Cyber Security Today, March 2, 2022 — Toyota and Aon deal with cyber attacks, updates on Axis and Nvidia attacks, and more

Share post:

Toyota and Aon deal with cyber attacks, updates on Axis and Nvidia attacks, and more.

Welcome to Cyber Security Today. It’s Wednesday March 2nd. I’m Howard Solomon, contributing reporter on cybersecurity for ITWorldCanada.com.

Cyb er Security Today on Amazon Alexa Cyber Security Today on Google Podcasts Subscribe to Cyber Security Today on Apple Podcasts

Toyota continues to deal with the impact of one of the biggest supply chain attacks in the world. After one of its parts manufacturers was reportedly hit by a cyberattack Toyota had to stop operations on Tuesday at 14 plants in Japan. Reuters quoted a spokesperson for the supplier as saying it appeared to have been the victim of a cyber attack. An analyst at the SANS Institute said the incident is a lesson to firms. When reviewing incident response plans many organizations tend to focus on their own company assets being compromised. However, in today’s interconnected world it’s good practice to review the possible impacts of a successful cyber hit on partners.

Another multinational dealing with a cyber attack is insurance broker Aon. In a brief filing with the U.S. Securities and Exchange Commission it said that on February 25th it discovered a cyber incident impacting what it called “a limited number of systems.” The incident has not had a significant impact on Aon’s operations, the company said.

Here’s an update on two cyber attacks I reported in Monday’s podcast: Video surveillance systems maker Axis Communications says last month’s hack was caused by someone who was able to evade the company’s login protections against unapproved users, including multifactor authentication, to get onto the Axis network. The attacker used several combinations of social engineering to get around defences. Then they elevated their access privileges to get into the employee directory. No customer information was affected.

However, graphics card manufacturer Nvidia told Bloomberg News that a last week a hacker stole employee passwords and some proprietary product information. That data is being leaked. The Lapsus$ gang has taken credit for the attack and threatened to release the stolen data unless Nvidia removes limits on some of its graphics cards that slow down cryptocurrency mining.

How bad for business can a data breach be for a company? Consider this: Seventy-eight per cent of Canadian respondents told a survey that news of a security breach would be a consideration in their future spending with that company. Fifty-five per cent said they would stop buying from the company for at least a few months, while 23 per cent said they’d turn their backs on the firm permanently. The survey of 1,000 Canadians was done for a payments provider called PCI Pal.

Finally, whenever something is in the news scammers are quick to pounce. The latest example is the war in Ukraine. According to the Bleeping Computer news service, a number of crooks have created online fund-raising campaigns trying to get them to donate cryptocurrency to addresses that are not affiliated with the Ukrainian government. Don’t be fooled by emails, websites or texts with a Ukrainian flag or logo. The official Twitter account of Ukraine has the real cryptocurrency addresses where funds can be sent. Or donate to a recognized charity.

That’s it for now. Remember links to details about podcast stories are in the text version at ITWorldCanada.com.

You can follow Cyber Security Today on Apple Podcasts, Google Podcasts or add us to your Flash Briefing on your smart speaker

The post Cyber Security Today, March 2, 2022 — Toyota and Aon deal with cyber attacks, updates on Axis and Nvidia attacks, and more first appeared on IT World Canada.
Howard Solomon
Howard Solomonhttps://www.itworldcanada.com
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times.

SUBSCRIBE NOW

Related articles

Costs from Global CrowdStrike Outage Could Exceed $1 Billion

The global tech outage caused by a faulty CrowdStrike update on Friday could result in damages exceeding $1...

CrowdStrike exec’s ironic prediction: Hashtag Trending for Tuesday, July 23, 2024

CrowdStrike predicts their own issues, VMWare continues to confuse, the work week in Bangalore will amaze and Microsoft...

CrowdStrike update: Warnings from national cyber agencies, repair options from Microsoft

National cybersecurity agencies in the U.S., Canada, the U.K. and Australia issued security warnings about the faulty CrowdStrike...

Worst cyber event in history: CrowdStrike – Cyber Security Today and Hashtag Trending Special Edition for Monday, July 22, 2024

This is a special edition of Cyber Security Today and Hashtag Trending for Monday, July 22, 2024 I’m Jim...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways