The Week in Breach News: 11/09/22 – 11/15/22
Hacking siphons $500 million from troubled crypto exchange FTX, ransomware attacks strike Canada’s food supply chain and SMB security and compliance training priorities.
What worries security pros? The Kaseya Security Insights Report 2022 tells you. GET YOUR REPORT>>
FTX
Exploit: Hacking
FTX: Cryptocurrency Exchange
Risk to Business: 1.171 = Extreme
The collapse of cryptocurrency exchange FTX has been an epic disaster for the crypto world, and the saga isn’t even close to over. On the heels of the company’s bankruptcy filing, FTX experienced a hacking incident that resulted in an estimated $500 million being siphoned from users’ cryptocurrency wallets late last Friday. The company’s CEO took to Twitter to confirm the hack. In its Telegram channel, FTX cautioned users that “FTX has been hacked. FTX apps are malware. Delete them. Chat is open. Don’t go on FTX site as it might download Trojans.” The company says that it is working with law enforcement officials and making every effort to secure users’ remaining assets.
How It Could Affect Your Customers’ Business: This adds insult to injury at the worst possible time further compromising the cryptocurrency market.
ID Agent to the Rescue: See the biggest risks that different sectors face today and get a look at what your clients will be facing tomorrow in The Global Year in Breach 2022. DOWNLOAD IT>>
Jackson Intermediate School District
https://www.wilx.com/2022/11/14/cyberattack-forces-jackson-county-schools-close-monday/
Exploit: Ransomware
Jackson Intermediate School District: Education Authority
Risk to Business: 2.101 = Severe
The Jackson Intermediate School District (Jackson ISD) near Lansing, Michigan, was hit by a ransomware attack that forced area schools to suspend classes for a day. The attack forced systems offline last Monday. Jackson ISD provides technology services for schools and school districts in Jackson and Hillsdale counties. School officials said that the attack impacted several critical operating systems that necessitated the closure. No word on any ransom demand was available at press time.
How It Could Affect Your Customers’ Business: Schools at every level have been extremely pressed by ransomware groups and need to maintain strong security.
ID Agent to the Rescue: Learn more about how to defend businesses from ransomware with the resources in our Deep Dive into Ransomware bundle! GET BUNDLE>>
Go inside BEC scams & get tips to keep businesses safe from today’s most expensive cyberattack. DOWNLOAD EBOOK>>
Sobey’s
https://securityaffairs.co/wordpress/138424/cyber-crime/sobeys-ransomware-attack.html
Exploit: Ransomware
Sobey’s: Supermarket Chain
Risk to Business: 1.652 = Severe
Sobey’s, Canada’s second-largest supermarket chain, has been the victim of a ransomware attack that impacted the supermarket chain’s operations. Stores remained open and mostly operational for shoppers, but some systems were down or spotty causing delays in services. Customers were unable to refill prescriptions or purchase gift cards. Payment systems were not impacted. The chain consists of 1,500 stores in all ten provinces under multiple retail banners, including Sobey’s, Safeway, IGA, Foodland, FreshCo, Thrifty Foods and Lawtons Drugs. Black Basta ransomware is likely to be behind the attack. No information about what if any data was stolen or a ransom demand was available at press time.
How It Could Affect Your Customers’ Business: Ransomware operators have been focusing on sectors that impact people’s daily lives for maximum gain, with Food & Agriculture high on their list.
ID Agent to the Rescue: Security awareness training helps employees avoid ransomware traps. Learn to create a great program with How to Build a Security Awareness Training Program. DOWNLOAD IT>>
Maple Leaf Foods
https://www.securityweek.com/cyberattack-causes-disruptions-canadian-meat-giant-maple-leaf-foods
Exploit: Hacking
Maple Leaf Foods: Meat Processor
Risk to Business: 1.882 = Severe
Maple Leaf Foods has fallen victim to an unnamed cyberattack that has disrupted its operations. The company, producers of meat brands Maple Leaf, Schneiders, Mina, Greenfield Natural Meat Co., Lightlife and Field Roast, said that it successfully executed its business continuity plan and that it is working to restore the impacted systems. But the company also cautioned that it expects further operational and service disruptions. Experts suspect that ransomware may be the root cause of the trouble.
How it Could Affect Your Customers’ Business: Manufacturers in the food supply chain are key points for cybercriminals to attack, especially with ransomware.
ID Agent to the Rescue: Are you confident that you’re providing the right security training for your clients? The Security Awareness Training Guide for MSPs helps you make sure. DOWNLOAD IT>>
This MSP-focused guide gives you insight into finding the ideal dark web monitoring solution. GET THE GUIDE>>
UK – Silverstone Circuit
https://therecord.media/popular-uk-motor-racing-circuit-investigating-ransomware-attack/
Exploit: Ransomware
Silverstone Circuit: Motor Racetrack
Risk to Business: 1.819 = Severe
Silverstone Circuit has been the victim of a ransomware attack. The up-and-coming ransomware group Royal has claimed responsibility, adding the racetrack to its dark web leak site on November 8. Silverstone Circuit is the legendary home of the British Grand Prix as well as dozens of Formula One automobile and motorcycle events. The track is operated by the British Racing Drivers’ Club (BRDC). No word on any ransom demand was available at press time.
