The Week in Breach News: 10/16/24 – 10/22/24
This week: The Internet Archive gets pummeled by cyberattacks; the Calgary Public Library system gets shut down by bad actors; three new training courses in BullPhish ID; and the debut of the Kaseya Cybersecurity Survey Report 2024.
Read this week’s feature story: 5 Key Takeaways From the New Kaseya Cybersecurity Survey Report 2024
Give your clients the Cybersecurity Monster Hunter’s Checklist as a fun, Halloween-themed way to help them hunt down cybersecurity weaknesses. GET CHECKLIST>>
Axis Health System
Exploit: Ransomware
Industry: Healthcare
Axis Health System, a mental health and substance use treatment provider in Southwest Colorado, is investigating a cyberattack with no confirmation yet on whether patient data was compromised. A notice on its website states that affected individuals will be notified by mail if their data is impacted. Although its patient portal was down for unrelated reasons, all other systems were restored by Tuesday morning. A screenshot in the post shows a ransom demand from the Rhysida ransomware group for 25 Bitcoins (around $1.6 million).
How It Could Affect Your Customers’ Business: A data breach like this is a fast way for an organization to run up big bills that can impact a company’s financial health and future.
Kaseya to the Rescue: Learn to mitigate a company’s risk of damage from often email-based cyberattacks like ransomware in A Comprehensive Guide to Email-based Cyberattacks. GET THE GUIDE>>
Cisco
Exploit: Hacking
Industry: Technology
Dark web legend IntelBroker claims to have accessed Cisco’s systems on October 6. Allegedly stolen data includes source code, GitHub and GitLab projects, certificates, API tokens, AWS and Azure storage buckets, confidential documents and encryption keys. Alleged victims include Microsoft, AT&T, Bank of America, Vodafone Australia and government entities like the Australian Department of Defence. Cisco denies an internal breach, attributing the leak to a public-facing DevHub environment. The investigation is ongoing.
How It Could Affect Your Customers’ Business: It’s important to remember that even the biggest most advanced tech companies can have cybersecurity challenges.
Kaseya to the Rescue: Explore the biggest challenges professionals contended with in 2024 and the impact of AI on cybersecurity in the Kaseya Cybersecurity Survey 2024. GET THE REPORT>>
Varsity Brands
https://www.securityweek.com/varsity-brands-data-breach-impacts-65000-people
Exploit: Ransomware
Industry: Manufacturer
Varsity Brands, a leading manufacturer of cheer and sports uniforms based in Texas, has reported a May 2024 ransomware attack affecting over 65,000 individuals to the Maine Attorney General. Exposed data may include names, Social Security numbers, birthdates, financial info and employee IDs. Affected individuals are offered free credit monitoring and identity theft protection.
How It Could Affect Your Customers’ Business: Attacks on manufacturers can have unfortunate ripple effects on the supply chain as well as customers.
Kaseya to the Rescue: See how an antiphishing solution that leverages AI and automation can help businesses stop phishing economically. DOWNLOAD EBOOK>>
Globe Life
https://techcrunch.com/2024/10/17/hackers-are-extorting-globe-life-with-stolen-customer-data/
Exploit: Ransomware
Industry: Insurance
Globe Life, a major life and health insurer, is being extorted by a hacker who stole sensitive data from its subsidiary, American Income Life Insurance (AIL). The breach exposed customer names, addresses, phone numbers and some Social Security numbers as well as health data and policy details. So far, about 5,000 individuals are confirmed to have been affected, though the full extent is still under investigation. The hacker claims to have more data, but Globe Life states that no financial information, like credit card or banking data, appears to be involved.
How It Could Affect Your Customers’ Business: This breach garnered attackers a combination of health and personal data that will be profitable for them and an expensive disaster for Globe.
Kaseya to the Rescue: Our infographic walks you through exactly how security awareness training prevents phishing from hooking unsuspecting employees. DOWNLOAD IT>>
The Internet Archive
Exploit: Hacking
Industry: Technology
The Internet Archive has faced a challenging October, suffering at least three cyberattacks, including the theft of millions of usernames and email addresses, a brief site defacement and multiple days offline due to a DDoS attack. Its Wayback Machine experienced a data breach, with a 6.4GB SQL file containing 31 million records, including user emails, screen names and Bcrypt-hashed passwords, leaked. The latest timestamp on the data is September 28, 2024. In October, the Archive also encountered a DDoS attack by the BlackMeta hacktivist group and a breach of its Zendesk support system, amid warnings about stolen GitLab authentication tokens. The Archive has been dedicated to preserving the internet as a historical and cultural resource since 1996.
How it Could Affect Your Customers’ Business: This is an unfortunate situation for the Internet Archive that will place an extreme strain on its resources.
Kaseya to the Rescue: Are you taking advantage of the amazing benefits you get when you combine RocketCyber Managed SOC and Datto EDR? This product brief outlines them all! DOWNLOAD IT>>
Take a deep dive into why an AI-powered anti-phishing solution is a smart financial choice. GET EBOOK>>
Calgary Public Library
https://therecord.media/calgary-public-library-limits-services
Exploit: Hacking
Industry: Government
The Calgary Public Library was forced to limit its services last week following a cyberattack that compromised its systems. The library, which serves 1.3 million residents across 22 branches, was briefly forced to close and disable all of its servers and computers. The library was able to reopen after a few days, however, patrons were limited to accessing only areas and services that do not require technology. No book returns can be processed, due dates are extended and all digital services, including WiFi and eResources, are offline. Customers cannot book rooms or register for programs online. The incident remains under investigation and has been reported to the Canadian Centre for Cyber Security.
