- Defend & Conquer Weekly Cybersecurity Newsletter
- Posts
- Boeing's Ransomware Attack and Data Leak
Boeing's Ransomware Attack and Data Leak
Defend & Conquer with Dr. ZeroTrust
Dr. Chase Cunningham
22 Nov
Hi reader,
Welcome to this week's edition of the top cybersecurity news highlights, where we'll bring you the latest insights and updates in the ever-evolving field of cybersecurity. I'm Chase Cunningham, also known as Dr. Cunningham or Dr. ZeroTrust in the cybersecurity community, and I'm here to keep you informed and secure.
Cybersecurity News Highlights: What You Must Know
In the dynamic realm of cybersecurity, being well-informed is crucial. Here's a snapshot of recent developments shaping the cybersecurity landscape:
1. Zero Trust Certifications by Cloud Security Alliance (CSA): CSA introduces nonpartisan, vendor-independent certifications focused on the zero trust concept. These certifications advocate granting access on a need-to-know basis, emphasizing continuous verification. Investing in these certifications equips individuals with the expertise to implement robust zero trust strategies, enhancing overall security posture.
2. FCC's Pilot Program for Schools and Cybersecurity: The FCC proposes a three-year pilot program to enhance cybersecurity in schools and libraries. Leveraging the Universal Service Fund, the FCC aims to assess and improve cybersecurity measures in educational institutions. Stakeholders, particularly concerned parents and citizens, are encouraged to review and provide feedback during the public comment period.
3. Strengthened Cybersecurity Regulations for NYC Hospitals: Governor Kathy Hochul introduces regulations requiring New York City hospitals to establish robust cybersecurity policies. A dedicated $500 million fund supports the implementation of these measures. While critics call for a more comprehensive approach, these regulations mark a positive step towards fortifying healthcare cybersecurity.
4. Scattered Spider Group: A New Cyber Threat: CISA issues an advisory on the Scattered Spider Group, utilizing Mitre attack techniques in phishing attacks. While their current toolset appears limited, organizations are urged to implement proactive measures such as application whitelisting to mitigate potential risks.
5. Boeing's Ransomware Attack and Data Leak: Boeing faces a ransomware attack with a Russian-linked group leaking 45GB of sensitive data. This incident underscores the need for comprehensive cybersecurity measures, emphasizing the potential consequences of successful ransomware attacks.
6. Meridian Link's Cyberattack and SEC Involvement: Meridian Link, a financial software company, reports a cyberattack to the SEC, opting for transparency. This move highlights the growing importance of accountability in addressing cybersecurity incidents and emphasizes the role of regulatory involvement in raising awareness.
In conclusion, navigating the cybersecurity landscape demands vigilance and adaptability. Staying informed and proactive empowers individuals and organizations to defend against evolving threats and foster a secure digital environment. Always prioritize staying smart, staying safe, and staying secure in your cybersecurity efforts.
Until next time, stay smart, stay safe, and stay secure.
The CybersecurityHQ Team
*About Dr. Chase Cunningham: I am a retired Navy Chief Cryptologist with more than 20 years experience in Cyber Forensic and Analytic Operations and I offer deep technical expertise, advanced education, various certifications and operational experience in this field. I have an intricate and real world know how gained directly from the realm of cyber operations and forensic analysis. I gained my operations experience by being "on pos" doing cyber forensics, analytics, and offensive and defensive cyber operations while functioning in highly technical and operationally demanding work centers within the NSA, CIA, FBI and other government agencies.