Lmst

McLaren provides written notice to 743,131 patients after ransomware attack in July 2024:

https://databreaches.net/2025/06/22/mclaren-provides-written-notice-to-743131-patients-after-ransomware-attack-in-july-2024/

#HealthSec #databreach #encryption #extortion #transparency #incidentresponse

This was their second ransomware attack in a year. Personal injury lawyers are already recruiting plaintiffs.

@campuscodi @amvinfe @brett

Want to Be a Better Frontend Engineer? Try a Week On-Call, by (not on Mastodon or Bluesky):

https://denodell.com/blog/try-a-week-on-call

#career #training #incidentresponse

A couple more news from #InfosecurityEurope25
Post Event Recordings On ITSPmagazine

🎙️ These Aren’t Soft Skills — They’re Human Skills
A post–Infosecurity Europe 2025 conversation with Rob Black and Anthony D'Alton

Yes, Infosecurity Europe 2025 is behind us, but the most important conversations are still unfolding — like this one.

I (Marco Ciappelli) reconnected with Rob Black (yeah, I kicked Sean Martin, CISSP out again… temporarily 😄) and welcomed Anthony D’Alton to dive into something we all know is important but rarely define properly: so-called soft skills — or as we prefer to call them… human skills.

From communication and trust to team resilience and real-world training, this conversation is a practical look at what truly makes cybersecurity teams work — and why these “intangibles” aren’t soft at all.

🎥 Watch the conversation:
👉 https://youtu.be/iczQBFabLno

🎧 Prefer audio? Listen to the podcast:
👉 https://eventcoveragepodcast.com/episodes/these-arent-soft-skills-theyre-human-skills-a-postinfosecurity-europe-2025-conversation-with-rob-black-and-anthony-dalton

📚 See all the Infosecurity Europe 2025 coverage:
👉 https://www.itspmagazine.com/infosec25

✅ Next stop: Black Hat USA 2025 – Las Vegas
If your company would like to join us for an On Location Brand Story or Editorial Conversation at Black Hat USA — now is the time to book:

👉 Full Sponsorship
🔗 Book here: https://www.itspmagazine.com/event-coverage-sponsorship-and-briefings

👉 On Location Briefing
🔗 Book here: https://www.itspmagazine.com/event-coverage-briefings

#Cybersecurity #InfosecurityEurope2025 #HumanSkills #SoftSkills #CyberResilience #SecurityLeadership #StorytellingInCyber #ITSPmagazine #MarcoCiappelli #RobBlack #AnthonyDalton #OnLocation #IncidentResponse #CommunicationSkills #Teamwork #BlackHat2025 #Sponsorship #MediaPartnerships #blackhat

Incident Priority Matrix: A Comprehensive Guide to Efficient Incident Management

In the world of IT operations, not all incidents are created equal. Some demand immediate attention, while others can wait. Enter the Incident Priority Matrix your team’s strategic framework to assess and act on incidents based on urgency and impact.
Read ➡ https://callgoose.com/u/N8
#IncidentManagement #PriorityMatrix #ITOperations #IncidentResponse #MTTRReduction #ITSM #ServiceDesk #SRE #DevOps #IncidentPriority

🚨 Top Cyber Threats You Shouldn't Miss (June 18)

📲 SuperCard Malware hijacks Androids to relay payment card data.
🧑‍🎮 Stargazers Malware targets Minecraft mod users with info-stealers.
📉 Fake Bank Ads on Instagram scam users with deepfake tactics.

#CyberThreats #InfoSec #ThreatIntel #Malware #CyberAttack #SOC #BlueTeam #IncidentResponse #Cybersecurity #ThreatIntel #SOC #Malware #Phishing #Infosec

New blog post coming tomorrow (Thursday). After the success and almost viral post about Atomic Red Team, it’s time to use histograms to analyse data and find repetition and silence.

Here’s the Atomic Red Team post:
https://threathunter-chronicles.medium.com/logwatchers-zenit-02-simulating-attacks-with-atomic-red-team-d9071d42eaeb

#cybersecurity #threathunting #threatdetection #loganalysis #incidentresponse #mvpbuzz #blog

🔧 Smarter Incident Management for Stronger IT Resilience
🚨 Downtime hurts. Smart incident management helps you bounce back fast, protect assets, and keep services running.
This blog breaks down what it is, why it matters, and how tools like Callgoose SQIBS supercharge your response with automation, speed, and control.

Read More ➡️ https://callgoose.com/u/JE

#IncidentResponse #EfficiencyBoost #ProactiveManagement #SecurityMeasures #RealTimeMonitoring #callgooseSQIBS

🔥 New Supply Chain Security Comms Drill!

Supply chain attacks are becoming one of the most challenging threats facing security teams today. But here's what we've learned from working with hundreds of #IncidentResponse teams — the technical response is often the easy part.

The real challenge? Coordinating communication across your entire organization when Legal needs regulatory guidance, Sales is worried about customer retention, Engineering is weighing security vs. business continuity, and your biggest customer is demanding answers right now.

We've just created a new drill that puts you in the role of Security Incident Commander during a supply chain compromise. No technical deep-dives — just the messy, real-world communication challenges that make or break incident response.

