VT San Antonio just recently discovered that at least 1.5 terabytes of data had been stolen from them in a breach that was discovered on June 5th. The cybersecurity firm CYFIRMA said the breach may have started as early as March. The campaign involved the use of Maze ransomware and the actors were able to access information including contract details with foreign countries, NASA, and American Airlines, as well as project implementation plans, equipment/parts information, schedules and timelines, and some financial records. From initial investigations, it was suspected that ST engineering did not pay the ransom, and therefore some of the information was made available on a public website operated by the group behind Maze. They did, however, take action by disconnecting certain services from the network, employing a cyber forensics team, and notifying law enforcement contacts. The company also stated they have begun notifying parties that may have been involved.
12 Essentials for a Successful SOC Partnership
As cyber threats continue to impact businesses of all sizes, the need for round-the-clock security