How it Could Affect Your Customers’ Business: A successful cyberattack on a library can have an unfortunate ripple effect on that library’s entire community.
Kaseya to the Rescue: Learn about five ways that businesses may be in danger of trouble from the dark web in an infographic that’s also perfect for sharing on social media! DOWNLOAD IT>>
Curious about what has happened in cybersecurity in 2024 including the rise of AI? READ OUR REPORT>>
Japan – Nidec
Exploit: Ransomware
Industry: Manufacturing
Japanese electric motor maker Nidec confirmed that a ransomware attack in August 2024 compromised its Vietnam-based subsidiary, Nidek Precision (NPCV). After Nidec refused to pay the ransom, the attackers leaked 50,694 stolen files on their Tor site, including internal documents on procurement, health and safety, policies and business transactions. The breach likely occurred using stolen credentials from an NPCV domain account. In response, Nidec said that it investigated the incident, reviewed server access, changed passwords and suspended a VPN suspected to be part of the attack in response to the intrusion. Both the 8base and Everest ransomware groups have claimed responsibility for this attack.
How it Could Affect Your Customers’ Business: A cyberattack that allows bad actors to get their hands on internal operations data can lead to a cascade of headaches for the victim company.
Kaseya to the Rescue: Run more effective security awareness and phishing resistance campaigns with this infographic featuring 10 expert tips to maximize your training programs. DOWNLOAD IT>>
Learn how to minimize phishing risk with AI & automation in The Anti-phishing Email Security Buyer’s Guide GET IT>>
UK – JD Sports
Exploit: Hacking
Industry: Retail
JD Sports suffered a cyberattack compromising customer data from online orders placed between November 2018 and October 2020 across its brands, including JD, Size?, Millets and Blacks. The breach affected nearly 10 million customers, exposing names, addresses, emails, phone numbers, order details and the last four digits of bank cards. No full card details or passwords were accessed. JD Sports is working with cybersecurity experts and the UK’s Information Commissioner’s Office (ICO) to address the incident.
How it Could Affect Your Customers’ Business: Successful cyberattacks on retailers can lead to downtime that translates into significant lost revenue.
Kaseya to the Rescue: A bewildering array of acronyms are used for cybersecurity technologies. This infographic breaks down six of them. DOWNLOAD IT>>
Find out about five of today’s biggest dark web threats to businesses in this infographic. DOWNLOAD IT>>
Read this week’s feature story: 5 Key Takeaways from the New Kaseya Cybersecurity Survey Report 2024
We’re excited to share the new Kaseya Cybersecurity Survey Report 2024 with you. This year, we explored IT professionals’ encounters with cybercrime, cybersecurity governance and the impact of AI on their roles. We’ll present a deeper analysis of the findings in a series of stories here for the next few weeks, but first, let’s kick things off by examining the five key takeaways from this year’s report.
Learn how to identify and mitigate malicious and accidental insider threats before there’s trouble! GET EBOOK>>
We’ve added 3 new training courses in BullPhish ID
As we head into the last part of the year, now is the perfect time to start planning your cybersecurity training programs for 2025. Check out these new training courses that you may want to consider, now available in the BullPhish ID Training Portal:
- Consequences of GDPR release
- EU GDPR for data breach notification for processors
- SIM card swap scam
Learn more about these fresh phishing simulations and other BullPhish ID news in the Release Notes. LEARN MORE>>
Learn more about growing supply chain risk for businesses and how to mitigate it in a fresh eBook. DOWNLOAD IT>>
NEW: The Kaseya Cybersecurity Survey Report 2024
Welcome to the new frontier of cybersecurity, where advanced threats pose significant challenges. The Kaseya Cybersecurity Survey Report 2024 examines the experiences of various businesses, gathering insights on topics ranging from the rise of artificial intelligence to ongoing cybersecurity challenges.
Here’s what you’ll discover:
- How businesses have combated threats like ransomware, phishing and other cyberattacks
- Key trends in governance, budgeting and the implementation of cybersecurity solutions
- The transformative role AI is playing in shaping business cybersecurity
Download it now to see all of the important insights! DOWNLOAD THE REPORT>>
Did you miss…the Cybersecurity Monster Hunter’s Checklist? DOWNLOAD IT>>
See why choosing a smarter SOC is a smart business decision. DOWNLOAD AN EBOOK>>
BEC Essentials You Need to Know to Keep Your Business Safe
October 24, 2024 | 1 pm ET / 10 am PT
Business Email Compromise (BEC) is one of the fastest-growing and most financially damaging cyber threats organizations face today, especially small businesses. MSPs and small business owners need to be aware of this threat and how to protect against it. Join us for an informative webinar where we break down the essentials of BEC and provide practical strategies to safeguard your business. We’ll explore:
- How BEC operates and what makes it distinct from other types of cyberattacks.
- Actionable strategies to prevent BEC attacks, including best practices for email security, employee training, and incident response.
- How Graphus and RocketCyber can enhance your defenses against BEC.
October 28 – 30: Kaseya DattoCon (Miami) REGISTER NOW>>
November 12 – 14: Kaseya DattoCon APAC (Sydney) REGISTER NOW>>
Read our case studies and see how MSPs and businesses have benefitted from using our solutions. READ NOW>
Do you have comments? Requests? News tips? Complaints (or compliments)? We love to hear from our readers! Send a message to the editor.
Partners: Feel free to reuse this content. When you get a chance, email [email protected] to let us know how our content works for you!