Kroger reaches $5M breach settlement, as Supreme Court defines harm scmagazine.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from scmagazine.com Daily Mail and Mail on Sunday newspapers.
By Juha Saarinen on Jun 1, 2021 12:55PM RBNZ governor Adrian Orr. /Supplied
Bank made things worse by not adhering to own usage guidelines.
The Reserve Bank of New Zealand was hacked after Accellion failed to send out a warning that its File Transfer Appliance (FTA) contained an actively exploited vulnerability with patches available.
While Accellion had patches for its FTA product available in December 2020, and was made aware by security vendor FireEye as early as the 16th of that month that the vulnerability was being exploited, RBNZ did not receive notification of the threat.
In a commissioned post-mortem, KPMG said that the email tool used by Accellion failed to send . notifications and consquently the bank was not notified until January 6 2021.
Cybercrime kick-off for 2021: Asia-Pacific on the Hotbed Asia-Pacific’s Cybersecurity Review for January 2021
February 02, 2021
On the first month of 2021, Asia-Pacific has become a hotbed of cyberattacks – targeting both individuals and organizations. Cybercriminals have been busy taking advantage of COVID-19’s effects as businesses have moved to remote work, more individuals do their transactions online, and governments widely using digital platforms to spread information. Let us take a look at the different incidents surrounding the region last January 2021.
Consumer and business attacks in Taiwan
Taiwanese businesses and citizens have been on the hook in the beginning of the year. Citizens have been targeted by delivery scams, where a fake UPS Taiwan online payment site was used to conduct a country-wide phishing attempt. The fake email leads to a page that collects the user’s credit or debit card information. Another phishing attempt in Taiwan spoofs the payment page
By Ionut Arghire on February 02, 2021
The Office of the Washington State Auditor (SAO) has disclosed a cybersecurity incident in which the personal information of more than 1 million individuals might have been stolen.
At the heart of the incident, SAO says, was Accellion software used for file transfers. Hackers exploited a security flaw in the file sharing service and gained access to restricted files.
Called FTA (File Transfer Application), Accellion’s service in mid-December received a patch for a critical vulnerability impacting less than 50 customers. The fix was sent to all affected organizations.
Despite that, the vulnerable service has been exploited by hackers to breach the systems of other Accellion customers as well, namely the Reserve Bank of New Zealand and the Australian Securities and Investments Commission (ASIC).
Australian securities regulator discloses security breach
By
The Australian Securities and Investments Commission (ASIC) has revealed that one of its servers has been accessed by an unknown threat actor following a security breach.
ASIC is an independent Australian government commission tasked with the regulation of insurance, securities, and financial services, as well with consumer protection as Australia s national corporate regulator.
The commission also maintains a searchable database of business information for several types of organizations. The stored data includes both current and historical info including but not limited to addresses and office locations.
A single server affected by the breach