Greetings <<First Name>>! This newsletter brings to your inbox every Friday:
🗞️ this week's most important cyber security news, 📅 next week's upcoming webinar trainings and 🛡️ most recent Cyberday development.
Takeways on ITRC's US data breaches in 2022 report:
⚠️ Only 34% of breach notices incl victim and attack details. Hard for people to estimate their risk.
👥 422 million affected
🎣 Phishing and #ransomware popular vectors
💣 Malicious employees cause 20% of incidents. Insider attacks are on avg. 10x larger.
Companies can spot threats by spotting crooks after insider knowledge or disgruntled employees' unsavory comments - also on dark web.
Steady increase on data breaches on 2nd half of 2022.
⚠️ Attacks on supply chains are becoming a big trend:
- Supply chain attacks affected 10+ million people
- #Malware-based attacks affected 4.3 million people
☣️ New #malware dubbed PY#RATION is allowing threat actors to harvest sensitive information.
"Malware is unique in its utilization of WebSockets to avoid detection, communicate and exfiltrate data."
Attack details in article >>
Zendesk informed customers of a breach resulting from employee credentials stolen in "sophisticated sms #phishing campaign". No public notice yet.
Attack may be the same that already hit e.g. Twilio and Cloudflare before.