most important events in anyone’s life. And in many cultures, it’s customary to invite hundreds of guests to the celebration — including some you barely know. Cybervillains take advantage of such traditions, using wedding invitations as bait to launch attacks on Android smartphone users. Here’s what threat actors have come up with this time, and how to defeat […]

whalers.ir/blog/new-tria-steal

2025-02-06

The biggest supply chain attacks in 2024 | Kaspersky official blog

Attacks on supply chains were one of the biggest threats in 2024. We discuss the most notable incidents of last year, and their consequences for the attacked. A supply-chain attack can totally thwart all a targeted company’s efforts to protect its infrastructure. Preventing such attacks is extremely difficult because a significant portion of an attack occurs in infrastructure that’s not within the security team’s control. This makes supply-chain attacks one of the most dangerous […]

whalers.ir/blog/the-biggest-su

2025-02-06

How to detect and defeat spam | Kaspersky official blog

Simple tips for fighting spam email. “Hello, this is your distant relative from Nigeria. I’m writing because I have a terminal illness and no other living relatives. My dying wish is to transfer my inheritance of $100 million to you while I still can…” — we’ve all probably received an email like this at some point during our online existence. Originally known as “Nigerian prince” scams, today they bear the label “419” (after the section of the Nigerian Criminal Code […]

whalers.ir/blog/how-to-detect-

Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst