Lack of speedy notification was 'a mistake,' Okta says

Written by Joe Warminsky Mar 28, 2022 | CYBERSCOOP “We want to acknowledge that we made a mistake,” identity authentication company Okta said Friday regarding a two-month delay in notifying…

Okta says 366 customers potentially affected in data breach

Written by AJ Vicens Mar 23, 2022 | CYBERSCOOP Okta, the identity authentication company whose customers were targeted by a prolific cybercrime group in a late-January breach, said Wednesday that…

CISA's new JCDC worked as intended, witnesses say at Senate hearing on Log4Shell bug

Written by Tonya Riley Feb 8, 2022 | CYBERSCOOP Changes in federal cybersecurity leadership over the past year allowed the private and public sectors to quickly work together in responding…

Don’t Ditch the Password Yet: Countering a Brute Force Attack

Security Intelligence – Security Intelligence – Don’t Ditch the Password Yet: Countering a Brute Force Attack There’s been a lot of chatter lately about moving on from passwords. But long…

FBI shifting cybercrime focus from arrests, indictments to payment seizures, incident response

Written by Tim Starks Jan 13, 2022 | CYBERSCOOP In 2022, the FBI is looking to approach cybercrime differently. During separate public appearances on Thursday, two FBI officials said the…

Sabbath Ransomware Gang Targets Critical Infrastructure, Backups

Security Intelligence – Security Intelligence – Sabbath Ransomware Gang Targets Critical Infrastructure, Backups A ransomware gang known as Sabbath is going after critical infrastructure groups in North America. In addition,…

NSW government casual recruiter suffers ransomware hit

IT recruitment firm Finite Recruitment has confirmed it experienced a cyber incident in October, which resulted in a “small subset” of the company’s data being downloaded and published on the…

CISA, White House urge organizations to get ready for holiday cyberattacks

The Cybersecurity and Infrastructure Security Agency and the White House have released warnings to companies and organizations across the country, urging them to be on alert for cyberattacks ahead of…

Home Affairs releases second Critical Infrastructure Bill with leftover obligations

At the start of this month, Australia’s Security Legislation Amendment (Critical Infrastructure) Act 2021 became law to give government “last resort” powers to direct an entity to gather information, undertake…

US Senate passes $768 billion defense bill without cyber incident reporting provisions

The US Senate passed the The National Defense Authorization Act (NDAA) on Wednesday, approving the $768 billion annual defense spending bill that was packed with cybersecurity provisions. The bill now heads…