failings
-
The company managing the Sellafield nuclear site in the United Kingdom has been fined £332,500 ($435,400) in a landmark prosecution after pleading guilty to three criminal charges over cybersecurity failings.
-
The U.S. Department of Justice has filed a lawsuit against the Georgia Institute of Technology – better known as Georgia Tech – and its research corporation, Georgia Tech Research Corp, alleging that the institute failed to meet essential cybersecurity requirements in contracts with the Department of Defense.
-
The Register’s Connor Jones reports: The U.S. is suing one of its leading research universities over a litany of alleged failures to meet cybersecurity standards set by the Department of Defense (DoD) for contract awardees. Georgia Institute of Technology (GIT), commonly referred to as Georgia Tech, and its contracting entity, Georgia Tech Research Corporation (GTRC),…
-
U.S. financial services firm Equiniti Trust Company, formerly known as American Stock Transfer, has been ordered by the Securities and Exchange Commission to pay a $850,000 penalty for its cybersecurity negligence that resulted in the theft of over $6.6 million in a pair of cyberattacks, reports The Record, a news site by cybersecurity firm Recorded Future.
-
Sellafield nuclear facility, a nuclear waste dump and management center in Cumbria, England, has apologized for serious cybersecurity breaches and failings that put the United Kingdom’s security at risk.
-
Bruce66423 writes: Sellafield [U.K.’s largest nuclear site] has apologised after pleading guilty to criminal charges relating to a string of cybersecurity failings at Britain’s most hazardous nuclear site, which it admitted could have threatened national security.
-
The company hit by a ransomware attack that disrupted Britain’s National Health Service (NHS) back in August 2022 is facing a data protection fine of over £6 million ($7.6 million) for failing to protect the personal information of tens of thousands of people.
-
UK’s Electoral Commission had its Microsoft Exchange servers compromised in a cyberattack by Chinese state-backed threat operation APT31 three years ago that exposed almost 40 million individuals’ data due to its failure to remediate ProxyShell vulnerabilities, tracked as CVE-2021-31207, CVE-2021-34473, and CVE-2021-34523, according to The Record, a news site by cybersecurity firm Recorded Future.
-
CISA director Jen Easterly says the Cybersecurity Safety Review Board (CSRB) “is not afraid to say when something is amiss” in response to questions about fears around private sector collaboration following the board’s scathing Microsoft report.
-
The UK’s Sellafield nuclear waste site has pleaded guilty to criminal charges related to various cybersecurity failings in the period spanning 2019-2023. Sellafield admitted it had failed “to ensure adequate protection of sensitive nuclear information on its information technology network.”
-
BleepingComputer reports that U.S. bakery-cafe fast food restaurant chain Panera Bread was accused by a purported employee of having fulfilled its attackers’ demanded ransom from an intrusion in late March that resulted in the encryption of all its virtual machines just as the chain delivered breach notifications detailing the theft of employees’ names, Social Security…
-
Microsoft is adding new security measures to assuage widely publicized concerns over its new “Recall” AI feature. Some, though, still aren’t convinced the company went far enough.
-
In brief: Google has made privacy mistakes in the past that were made public, but what about those we don’t know about? A leaked internal database from the company has revealed thousands of privacy and security failings that Google flagged between 2013 and 2018, some of which are quite damning.
-
The British government has been accused by a parliamentary committee of taking the “ostrich strategy” by burying its head in the sand over the “large and imminent” national cyber threat posed by ransomware.
-
January 12, 2024 New York State Department of Financial Services (DFS) Superintendent Adrienne A. Harris today announced that Genesis Global Trading, Inc. (“Genesis Global Trading”) will pay an $8 million penalty to New York State for compliance failures that violated DFS’s virtual currency and cybersecurity regulations and left the company vulnerable to illicit activity and…
-
Mackenzie was acquitted on charges of radicalisation in 2017 for illegally providing school teaching – Copyright AFP SIMON MAINA
-
EDF, the company operating several nuclear power plants in Britain, has been placed under “significantly enhanced regulatory attention” after an inspection into its cybersecurity practices.
-
A string of security failings within Microsoft gifted China-based hackers a highly sensitive cryptographic key they used to break into the email accounts of high level U.S. government officials, including the U.S. Secretary of Commerce.