What you'll practice:

✅ Managing competing stakeholder priorities
✅ Making information-sharing decisions
✅ Coordinating cross-functional teams

Perfect for security leaders, incident commanders, and anyone who's ever had to explain a complex security situation to executives, customers, or legal teams while the clock is ticking.

Ready to test your incident communication skills?

Link to subscribe: DiscernibleInc.com/drills

Friendly reminder for all the sysadmins, IT managers, developers, and tech leaders out there:

🔧 100% uptime is a myth.

This isn't negativity—it's reality. No matter how many redundant power supplies you stack, how many regions you deploy to, or how polished your automation pipelines are, things *will* go wrong eventually. Hardware fails. DNS misfires. Human error happens. Hell, sometimes upstream providers go down, and it's completely out of your hands.

The goal of infrastructure isn't to eliminate all failure. It's to **plan for it**. Recovery speed, incident transparency, and the ability to bounce back matter *far* more than pretending outages won't happen.

You can:

* 🧠 Educate your users and stakeholders about realistic expectations
* 🧰 Build systems that *degrade gracefully* rather than collapse
* 🛡️ Prioritize solid backups, fast recovery, and real-time monitoring
* 📣 Communicate clearly and honestly when something breaks

If you're in tech and think your systems can't go down, you're either new or in denial.

And if you're a customer demanding 100% uptime from your provider, you're not buying a service—you're buying a fantasy.

Infrastructure is a living, breathing, breakable thing. The mature mindset is not "How do we prevent *all* failure?" but rather, "How do we fail *well* and come back *better*?"

#sysadmin #devops #reliability #resilience #uptime #ITReality #incidentresponse

🇬🇧✨ You just finished your morning workout. Coffee in hand. Then… 💣 your SOC calls.
Melina PHILLIPS invites you into the dramatic world of post-compromise Linux incident response at #leHACK 2025.
From rogue services to log analysis, learn how to turn digital chaos into clarity—and maybe even have fun doing it.
🗓️ 27 june
🕐 5:45pm
🔗 https://lehack.org/2025/tracks/conferences
🎟️ Late bird : https://billetweb.fr/lehack-2025-the-singularity
Bring your coffee. Bring your courage.
#IncidentResponse #LinuxSecurity #leHACK

🇫🇷✨ Matin parfait, café à la main… jusqu’à ce que votre SOC vous appelle 💣
Melina PHILLIPS vous plonge dans les joies de la réponse à incident sous Linux à #leHACK 2025.
Services suspects, logs étranges, IP douteuses : apprenez à décoder le chaos post-compromission avec méthode (et humour).
🗓️ 27 juin
🕐 17h45
🔗 https://lehack.org/2025/tracks/conferences
🎟️ Dernières places : https://billetweb.fr/lehack-2025-the-singularity
Réponse à incident avec style.
#IncidentResponse #Linux #leHACK

🎥 Missed one of my past conference talks? Let’s fix that.

I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.

“Incident Response for Devs” - And #DevOps folks too!
📽️ https://twp.ai/4in9ow

#CyberSecurity #SecurityAwareness #IncidentResponse

Up next on the busy #Graylog conference circuit we have... #AWSreInforce starting this Monday! (Party ON 🥳) And on Tuesday at the show, the amazing Rich Murphy will talk about taming your alert avalanche, at 1:30 PM. 🚨 🏔️ 🫢

Learn how to tune out false positives, consolidate redundant alarms, and apply risk-based filtering so that high-fidelity alerts rise to the top. 💯

We'll also have Sam Parikh, Quinn Kroll, and Justine Simpson on-site to connect with you. See us there in booth #423.

Learn more: https://registration.awsevents.com/flow/awsevents/reinforce2025/sessioncatalog/page/sessionCatalog #TDIR #threatdetection #incidentresponse #cybersecurity

Attribution is hard, Thursday edition...

NEW by me: A guilty plea in the PowerSchool case still leaves unanswered questions

https://databreaches.net/2025/06/12/a-guilty-plea-in-the-powerschool-case-still-leaves-unanswered-questions/

#PowerSchool #hack #extortion #attribution #transparency #incidentresponse

@douglevin @funnymonkey @mkeierleber @brett

As a researcher, have you ever been told this sentence?

"While we acknowledge the concern, we do not have the authority to
remove or restrict access to the reported content. We'd appreciate it
if you could consider reporting the issue to Google through their
official reporting channels."

JAPANCERT - JPCERT

#CERT #Cybersecurity #infosec #research #japan #IR #incidentresponse

🛡️ Data breach? Be prepared —But not panicked.

📖 Read here:
🔗 https://wardenshield.com/data-breach-protocols

#CyberSecurity #DataBreach #IncidentResponse #WardenShield #InfoSec #DigitalRisk #утечкаданных #реагированиенапроникновение #информационнаябезопасность #кибербезопасность #протоколбезопасности #бизнесИБ

Erie Insurance's cyberattack disrupted operations in 12 states, leaving 7 million policies at risk. How prepared are we for the unexpected in our digital age?

https://thedefendopsdiaries.com/erie-insurance-cyberattack-a-wake-up-call-for-digital-security/

#cyberattack
#digitalsecurity
#incidentresponse
#infosec
#cyberthreats