Grass Valley CA Pwned… Data Stolen

itnerd
January 11, 2022

www.itnerd.blog »

An investigation into a data breach attack of Grass Valley, California, has discovered city employee and citizen information was exposed. The breach, which occurred between April 13th and July 1st, 2021, resulted in an attacker transferring files outside of the network, including financial and personal info of “individuals associated with Grass Valley”.

I have some commentary from Saryu Nayyar, CEO and Founder of Gurucul on this attack:

“The ability to understand users, access and entitlements are essential in determining anomalous behaviors for determining whether access to and transmissions of sensitive data is actually the work of a malicious threat actor. Moving from traditional SIEMs and XDR tools to a next generation SIEM with XDR capabilities is critical as the initial activity, before data theft occurs, can be prioritized as a high-risk event based on a baseline of what is normal as well as monitoring for deviations that are indicative of an attack campaign, especially with adaptable Machine Learning (ML) models.”

 

It’s pretty clear that prevention and detection are the best ways to avoid being the next Grass Valley. Thus hopefully organizations of all sizes take note of this incident and plan their defences accordingly.

UPDATE: Elizabeth Wharton who is the VP Operations of SCYTHE

Municipalities struggle to identify and respond to data breaches, as I’ve experienced first-hand in the past. They suffer significantly from the cybersecurity skills gap, often with limited budgets. The cybersecurity industry needs to give them tools that help their teams gain experience with real-world threats so that they can continuously validate their processes and technologies, but it needs to provide them at a price-point that makes sense. 

Grass Valley CA Pwned
External Link: Grass Valley CA Pwned… Data Stolen

Share this page:

Related Posts

siliconangle
Credit Card Details Stolen from Dickey’s BBQ Customers Published on Dark Web Forum

Duncan Riley | Siliconangle.com Some 3 million credit card numbers belonging to customers of Dickey’s…

18 Oct 2020
AI Impact on Society/artificial intelligence
16 Tech Experts Predict The ‘Next Big Thing’ In Encryption And Cybersecurity

Expert Panel | forbes.com With the growth in remote work and e-commerce, encryption and cybersecurity—always…

17 Dec 2020
securityboulevard.com
Assessing the Risk of the Former Employee

by Sue Poremba Employees leaving a company can pose a real risk to the security…

29 Jul 2019
cpomagazine
Investigation Uncovered 1.1 Million Compromised Accounts Used for Credential Stuffing Attacks Against 17 Online Companies

Scott Ikeda | CPOmagazine.com » The Office of the Attorney General (OAG) of New York…

12 Jan 2022
databreachtoday.com
Apple Safari Browser Bug Can Leak Browsing Activity

Prajeet Nair | Databreachtoday.co.uk Bug Could Expose Google User ID to Other Sites Researchers have…

19 Jan 2022
cpomagazine
New Study Reveals That North Korean Hackers Are Focusing Heavily on Magecart Attacks

Scott Ikeda | cpomagazine.com » North Korean hackers have leaned heavily on cybercrime to bring…

23 Jul 2020
cyberwire
Quick Development Lessons to be Learned. The Pandemic and the Industry.

thecyberwire.com » easyJet confirmed that it has been a victim of data breach, where the…

22 May 2020
Business Data Breach
100 Million User T-Mobile Breach? – Multiple Comments

Expert(s): ISBuzz Staff | Informationsecuritybuzz.com » BACKGROUND: T-Mobile confirmed Sunday that it is looking into…

18 Aug 2021
Business Data Breach
Finnish Psych Patients Blackmailed Following Breach – CEO Perspective

Security Experts | Informationsecuritybuzz.com A data breach at Vastaamo, a Finnish nationwide psychotherapy practice, has resulted…

29 Oct 2020
databreachtoday.com
Microsoft Mitigates ‘Largest Known DDoS Attack’

Mihir Bagwe | www.databreachtoday.asia » At Peak, the Throughput of the Attack Was Recorded as…

31 Jan 2022
technewsworld
Data Breaches Affected Nearly 6 Billion Accounts in 2021

John P. Mello Jr | Technewsworld.com » Data breaches in 2021 set a new record…

19 Jan 2022
Business Data Breach
Study – Most Online Shoppers Remain With Retailer After A Breach, Experts Weigh In

Expert(s): ISBuzz Staff | Informationsecuritybuzz.com » BACKGROUND: In “The State of Secure Online Holiday Shopping,”…

22 Nov 2021
SC Media Blog
Government Warns OT Assets Still in Danger of Attack Over Internet

Bradley Barth | scmagazine.com » Security professionals responsible for protecting critical infrastructure strive to isolate…

28 Jul 2020
AI Impact on Society/artificial intelligence
How To Optimize Security Operations With Machine Learning And Artificial Intelligence

Saryu Nayyar | Forbes.com » The world has entered a new era of cyberthreats, including…

05 Apr 2022
solutionsreview.com
Making Sense of the Blackbaud Ransomware Attack

Ben Canner | solutionsreview.com Currently, the cybersecurity discourse is consumed with talk about the revelations…

05 Oct 2020