Latest news with #Incident
Yahoo
28-05-2025
- Business
- Yahoo
Sensitive information in Baltimore Archdiocese data breach not made public, attorneys believe
BALTIMORE — A data breach that exposed confidential information about survivors of sexual abuse within the Archdiocese of Baltimore has not resulted in the data appearing online, according to attorneys for the consulting firm that was hacked. The breach was first discovered in March at Berkeley Research Group, which serves as a financial adviser for more than 1,000 survivors with claims in the archdiocese's ongoing bankruptcy proceedings. The California consultant, which is also involved in several other Catholic Church bankruptcy cases, informed federal bankruptcy court in late April that the extent of the leaked data remained unclear. However, the firm reported it had reached a settlement with the hackers — referred to in court filings as 'threat actors' — who say they have deleted the stolen data. Attorneys from Proskauer Rose LLP, representing Berkeley, confirmed that the firm received a 'destruction log' from the hackers, indicating the data had been erased. Despite this, Berkeley continues to assess whether any data might have been exposed or shared. The U.S. Trustees Program has questioned whether the destruction actually happened, suggesting that Berkeley was 'relying on the assurances of extortionists.' 'BRG has found no indication that any data that was potentially exfiltrated in the Incident has been distributed to anyone, and BRG has no reason to believe that the threat actor retained the data,' attorney Timothy Karcher wrote in a Friday letter to Nan Roberts Eitel, associate general counsel for Chapter 11 Practice for the U.S. Trustees Program. 'BRG will continue to monitor the situation, including monitoring the dark web for the foreseeable future, and the FBI's investigation remains ongoing.' In addition, Berkeley is currently working to 'identify individuals whose personally identifiable information may have been exfiltrated.' The firm has not informed alleged sexual abuse victims that their names and other data might have been compromised, citing the 'risk of providing potentially incomplete or inaccurate information.' Hackers infiltrated Berkeley's systems by impersonating internet technology staff during a Microsoft Teams call with an employee, according to a court filing. Once inside, they deployed ransomware that encrypted parts of the firm's network and searched for terms like 'sensitive files' and 'backup files,' a report by an outside law firm stated. Earlier this month, attorneys with the U.S. Department of Justice's bankruptcy watchdog criticized Berkeley, saying its initial disclosure 'raised more questions than it answered.' They questioned whether the company was responding to the breach with appropriate seriousness, even as the firm said it had contacted the FBI and was still assessing the damage. The archdiocese filed for bankruptcy in 2023, after Maryland passed the Child Victims Act eliminating the statute of limitations for childhood sexual abuse lawsuits. While the bankruptcy paused legal action, a judge ruled May 7 to temporarily allow lawsuits to proceed against hundreds of churches, schools and charities covered under the archdiocese's insurance. In the letter to the court, Berkeley argued it should not face penalties over the breach or its response. 'First, BRG respectfully rejects any suggestion of liability. BRG was the victim of the ransomware attack, not the perpetrator,' Karcher wrote. 'To reiterate — BRG was the victim of a crime. That crime is being investigated by the Department of Justice.' _____ (Baltimore Sun reporter Dan Belson contributed to this article.) _____
Yahoo
13-05-2025
- Business
- Yahoo
BitLyft AIR Launches Seamless Graylog Integration to Supercharge Cloud Identity Security with True No-Code Response
Allows Security Team to Quickly Review and Inspect Event Definitions and Manage Automation Settings ST. JOHN'S, Mich., May 13, 2025 (GLOBE NEWSWIRE) -- BitLyft, a leading managed detection and response provider (MDR) offering a holistic defense approach, announces the launch of a powerful new integration between BitLyft AIR® and Graylog, delivering unprecedented visibility and automated response capabilities within an existing Security Information and Event Management (SIEM) environment. Graylog is a powerful SIEM solution offering a robust log analytics platform that simplifies the collection, search, analysis, and alerting of all types of machine-generated data. The new Graylog Integration in BitLyft AIR introduces native Graylog Dashboards inside the platform, giving security teams instant access to real-time alert data, enabled and disabled event definitions, and the ability to take immediate action without leaving the BitLyft AIR platform. 'BitLyft AIR is built with a focused belief that automation should be accessible,' says Jason Miller, CEO and Founder of BitLyft. 