The Cybersecurity and Infrastructure Security Agency (CISA) has extended the deadline for comments on its proposed cyber incident reporting regulation for critical infrastructure entities to July 3, following industry requests for more time. This extension aims to facilitate further feedback on a significant regulatory proposal aiming to enhance cybersecurity measures within critical infrastructure sectors. The extension announcement was made in a Federal Register notice and was highlighted by House Homeland Security cyber subcommittee Chairman Andrew Garbarino (R-NY) during a May 1 hearing focused on the rulemaking process.

CISA grants 30-day extension for input on incident reporting rule Inside Cybersecurity

The Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA) have announced changes to the Cyber Safety Review Board (CSRB) membership, including both departures and new additions. Departing members include notable figures like Katie Moussouris, Chris Novak, Tony Sager, and Wendi Whitmore. Joining the board are cybersecurity experts Jamil Jaffer, David Luber, Katie Nickels, and Chris Krebs, with Luber taking over as the Federal CSRB representative from the retiring Rob Joyce, who will continue to serve as a private sector member. The CSRB, established by President Biden in 2022 to conduct fact-finding and issue recommendations following major cyber incidents, is committed to transparency and enhancing the nation’s cybersecurity resilience. The board's membership update signals a continued evolution in its role within the cybersecurity ecosystem.

DHS, CISA Announce Membership Changes to the Cyber Safety Review Board | Homeland Security Department of Homeland Security

The article highlights the increasing focus of ransomware attackers on compromising organizations' backups, illustrating a worrying trend that simply backing up data is not enough for protection. A report by Sophos reveals that 94% of surveyed organizations experienced attempts by cybercriminals to target their backups during ransomware attacks, leading to significantly higher ransom demands and payments when backups are compromised. The data emphasizes the critical importance of protecting backups through measures such as multi-factor authentication, suspicious activity monitoring, and regular recovery drills. With attackers successfully breaching backup defenses in various sectors, resulting in doubled ransom demands and significantly higher recovery costs, the article stresses the necessity for organizations to bolster their defenses around backup systems to mitigate the impacts of ransomware attacks.

Compromised backups send ransomware recovery costs soaring SC Magazine

UnitedHealth Group Inc.'s acquisition of Change Healthcare Inc. has been marred by a significant cybersecurity breach that occurred due to a lack of multi-factor authentication on one of Change's web portals, contradicting the cybersecurity measures the company publicly advocated. Despite UnitedHealth's company-wide requirement for such protections, this oversight allowed hackers from the BlackCat/ALPHV group to infiltrate Change Healthcare's systems in February, leading to the exfiltration of data and a subsequent ransomware attack that disrupted the payment processes to healthcare providers. UnitedHealth CEO Andrew Witty disclosed to the Senate Finance Committee the payment of $22 million in ransom to restore services, amidst criticism that basic cybersecurity practices could have prevented the breach. The incident has highlighted the challenges of enforcing cybersecurity discipline within large organizations and has drawn attention to the need for improved security standards across the health care industry.

Change Healthcare lacked safeguards even as it gave security advice Roll Call

The Cybersecurity and Infrastructure Security Agency (CISA) has extended the deadline for comments on its proposed cyber incident reporting regulation for critical infrastructure entities to July 3, following industry requests for more time. This extension aims to facilitate further feedback on a significant regulatory proposal aiming to enhance cybersecurity measures within critical infrastructure sectors. The extension announcement was made in a Federal Register notice and was highlighted by House Homeland Security cyber subcommittee Chairman Andrew Garbarino (R-NY) during a May 1 hearing focused on the rulemaking process.

CISA grants 30-day extension for input on incident reporting rule Inside Cybersecurity

The Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA) have announced changes to the Cyber Safety Review Board (CSRB) membership, including both departures and new additions. Departing members include notable figures like Katie Moussouris, Chris Novak, Tony Sager, and Wendi Whitmore. Joining the board are cybersecurity experts Jamil Jaffer, David Luber, Katie Nickels, and Chris Krebs, with Luber taking over as the Federal CSRB representative from the retiring Rob Joyce, who will continue to serve as a private sector member. The CSRB, established by President Biden in 2022 to conduct fact-finding and issue recommendations following major cyber incidents, is committed to transparency and enhancing the nation’s cybersecurity resilience. The board's membership update signals a continued evolution in its role within the cybersecurity ecosystem.

DHS, CISA Announce Membership Changes to the Cyber Safety Review Board | Homeland Security Department of Homeland Security

The article highlights the increasing focus of ransomware attackers on compromising organizations' backups, illustrating a worrying trend that simply backing up data is not enough for protection. A report by Sophos reveals that 94% of surveyed organizations experienced attempts by cybercriminals to target their backups during ransomware attacks, leading to significantly higher ransom demands and payments when backups are compromised. The data emphasizes the critical importance of protecting backups through measures such as multi-factor authentication, suspicious activity monitoring, and regular recovery drills. With attackers successfully breaching backup defenses in various sectors, resulting in doubled ransom demands and significantly higher recovery costs, the article stresses the necessity for organizations to bolster their defenses around backup systems to mitigate the impacts of ransomware attacks.

Compromised backups send ransomware recovery costs soaring SC Magazine

UnitedHealth Group Inc.'s acquisition of Change Healthcare Inc. has been marred by a significant cybersecurity breach that occurred due to a lack of multi-factor authentication on one of Change's web portals, contradicting the cybersecurity measures the company publicly advocated. Despite UnitedHealth's company-wide requirement for such protections, this oversight allowed hackers from the BlackCat/ALPHV group to infiltrate Change Healthcare's systems in February, leading to the exfiltration of data and a subsequent ransomware attack that disrupted the payment processes to healthcare providers. UnitedHealth CEO Andrew Witty disclosed to the Senate Finance Committee the payment of $22 million in ransom to restore services, amidst criticism that basic cybersecurity practices could have prevented the breach. The incident has highlighted the challenges of enforcing cybersecurity discipline within large organizations and has drawn attention to the need for improved security standards across the health care industry.

Change Healthcare lacked safeguards even as it gave security advice Roll Call