Cybersecurity is a constantly evolving field, and keeping up with news and trends is essential for cybersecurity professionals. This monthly round-up brings you some of the most significant cybersecurity news from the past month.
LoanDepot suffers massive data breach
A cyber attack at loan lender LoanDepot exposed personal information for 16.9 million customers. This included Social Security numbers, account information and more. It’s one of many high-profile breaches in 2024 that serve as a reminder that even mature cybersecurity programs can be compromised.
Kawasaki Motors Europe hit by ransomware
A massive cyber attack at Kawasaki Motors Europe forced the company to take servers offline and led to significant operational disruptions and loss of critical business documents. The breach impacted dealership details, third-party suppliers and other internal communications. It also left a mountain of sensitive data about industrial control and automation systems and environmental and energy regulations compliance in the hands of attackers.
US and UK water companies targetted by ransomware
The US water industry is facing a growing threat from cyberattacks. A recent study found that more than half of the top 100 US water utilities have had their networks affected by malicious code, and most are likely paying a ransom to restore functionality.
Malicious Model Context Protocol (MCP) server spotted in wild
Rogue MCP servers are being used to spread ransomware, a new report warns. Researchers at Koi Security discovered a malicious MCP server in an npm package called postmark-mcp, which copied the official Postmark Labs library of the same name. This raises concerns about software supply chain risks.