How it Could Affect Your Customers’ Business: Ransomware groups that are making a name for themselves may choose to hit high-profile targets for publicity.
ID Agent to the Rescue: Go over the Cybersecurity Risk Protection Checklist with your clients to make sure that they’re covering all of their security bases. GET CHECKLIST>>
Russia – Central Bank of the Russian Federation
Exploit: Hacking (Hacktivism)
Central Bank of the Russian Federation: Bank
Risk to Business: 1.733 = Severe
Ukrainian hacktivists say that they’ve hacked the Central Bank of the Russian Federation, sometimes called the Central Bank of Russia. The hackers say they’ve snatched a 2.6 GB folder of documents that was released publicly last Thursday. The Record said that it had seen a portion of the documents and that the trove includes 27,000 files detailing the bank’s operations and its security policies as well as the personal data of some of its current and former employees. This is the second hacking incident this year for Russia’s Central Bank. Anonymous allegedly obtained 35,000 documents from the bank in March 2022 and published them online.
How it Could Affect Your Customers’ Business: The ongoing Russia-Ukraine conflict has led to unprecedented levels of nation-state and hacktivist activity.
ID Agent to the Rescue: Learn more about nation-state cybercrime and reducing risk for businesses in our eBook How Nation-State Cybercrime Affects Your Business. DOWNLOAD IT>>
Spark profitable security training conversations with clients & prospects by giving them this list of risks. DOWNLOAD IT>>
Vanuatu – Government of Vanuatu
https://www.barrons.com/news/vanuatu-government-sites-down-cyberattack-feared-01667984106
Exploit: Hacking
Government of Vanuatu: National Government
Risk to Business: 2.283 = Severe
Several government departments of the island nation of Vanuatu have been knocked offline following an unspecified cyberattack. The websites of Vanuatu’s parliament, police, prime minister and Cyber Emergency Response Team were among the government agencies impacted. Officials also confirmed that they had limited access to platforms because of sporadic internet outages. Several key web-based services including email and voice communications were also down. The small island nation has requested assistance in investigating and remediating the attack from its neighbor Australia.
How it Could Affect Your Customers’ Business: Governments of every size have been getting hammered by cyberattacks in the last year and need strong security to stay out of trouble.
ID Agent to the Rescue: A strong security culture reduces the risk of an incident. Help your clients build one with The Building a Strong Security Culture Checklist! DOWNLOAD IT>>
1 – 1.5 = Extreme Risk
1.51 – 2.49 = Severe Risk
2.5 – 3 = Moderate Risk
Risk scores for The Week in Breach are calculated using a formula that considers a range of factors for each incident
Don’t miss the industry’s best event, Connect IT Global April 24 – 27, 2023, in Las Vegas! REGISTER NOW>>
See how today’s biggest threats may impact your MSP and your customers in our security blogs.
- Watch Out for Brand Impersonation Phishing Attacks
- SMBs Fear Phishing More Than Any Other Threat
- Automation Makes Credential Stuffing Nastier Than Ever
- 6 Key Insights into Security and Cloud Migration for MSPs
- The Week in Breach News: 11/02/22 – 11/08/22
What’s next for MSPs? Find out in the Datto Global State of the MSP Report: Looking Ahead to 2023 DOWNLOAD IT>>
Special News Bulletin
Save Big on Tickets for Connect IT Global for a Limited Time!
It’s that time of the year when we thank you for your unwavering support of Kaseya’s solutions and your contribution to the success of Kaseya. As a token of our gratitude, we are running a special Thanksgiving promo offer on early bird tickets for Connect IT Global 2023.
Buy a ticket before November 28, 2022, and get another at 50% off on our discounted early bird pricing*.
Don’t miss this chance to attend the IT service industry’s best event and learn how to build systems, evolve your business and lead the industry toward a stronger tomorrow.
*Discount applicable to same ticket type as the first one purchased. This discount does not apply to 3 Night or 4 Night Hotel Bundle Tickets. Additional Tickets can be added at the end of the first ticket registration process.
Schnizzfest Returns in 2023
Finally, the announcement you’ve been waiting for is here: get ready for the return of the Schnizz. After a brief hiatus, Schnizzfest is back this January 23 to 25, 2023 in Phoenix, Arizona. Be alongside the industry’s top providers at this highly anticipated event. In addition to an impressive list of business leaders and experts, you will get the chance to hear from Gary Pica and Dan Tomaszewski. Give your business the right start in 2023. Rub shoulders with industry peers, thought leaders, and enjoy the pure Schnizzfest awesomeness with fun games and drinks at the Hyatt Regency Phoenix. Take advantage of early bird pricing and secure your seat today!
