Information Security – Page 2 – Baldwin Consulting Services, LLC

Information Security

4.3 million people hit in massive healthcare data breach — full names, addresses and SSNs exposed online | Tom’s Guide

July 31, 2024

As reported by BleepingComputer, the HSA provider HealthEquity has disclosed that it suffered a data breach in which the personal...

Information Security

Critical ServiceNow vulnerabilities expose businesses to data breaches | CSO Online

July 31, 2024

Three critical vulnerabilities in the ServiceNow IT service management platform have been disclosed and reported to have been under active...

Information Security

Yet another top US healthcare service provider has been hacked, with patient data exposed | TechRadar

July 7, 2024

As it turned out, a partner of the company had its personal device compromised, and used by the threat actors...

Information Security

Financial institutions ordered to notify customers after a breach, have an incident response plan | Malwarebytes

May 21, 2024

The amendments will become effective 60 days after publication in the Federal Register. Larger entities will have 18 months after...

Information Security

Rebalancing NIST: Why ‘Recovery’ Can’t Stand Alone

April 19, 2024

It's important to keep in mind that recovering from an attack is not the same as disaster recovery or business...

Information Security

Newly detailed ‘Tycoon 2FA’ phishing kit bypasses multifactor authentication – SiliconANGLE

March 27, 2024

The phishing kit is also evolving, with updates to Tycoon 2FA in February said to have enhanced its capabilities by...

Information Security

How the New NIST 2.0 Guidelines Help Detect SaaS Threats

March 21, 2024

Throughout CSF 2.0, NIST recommendations dovetail with SaaS security needs. Govern, the new function, addresses issues relating to the democratization...

Information Security

4 tabletop exercises every security team should run | CSO Online

March 6, 2024

In a tabletop exercise, a team discusses their roles and responses during an emergency under different scenarios, typically with someone...

Information Security

eBay, VMware, McAfee Sites Hijacked in Sprawling Phishing Operation

February 28, 2024

"The uncovered operation involves the manipulation of thousands of hijacked sub-domains belonging to or affiliated with big brands," head of...

Information Security

Cloudflare hacked using auth tokens stolen in Okta attack

February 1, 2024

While addressing the incident, Cloudflare's staff rotated all production credentials (over 5,000 unique ones), physically segmented test and staging systems,...

Continuity Management

Technology Management

Crisis Management

Emergency Management

Risk Management

Compliance