Tag Archive for: Incident

Ubisoft reportedly shutdown a “data security incident” earlier this week

/in


Ubisoft is reportedly investigating an “unknown threat actor” who allegedly gained access to the company’s Microsoft Teams, Confluence, Atlas, and SharePoint channels for 48 hours before access was revoked.

According to the Gaming Leaks and Rumours subreddit and as reported by Bleeping Computer, screenshots allegedly taken during the 20th December hack have since been leaked online. Ubisoft has reportedly confirmed it is investigating an “alleged data security incident”.

“December 20th, an unknown Threat Actor compromised Ubisoft,” tweeted vx-underground. “The individual had access for roughly 48 hours until administration realised something was off, and access was revoked.

“They aimed to exfiltrate roughly 900GB of data but lost access,” vx-underground adds. It’s not clear what, if any, data the hacker obtained before they were kicked from the system.

Apparently, the “threat actor” would not share how they got initial access, but upon entry into Ubisoft’s internal systems, the hacker “audited users access rights and spent time thoroughly reviewing Microsoft Teams, Confluence, and SharePoint”.

Access was revoked before the threat actor successfully exfiltrated Rainbow Six Siege user data.

“We are aware of an alleged data security incident and are currently investigating. We don’t have more to share at this time,” Ubisoft said in a statement to BleepingComputer.

Marvel’s Spider-Man developer Insomniac Games has now released a statement addressing the ransomware attack on its studio earlier this month, the release of stolen data this week, and the spread of information on upcoming projects now circulating the internet.

The PlayStation studio had stayed silent until now, something it said was a result of it being “focused inward” to support team members. Personal data was included in…

Source…

NCSC launches Cyber Incident Exercising scheme – NCSC.GOV.UK – National Cyber Security Centre

/in



NCSC launches Cyber Incident Exercising scheme – NCSC.GOV.UK  National Cyber Security Centre

Source…

Mr. Cooper Recovers From Hacking Incident

/in


Cybercrime
,
Fraud Management & Cybercrime
,
Incident & Breach Response

Also: ChatGPT Struggles to Stay Online Amid DDoS Attacks

Anviksha More (AnvikshaMore) •
November 9, 2023    

Breach Roundup: Mr. Cooper Recovers From Hacking Incident
Image: Shutterstock

Every week, Information Security Media Group rounds up cybersecurity incidents and breaches around the world. This week, mortgage lender Mr. Cooper recovered from a cyberattack, ChatGPT struggled with distributed denial-of-service attacks, a cybercrime group’s business model was exposed, hackers stole data of loyalty club members of Marina Bay Sands in Singapore, South Korean and the United States aim to enhance cybersecurity cooperation, and an Iranian-linked threat group has been targeting Israeli higher education and technology organizations since January.

See Also: Live Webinar | Generative AI: Myths, Realities and Practical Use Cases


Mr. Cooper Recovers From Cyberattack

Texas-based mortgage lender Mr. Cooper restarted operations, including taking payments, on Saturday following a four-day shutdown caused by an Oct. 31 hacking incident at the company. The lender told federal regulators Thursday that it has yet to originate new loans but expects to do so soon, “following reestablishment of connectivity with vendors and agencies.”

“Certain customer data was exposed, however it will require additional analysis to validate this finding and quantify the scope and type of any such exposure,” the company said. It told customers on its website that it won’t assess late fees…

Source…

Suspect you have experienced a side effect or incident from a healthcare product? Submit a Yellow Card report to improve safety for everyone

/in


The eighth annual #MedSafetyWeek campaign has today (6 November 2023) been launched by the Medicines and Healthcare products Regulatory Agency (MHRA). Part of a global campaign involving 88 countries, the initiative runs from 6-12 November and aims to improve patient safety by encouraging reporting of any suspected side effects from medicines and adverse incidents associated with medical devices.

With this year’s theme being ‘Who can report?’, the campaign focuses on the key role that every patient, carer and healthcare professional has in reporting suspected side effects and adverse incidents with medical devices, and the positive impact this can have on patient safety. You don’t have to prove that the healthcare product caused the side effect or incident – just a suspicion is enough for you to submit a report.

This year’s campaign consists of an international collaboration involving 100 organisations spanning across 88 countries that operate their own national patient safety monitoring systems like the MHRA Yellow Card scheme. The purpose of safety monitoring is to gain information about new side effects and adverse incidents, to find out more about known ones, and, most importantly, to ensure the safest use of medicines and medical devices.

All healthcare products carry a risk of causing adverse reactions or incidents. The Yellow Card scheme is one of several robust measures used by the MHRA to continuously monitor the safety of medicines and medical devices once in clinical use to ensure their benefits continue to outweigh any risks. All healthcare product regulators operate systems to detect and analyse adverse reactions and incidents.

It is important that everyone submits a report to the Yellow Card scheme as soon as they suspect a side effect from a medicine or adverse incident associated with a medical device. This ensures that actions to reduce harm are based on the best available evidence and can improve safety for as many people as possible.

Dr Alison Cave, MHRA Chief Safety Officer, said:

“Every report made to the MHRA Yellow Card scheme counts. Yellow Card reports are vital in building more knowledge and understanding about the potential risks of…

Source…