Kaseya VSA Ransomware attack

We at ITNS Consulting would like to commend Kaseya for their amazing transparency during this difficult time. As many of you may know Kaseya suffered a ransomware attack on an epic scale. Their quick response to this attack spared hundreds of thousands of businesses worldwide from suffering a dismal fate. We were notified within an hour of the onset of the attack and Kaseya has remained extremely transparent and communicative throughout the entire process. We would like to emphasize Kaseya put their customers first by reaching out to industry experts and their communities for assistance in addressing this breach. Ransomware has become a global issue which requires a global response. In the world we live in “it’s not whether a breach will happen, but when”, and how your business will recover. ITNS Consulting is a Kaseya VSA partner, and we are one of the companies protected by Kaseya’s actions. Their quick response to the ransomware attack on Kaseya VSA stopped this attack from affecting any of our clients.

21 Questions to Determine if Your MSP is Ready for Prime Time or is Setting the Stage for Cybersecurity Problems

As if 2020 wasn’t challenging enough for businesses, reports warn that Managed Service Providers (MSPs), often contracted to provide outsourced IT and cybersecurity services, can represent a significant security risk to the companies they protect. The U.S. Government and cybersecurity firms are sounding the alarm that MSPs represent a significant threat vector for enabling breaches or spreading ransomware to their customers.

New Year, New Risks for IT & Data Security

The COVID-19 pandemic has changed everything about the world as we know it. Just as we started embracing new practices like sanitizing, social distancing and remote working, the pandemic has also forced us to embrace systemic changes in the ways we deal with cyber threats. In fact, the FBI has reported an increase in cyber attacks to 4,000 per day …

Attention, Attention… This is not a Drill!

Recently a major Health Insurance Provider sent out a “Security Due Diligence Questionnaire” to all of its partners and vendors. If you work in the health insurance industry and received this notification, this request may have come to you as quite a shock.

Paging Doctor Google… Doctor Google, Please Report “Everywhere”.

Initially reported by the Wall Street Journal and corroborated by the New York Times, Google and health care provider Ascension (the second-largest managed health system in the U.S.) initiated “Project Nightingale” last year in the shadows of ominous secrecy.

What’s worse than getting hacked?

What’s worse than getting hacked? How about the “failure to detect intrusions” in the first place? InfoTrax Systems is just one of the latest examples of such an impressively bad security oversight. To be clear about the extent of the “oversight”, this company was breached more than 20 times from May 2014 until March 2016.

Yahoo Data Breach Settlement

3 billion Yahoo users maybe eligible for a $358 payout as a result from multiple breaches from 2012 to 2016. California courts are in the process of reviewing a $117.5 million proposed settlement.

Update – Capital One Data Breach

In a new indictment filed on August 28, 2019, Paige Thompson is accused of hacking 30 more companies and cryptojacking. The indictment alleges one count of wire fraud and one count of computer fraud and abuse for illicitly accessing data on more than 30 other entities, including Capital One. Each charge carries a penalty of up to 25 years in prison.

Equifax Breach Settlement

According to the FCC’s website, a settlement has been reached in the Equifax data breach reported in September 2017 which affected 147 million people. The initial reports stated individuals could file for a $125 cash payment or credit monitoring services, but in an article