Ransomware Attack on Merck Caused Widespread Disruption to Operations

New information released last week by pharmaceutical giant Merck reveals that a cyberattack that hit the company on June 27 caused significantly more disruption to its operations than many might have assumed. In details included during Merck’s earnings announcement July 28, the company described the attack as disrupting worldwide manufacturing, research and sales operations, and … Read more

Ad industry body issues first certificates for anti-malware best practices

The digital advertising industry’s cybersecurity assessment and information-sharing organization has issued its first set of anti-malware certifications, signing off on measures against cyberattacks taken by nine companies who represent as much as half of the digital advertising market. The Trustworthy Accountability Group, or TAG, issued “Certified Against Malware” seals Monday to AppNexus, DataXu, Google, LKQD, OpenX, Publishers … Read more

Anthem Medicare Patients Hit with Breach

Medicare patients on its insurance roster may be affected by identity theft, thanks to a potentially malicious employee at a third-party company that provides insurance coordination for the health care giant. That third party, LaunchPoint Ventures, said in a statement that it discovered the employee’s activities in April; the employee in question emailed a file … Read more

Amazon CloudWatch Events Gains Cross-Account Event Delivery

Amazon Web Services (AWS) recently added cross-account event delivery to Amazon CloudWatch Events to support use cases such as tracking of events across an entire organization and handling of events in separate accounts to implement advanced security schemes. Amazon CloudWatch Events is part of Amazon CloudWatch (previous coverage) and delivers a “near real-time stream of … Read more

Anthem Hit with Data Breach of 18,580 Medicare Members

Anthem recently learned that 18,580 of its Medicare members may have been victims of identity theft, after its third-party coordination services vendor LaunchPoint Ventures discovered an employee had emailed a file containing the sensitive information to his personal email account. The Anthem file contained Medicare ID numbers, which also includes social security numbers, Health Plan … Read more

BIOS Firmware Implementation Vulnerabilities Disclosed at Black Hat

Today’s topics include researchers revealing BIOS firmware implementation flaws at the Black Hat security conference; a report on how antivirus software’s use of the cloud is exposing customers to data exfiltration; Amazon’s second-quarter earnings falling far short of projections; and Cray and Seagate partnering to develop ClusterStor for HPC. At the Black Hat USA security … Read more