Jess Richter, CCSP

The state of Rhode Island publicly released the results of a third-party analysis of the 2024 RIBridges cyberattack and data breach at a press conference with Rhode Island Governor Dan McKee and Chief Digital Officer Brian Tardiff. Cybersecurity company CrowdStrike conducted the analysis, which revealed the five-month timeline of the breach and a more accurate number of impacted individuals -- approximately 644,401 people. RIBridges is a system run by Deloitte that the state of Rhode Island uses to administer important social services benefits like health insurance, food stamps and the Child Care Assistance Program. As previously reported, Deloitte informed the state of a potential security threat to RIBridges on Dec. 5, 2024, stating that there was a high probability that a cyberthreat actor had obtained files containing sensitive information. The Brain Cipher cyberthreat group later took responsibility for the hack. The state took RIBridges temporarily offline and later sent notification letters to nearly 650,000 individuals. The newly released third-party analysis provided clarity on how the cyberthreat actor gained access to the RIBridges environment and how it performed data access, staging and exfiltration activities on 28 RIBridges systems. Reviewing post-incident analyses of healthcare data breaches can help defenders bolster security efforts. https://lnkd.in/gBJR5kBh

7

Jen Easterly, former director of CISA and now a strategic advisory board member for Huntress, is focusing on boosting cyber resilience for small and medium enterprises. These organizations often face sophisticated attacks but lack the resources to defend themselves. During her CISA tenure, Easterly championed initiatives such as the Joint Cyber Defense Collaborative and persistent threat hunting. These measures strengthened federal capabilities and deepened operational collaboration with the private sector, enabling rapid sharing of threat intelligence and faster mitigation of risks. In light of the shift from espionage to disruptive attacks on critical infrastructure, Easterly urges all organizations, regardless of size, to prioritize resilience - preparing for, responding to, and recovering from incidents - and to demand secure-by-design technology from vendors. "Every business, large and small, should consider themselves vulnerable. It's all about resilience. How do you understand the threat, prepare for it, be able to respond to it and then recover so that you can mitigate and drive down risk," she said. https://lnkd.in/gejpe3CB

4

Detection rules aren’t set-and-forget. Map them to MITRE ATT&CK tactics to track coverage & gaps. Start with crafting, then testing, deploying, and tuning—repeat. It’s a cycle that turns alerts into actionable intel. Stay sharp, stay ahead. 🔍 #CyberDefense #MITREATTACK

1

When security tools are overly inflexible, they can hinder innovation and expose your team to risks. The solution is adaptive security that meets your needs. 🔐 The eBook titled "The Decision-maker's Guide to Comprehensive Security" explores how Microsoft provides protection that balances flexibility and effectiveness. With advancements in AI and diminished breach risks, this guide aids leaders in crafting a strategy that safeguards the present and plans for the future. Get your free copy to learn how customized security can drive your success.

1

1 Comment