American Water Reconnects Its Network Taps After Cyber Incident
The company is beginning to bring its systems back online, though the investigation wages on.
Incident coverage examines breaches, outages, and response failures to explain how security events affect systems, data, and organizations.
Search across headline titles and summaries.
Background for this topic.
An incident is a suspected or confirmed event that threatens the confidentiality, integrity, or availability of information or systems, or violates a security policy. Examples include unauthorized access, malware execution, exposed credentials, data loss, and disruptive attacks. Not every alert is an incident: triage determines whether an event is credible, its scope, and the assets or data involved.
Incident handling requires timely detection, analysis, containment, eradication, and recovery. Practitioners must preserve relevant evidence, identify affected accounts and systems, assess whether data was accessed or altered, and prevent recurrence. Clear escalation and documentation support privacy or regulatory notifications when applicable. Findings should feed security improvements such as closing exploited vulnerabilities, strengthening access controls, and updating detection and response procedures.
The company is beginning to bring its systems back online, though the investigation wages on.
Includes 72-Hour Incident Reporting Mandate That Went into Effect on Oct. 2General hospitals in New York State must now report cyber incidents to state regulators within 72 hours under new cybersecurity requirements that went into effect on Oct. 2. The hospitals have until next fall to comply with a long list of other security mandates, including appointing a CISO.
Compromised Patient Info Dates Back to 2011 at Muskogee City County 911 ServiceAn Oklahoma county provider of medical, fire, police and other 911 emergency services is notifying 180,000 individuals that their health information may have been compromised in a recent ransomware attack. The incident affects patients receiving emergency medical care as far back as 2011.
UK Blood Supply Shortage Still Lingers 4 Months After Attack on Pathology LabThe United Kingdom's National Health Service said nearly all services disrupted by a June ransomware attack on pathology laboratory services provider Synnovis are finally back online. The incident triggered a national blood supply shortage and forced cancellation of thousands of medical procedures.
Cyber Incident Affecting American Water Utility Company Leads to Portal ShutdownThe largest regulated water and wastewater company in the United States told customers it was investigating a cybersecurity incident that led the utility to shut down its customer service portal and immediately notify law enforcement of an apparent breach.
MoneyGram has issued a data breach notification to customers following a security incident
Ukraine has claimed responsibility for a cyber attack that targeted Russia state media company VGTRK and disrupted its operations, according to reports from Bloomberg and Reuters
Water is still safe to drink, it confirms American Water, which supplies over 14 million people in the US and numerous military bases, has stopped issuing bills and has taken its MyWater app offline while it investigates a hacking incident.…
Risk managers association FERMA has warned that new EU cyber legislation means there is an inconsistent approach to incident reporting requirements