|
|
|
|
|
PHOTO: CHRISTIAN MONTERROSA
/BLOOMBERG
|
|
|
|
|
Election Day across the U.S. is playing out with fewer federal cybersecurity resources. The Cybersecurity and Infrastructure Security Agency no longer runs an election war room to share information about physical and online threats. CISA's election work was cut after President Trump took office in January. (Bloomberg)
|
|
|
-
The nonprofit Elections Infrastructure Information Sharing and Analysis Center also lost funding.
|
|
|
'Not effective': The security program of the Consumer Financial Protection Board is "not effective" and has lost contractors who supported cyber monitoring and testing, according to the board's Office of Inspector General. The CFPB continues to use outdated software that is no longer getting security updates from vendors and is missing documented analysis of cyber risk, the OIG said.
|
|
|
Data-breach settlements:
-
The University of Minnesota agreed to pay $5 million to resolve a class-action lawsuit over a July 2023 cyberattack that compromised the personal data of 4.2 million people. That includes applicants to the school, students, employees or university program participants between 1989 and Aug. 10, 2021. Victims can receive $30 each.
-
AutoZone agreed to pay $1.2 million to settle a case accusing it of letting third-party vendors track the activity of Pennsylvania residents who visited the retailer's website starting in January 2022. Mouse movements, clicks, searches and personal data were allegedly collected. Individuals who submit a valid claim by Nov. 13 can receive $20 each.
|
|
|
Cloud-security provider Zscaler said it acquired AI security company SPLX. The startup has developed AI-powered asset discovery and red-teaming tools. Terms of the deal weren't disclosed.
|
|
|
Accused ransomware attackers had worked at cyber companies. A ransomware threat negotiator formerly at Chicago-based DigitalMint and an incident response manager formerly at Tel Aviv-based Sygnia Cybersecurity Services were indicted in October on federal charges for their suspected roles in ALPHV/BlackCat ransomware attacks and extortion attempts against several U.S. businesses. The companies aren't accused of wrongdoing. (Chicago Sun-Times)
|
|
|
|
|
52%
|
|
Percentage of organizations that expect their cybersecurity staffing level to stay flat in the next 12 months, according to research from credit-ratings provider Moody’s Ratings.
About 40% said they plan to hire more cyber people. One percent said they would decrease staff and 7% weren’t sure.
Moody’s surveyed 2,000 businesses, local governments and education organizations worldwide.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
%20(1).jpg)