'Our Graylog integration is the next step in helping security teams eliminate alert fatigue and respond faster where it matters most: in their identity and collaboration platforms.' Map, Monitor, Mitigate — All Without Code Security practitioners can now map Graylog Event Definitions to BitLyft AIR's pre-built Automated Incident Response workflows. This enables instant containment and remediation of user compromises, business email compromises, and more the moment alerts trigger. Unlike traditional platforms that require a working knowledge of REST APIs or scripting, BitLyft AIR delivers a true no-code experience, empowering analysts of all skill levels to deploy effective responses across their environment in seconds. Targeted Remediation for Where Attacks Begin with Users BitLyft AIR offers a deep library of pre-built remediation actions and playbooks tailored specifically for the cloud and identity platforms most often targeted in modern attacks, including: Microsoft 365 Google Workspace Okta Duo Security OneLogin By focusing exclusively on the services that govern user access, email, and identity — the frontline of enterprise security — BitLyft AIR delivers maximum impact with minimal configuration. No Developers Needed. No APIs to Learn. Just Secure Outcomes. Where other incident response tools bog teams down with complex connectors and API calls, BitLyft AIR delivers an enterprise-ready experience that puts response automation directly into the hands of the SOC without any scripting or engineering overhead. With the new Graylog Integration, BitLyft AIR becomes an even more powerful force multiplier — closing the loop between detection and resolution in one streamlined platform. About BitLyft BitLyft enables utilities and corporations to meet regulatory and audit mandates for SOC2 Compliance. The venture's managed detection and response (MDR) services with an Automated Incident Response (AIR) platform can be implemented cost-effectively and quickly. Prioritizing tech-powered yet high-touch cybersecurity solutions creates a holistic defense, giving clients unwavering confidence; BitLyft staff pledge to prioritize and protect every client. For more information, visit For More Information, Contact:Becky BoydMediaFirstCell: (404) 421-8497Becky@ in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
13-05-2025
- Business
- Yahoo
BitLyft AIR Launches Seamless Graylog Integration to Supercharge Cloud Identity Security with True No-Code Response
Allows Security Team to Quickly Review and Inspect Event Definitions and Manage Automation Settings ST. JOHN'S, Mich., May 13, 2025 (GLOBE NEWSWIRE) -- BitLyft, a leading managed detection and response provider (MDR) offering a holistic defense approach, announces the launch of a powerful new integration between BitLyft AIR® and Graylog, delivering unprecedented visibility and automated response capabilities within an existing Security Information and Event Management (SIEM) environment. Graylog is a powerful SIEM solution offering a robust log analytics platform that simplifies the collection, search, analysis, and alerting of all types of machine-generated data. The new Graylog Integration in BitLyft AIR introduces native Graylog Dashboards inside the platform, giving security teams instant access to real-time alert data, enabled and disabled event definitions, and the ability to take immediate action without leaving the BitLyft AIR platform. 'BitLyft AIR is built with a focused belief that automation should be accessible,' says Jason Miller, CEO and Founder of BitLyft. 'Our Graylog integration is the next step in helping security teams eliminate alert fatigue and respond faster where it matters most: in their identity and collaboration platforms.' Map, Monitor, Mitigate — All Without Code Security practitioners can now map Graylog Event Definitions to BitLyft AIR's pre-built Automated Incident Response workflows. This enables instant containment and remediation of user compromises, business email compromises, and more the moment alerts trigger. Unlike traditional platforms that require a working knowledge of REST APIs or scripting, BitLyft AIR delivers a true no-code experience, empowering analysts of all skill levels to deploy effective responses across their environment in seconds. Targeted Remediation for Where Attacks Begin with Users BitLyft AIR offers a deep library of pre-built remediation actions and playbooks tailored specifically for the cloud and identity platforms most often targeted in modern attacks, including: Microsoft 365 Google Workspace Okta Duo Security OneLogin By focusing exclusively on the services that govern user access, email, and identity — the frontline of enterprise security — BitLyft AIR delivers maximum impact with minimal configuration. No Developers Needed. No APIs to Learn. Just Secure Outcomes. Where other incident response tools bog teams down with complex connectors and API calls, BitLyft AIR delivers an enterprise-ready experience that puts response automation directly into the hands of the SOC without any scripting or engineering overhead. With the new Graylog Integration, BitLyft AIR becomes an even more powerful force multiplier — closing the loop between detection and resolution in one streamlined platform. About BitLyft BitLyft enables utilities and corporations to meet regulatory and audit mandates for SOC2 Compliance. The venture's managed detection and response (MDR) services with an Automated Incident Response (AIR) platform can be implemented cost-effectively and quickly. Prioritizing tech-powered yet high-touch cybersecurity solutions creates a holistic defense, giving clients unwavering confidence; BitLyft staff pledge to prioritize and protect every client. For more information, visit For More Information, Contact:Becky BoydMediaFirstCell: (404) 421-8497Becky@ in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
