15 Dec Security Breach – 15 Dec 2023
Cybersecurity is a fast-paced and complex world that brings a variety of training challenges to businesses. Many of those challenges have something in common: they’re caused by the people who work for the business. Even if they don’t intend to harm the organisation, employees can do things to damage or subvert security carelessly like mishandling data or falling for a phishing trick.
Security awareness training that includes phishing simulations is a powerful and cost-effective strategy for mitigating short-term and long-term digital risks. Employees can’t avoid data handling mistakes or recognise phishing scams that they don’t know about – and without training, they will unwittingly do things that negatively impact security. Security awareness training is an investment, but that investment is richly rewarded.
Recent Breaches
Japan – Nissan – Carmaker
Exploit: Hacking
Risk to Business: Moderate: Nissan is warning its customers in Australia and New Zealand that their personal information may have been exposed as the result of a cyberattack on the carmaker. Nissan has not offered specifics about the likely stolen data, simply posting a warning on their regional website warning customers in Australia and New Zealand to be on guard for possible scams and phishing attempts. Nissan also said that it has notified the Australian Cyber Security Centre and the New Zealand National Cyber Security Centre of the incident.
United States – Austal USA – Shipbuilder
Exploit: Hacking
Risk to Business: Severe: A major shipbuilder that holds contracts with the U.S. Department of Defence (DoD) and the Department of Homeland Security (DHS) has fallen victim to a ransomware attack. The cybercrime group Hunters International is claiming the hit on Austal USA, a subsidiary of the Australian shipbuilder Austal. The company reported that no personal or confidential data was compromised as a result of the incident. Hunters International has exposed some of the company’s proprietary data on its data leak site and claims to have more of that data including finance information, recruiting details, engineering data, certifications and compliance files. No ransom demand has been made public.
Talk to a TCT team member today about implementing cyber security plan for your business.
Robert Brown
15/12/2023
Related Articles:
Tips for New Year Digital Decluttering
32.4% of employees will fall for phishing scams