- The National CIO Review
- Posts
- Cyber Security Byte: Saturday, November 16th, 2024
Cyber Security Byte: Saturday, November 16th, 2024
❄️Alleged Snowflake Hackers Arrested
Happy Saturday! This week in cybersecurity is serving up more twists than a spy novel. 🕵🏼♂️
The arrest of two alleged hackers is making headlines after being accused of breaching Snowflake’s cloud data platform, lifting billions of sensitive records, and extorting millions in crypto. If you thought the cloud was invincible, think again. ⛅
Delta and Amazon are the latest casualties in the MOVEit file transfer exploit saga, which has impacted nearly 2,800 organizations and exposed data on 96 million individuals since mid-2023. 📅 While both companies reported only basic employee contact details were compromised, such data remains a goldmine for phishing and impersonation attacks. 😰
From high-profile arrests to escalating threats, this week’s stories prove cyber adversaries are staying sharp—and so should we. Let’s get into it, shall we? 🔓
P.S. Found us through a friend or stumbled upon us on socials? Subscribe here!💥
FEATURED
Exploited but Not Forgotten: Takeaways from CISA’s 2023 Vulnerability Report
Cybersecurity remains a pressing issue as hackers constantly refine their tactics to exploit weaknesses in software, systems, and infrastructure. In November 2024, the Cybersecurity and Infrastructure Security Agency, working with international partners, shared a detailed look at the vulnerabilities most frequently targeted in 2023.
The report, a joint effort by top cybersecurity agencies from the United States, Australia, Canada, New Zealand, and the United Kingdom, brings together global insights and real-world threat data.
By Ryan Uliss ● Contributing Writer ● Read More…
CYBER BYTES
Delta Airlines and Amazon have recently confirmed that employee data was compromised by threat actors exploiting the MOVEit file transfer tool through a third-party vendor.
Two alleged hackers, Connor Moucka and John Binns, are accused of orchestrating a global cyberattack targeting major corporations via Snowflake’s cloud data platform.
The TSA has proposed a new rule to strengthen cybersecurity across pipeline, railroad, and select bus operators, formalizing emergency directives issued in response to rising cyber threats.
TRENDING
Reshaping U.S. Cybersecurity: Key Appointments and Major Agency Changes Expected
President-elect Donald Trump’s return to office signals potential changes for U.S. cybersecurity strategy, with anticipated shifts both in leadership and in the mission of key agencies. As Trump and his administration evaluate new appointees for cybersecurity roles, the Cybersecurity and Infrastructure Security Agency (CISA), in particular, faces significant scrutiny.
While leaders like Sean Plankey, Karen Evans, and Katie Arrington are rumored for top cyber posts, the Trump administration is also weighing a structural overhaul for CISA, which may focus on streamlining its responsibilities and budget.
By Emory Odom, Contributing Writer ● Read More…
RESOURCE HUB
TNCR LIVE! | Building a Mission-Centric IT Organization for 2025 and Beyond
Building a mission-centric IT organization means aligning IT capabilities with strategic priorities—enhancing visibility, accessibility, and resilience while safeguarding against risk. In this webinar, our speakers will explore the core principles of shaping an IT organization that is mission-centric.
A MESSAGE FROM YOUR TNCR CREW
Amplifying the Voice of the CISO
Subscribers make it possible for your TNCR Crew to curate the latest in technology thought-leadership. To support our work and get unlimited access to our award-winning coverage, subscribe today.