18-04-2025
- Yahoo
State must review NYPD shooting of man in Queens to ID mental health service gaps: Public Advocate
Public Advocate Jumaane Williams slammed city and state officials for 'chasing ambulances' instead of working towards more lasting mental health solutions, and in letters to authorities requested they employ an unused review process to examine the fatal shooting by cops of a 61-year-old mentally ill Queens man. Williams, in letters to both the city and state and obtained by the Daily News, asked the state to convene a 'Critical Incident Review Panel' to examine the fatal encounter with the man in a mental health crisis and find out where the system failed. 'No one is trying to figure out where the gap is in the service,' Williams told The News in an interview. 'These panels could review that, identify where the gap in service is for this individual and make sure we're closing that gap.' Both the mayor and governor have pushed for expanding the ability to involuntarily bring people who appear to be unable to meet their basic needs to hospitals. As state budget negotiations stretch late, the governor's insistence on this point has become a major sticking point. A number of violent incidents involving those with serious mental illness have added fuel to the debate over how to tackle the city's mental health problem. Williams said in the letters, sent Thursday evening, that the police shooting of the mentally ill Queens man highlights the need for more holistic solutions, and said that this formal review process should be done to see if any service gaps contributed to 'this tragic loss of life.' Cops responded early Monday morning to numerous 911 calls describing a 61-year-old man armed with a large knife and acting erratically on the streets of Astoria. Officers fired their tasers at the man and yelled at him to drop his weapon as he moved towards them, but they missed, cop said. They then pulled out firearms and shot, killing him. The man had a history of mental illness, and cops had twice before responded to incidents in which he was in distress, police said. 'Unfortunately, the mayor and governor are the ones who are doing the ambulance chasing. We're trying to push them to do the work, not the lazy leadership,' Williams said. Dr. Ann Marie Sullivan, the commissioner of the state Office of Mental Health, testified at a February hearing that while the formal process hadn't been done, 'every time there's an incident, there's a tremendous amount of review involved.' Avi Small, a spokesperson for the governor, referred to the office, and a spokesperson for the office didn't immediately issue a response. The panels, which would be made up of state and local city officials, plus representatives from other agencies, can be brought together either by the state's mental health office or at the request of a local municipality.
Yahoo
02-04-2025
- Politics
- Yahoo
FAA increasing air traffic control staff, supervisors at Ronald Reagan Washington National Airport
The Federal Aviation Administration (FAA) is increasing support and oversight for the air traffic controller team at Ronald Reagan Washington National Airport (DCA) following a fatal midair collision over the Potomac River that claimed the lives of 67 people. In a statement on Wednesday, the FAA announced it will increase operational supervisor staffing from six to eight people, and review certified professional controller staffing numbers at DCA. The change comes after the National Transportation Safety Board (NTSB) issued safety recommendations for DCA following the deadly Jan. 29 collision involving a commercial plane and an Army Black Hawk helicopter. Faa Employee Charged With Assault After Altercation In Air Traffic Control Tower At Reagan National Airport In addition, FAA officials are also evaluating current arrival rates at DCA, which has the busiest runway in America, according to the Metropolitan Washington Airports Authority (MWAA). The FAA will review DCA's arrival rate of aircraft per hour, which is "disproportionately concentrated within the last 30 minutes of each hour," according to the agency. Read On The Fox News App Spacing between each flight is required to keep operations safe, according to the MWAA. Faa 'Permanently Restricting' Washington Helicopter Traffic After Fatal Midair Collision Near Dc Airport In March, the FAA announced it would permanently restrict "non-essential" helicopter operations around DCA, and eliminate helicopter and fixed-wing mixed traffic. It also prohibited the simultaneous use of runways 15/33 and 4/22 when helicopters conducting urgent missions are operating near DCA. Delta Plane, Air Force Jet Nearly Crash In 'Loss Of Separation' During Arlington National Cemetery Flyover In response to the crash, which happened during an Army flight check, the FAA said it will also be sending its Critical Incident Stress Management team "to support the well-being of controllers" this month. The team will offer confidential support to staff "following stressful events," according to the statement. Regular wellness checks will also be conducted at the facility. The FAA did not immediately respond to a request for article source: FAA increasing air traffic control staff, supervisors at Ronald Reagan Washington National Airport
