Welcome to the second edition of the Infosec Monitor. A weekly newsletter covering what's happened, what's happening, and what's coming in cybersecurity.

News

CISA and FEMA release cyber incident guidance

In collaboration with the Cybersecurity and Infrastructure Security Agency (CISO), the Federal Emergency Management Agency (FEMA) released a 53-page planning guide for emergency managers. The guide focuses on providing emergency management personnel (many of whom are non-technical) a guide to prepare for cyber incidents. Homeland Security Today

Snap Finance settles for $1.8 million

Snap Finance, a same-day loan provider, has agreed to pay a settlement of $1.8 million for their 2022 data breach. Information for 60,000 customers was exposed in a December 2022 breach. Snap is expressing no wrongdoing. But given the recent SolarWinds case by the SEC, you have to wonder if something else is coming. Top Class Actions

KPMG Report says CCO budget increases led by cybersecurity enhancements

Further highlighting that cybersecurity is not just the CISO's responsibility, a report by KPMG shows that Chief Ethics & Compliance Officers (CCOs) report that cybersecurity is the number one reason for budget increases. KPMG

NIST 800-53 version 5.1.1 Released

Version 5.1.1 of NIST 800-53 was released. The "patch" introduces one new control, IA-13 Identity Providers and Authorization Servers, and three new control enhancements. NIST

Cyber Security Incidents

OpenAI blames outage on DDoS attack says after DevDay event

Users of OpenAI may have noticed intermittent outages to the popular AI service. Initially blamed on demand, OpenAI now says a DDoS attack caused these outages. TechCrunch

SumoLogic incident caused by compromised AWS credential

On November 7th, Sumo Logic disclosed a cyber incident that led to an outage impacting many of its customers. The cause appears to have been a compromised account for their AWS infrastructure. Sumo Logic

Boeing hit by Lockbit ransomware

Hit last month, Boeing data was leaked today by the Lockbit hacking group. Boeing confirmed that parts of their "parts and distribution business had experienced a cybersecurity incident." BleepingComputer Reuters

ICBC hit by Lockbit ransomware

The Industrial & Commercial Bank of China was also hit this week by the Russian group Lockbit. Notable in this incident is the disruption of some trades in the US Treasury market, and generally, there's an unwritten peace treaty between Russia and Chinese hacking. Bloomberg

Marina Bay Sands Data Breach

665,000 customer records were breached. Following a trend hitting luxury resorts (MGM, Caesars). The attackers gained access in October, compromising the resort's loyalty program. BleepingComputer

Singapore public healthcare faces DDoS attacks

Healthcare institutions are facing continuing DDoS attacks in Singapore starting on November 1st. ZDNet

AboutCybersecurity is at a crossroads, changing more rapidly than we believed was possible just a few years ago. Stay informed on what's going on, what's happened, and what's coming next.I'm Bryan Smith, the author of the Infosec Monitor. I've spent over a decade pioneering changes in how cybersecurity is managed. From helping create the first cyber risk quantification (CRQ) software to advising how to approach cybersecurity pragmatically and proactively.

Data & Research

Multi-source analysis of top MITRE ATT&CK techniques

85% of techniques are never reported as used by any source. A meta-analysis report by the Cyentia Institute delves into the top MITRE ATT&CK techniques used. Unsurprisingly, "Exploit Public-Facing Application," T1190, emerged as the leading technique used. Cynthia

Flaws in open-source vulnerability disclosures

Interesting research from Aqua highlights how current disclosure practices lead to announcing a vulnerability before the open-source community can patch it. Aqua

Cybersecurity M&A

SentinelOne is acquiring consulting firm Krebs Stamos Group for an undisclosed sum. Source

Rockwell Automation acquires Verve Industrial Protection for an undisclosed sum. Source