Learn how to spot and stop malicious insiders and educate users with this handy infographic! GET IT>>
Find New Opportunities to Grow Your Revenue in 2023
Have you started making plans to grow your MSP in 2023? These resources can help you learn about opportunities that you can leverage to expand your business and make more money next year!
See what other MSPs are doing in Datto’s Global State of the MSP Report: Looking Ahead to 2023. DOWNLOAD IT>>
Go inside SMB security experiences and priorities in the Kaseya Security Insights Report 2022. DOWNLOAD IT>>
Learn more about improving your clients’ email security in our webinar 5 Ways Your SEG is Failing You. DOWNLOAD IT>>
Did you miss…? The 10 Tips for Successful Employee Awareness Training infographic DOWNLOAD IT>>
Kaseya Security Insights Report Highlights a Big Growth Opportunity for MSPs
Plan to Take Advantage of This
As the year begins to draw to a close, many businesses are planning ahead by looking at their successes and failures in 2022 to find the key strengths and opportunities they can leverage to grow in 2023. That’s one reason why reports like the Kaseya Security Insights Report 2022 are so useful as a look inside the minds of business leaders. By exploring SMBs’ relationship to security, MSPs can spot opportunities for their own growth. This year’s report highlights a major opportunity for MSPs to grow their businesses and develop a solid revenue stream into the future by offering security awareness training and educating their clients on why it’s a must-have for every organization.
Download the Kaseya Security Insights Report 2022 now. GET YOUR REPORT>>
One-fifth of SMBs still aren’t conducting security & compliance awareness training
You know that security awareness training is an essential pillar of any company’s cyber defense (especially phishing resistance and simulation training), but some businesses still haven’t bought in to the idea to their detriment. Most SMBs are getting the message that security awareness training is a smart investment, and approximately four-fifths of r survey respondents (79%) said that their organizations engage in security awareness training. That’s good news for any IT professional working in security for those organizations. But most isn’t all, and that creates an opportunity for MSPs. Shockingly, about one-fifth of respondents (21%) told us that their organizations do not conduct security awareness training, missing out on the big benefits it brings. This is surprising, considering the fact that in addition to being an effective defensive measure, security awareness training is a compliance requirement under many cybersecurity statutes or regulatory frameworks and mandated by most insurers.
Do you conduct security awareness training in your organization?
| Answer | Responses |
| Yes | 79% |
| No | 21% |
Source: Kaseya
Help your clients make sure they’ve got their identity & access management bases covered. GET CHECKLIST>>
Almost one-quarter of SMBs highly prioritize data privacy & protection training
Organizations conducting security awareness training are looking at a wide array of subjects to cover, from good security hygiene to spotting cyberattacks. As we noted last week, more than half of our survey respondents cited phishing as their primary security concern. That’s not a surprise to anyone considering the flood of dangerous phishing messages and phishing-related cyberattacks that has been drowning businesses in 2022. SMBs are structuring their training programs to reflect the danger that phishing presents to their organization with about one-third of survey respondents saying that their organization places phishing awareness training the highest on their priority list. Interestingly, data privacy and protection is the second most popular training theme, with just under one-quarter (24%) of respondents making it a training priority. This may be in response to continually evolving data privacy and protection regulations that have come into play in certain sectors or geographic areas. Security best practices are the third most popular training topic, beating out compliance and other security subjects.
What are the most important training topics to your organization?
| Training Topic | Responses |
| Phishing awareness | 35% |
| Data privacy & protection | 24% |
| Security best practices (e.g., password protection) | 23% |
| Compliance | 14% |
| Other | 3% |
Source: Kaseya
This infographic helps IT professionals get the most out of a security awareness training solution. DOWNLOAD IT>>
4 main focus areas dominate the compliance training world
Although compliance may not be the most exciting training topic it is necessary and a very common requirement for SMBs. Security awareness and compliance go hand-in-hand. All of our survey respondents who said that they conduct security awareness training also conduct compliance training. Or many SMBs in a variety of sectors, maintaining compliance with industry and regional data protection rules is an increasingly complex challenge. MSPs have an opportunity to solve one of their clients’ common pain points by helping them implement a security awareness training program that also helps their clients maintain regulatory compliance. For our respondents, HIPAA was the most common compliance concern, relevant for 40% of the SMBs we surveyed. GDPR and PCI-DSS came in second and third, trailing HIPAA but close to each other as the most prominent compliance requirements that our survey respondents face.
Which of the following compliance requirements or regulations directly impact your organization?
| Regulation | Responses |
| HIPAA | 40% |
| GDPR | 36% |
| PCI-DSS | 34% |
| NIST 800-171 | 21% |
Source: Kaseya
Learn how a new integration between BullPhish ID & Graphus saves time & money. SEE THE DETAILS>>
Take advantage of growth opportunities in training with BullPhish ID
Security awareness training that includes phishing simulations offers MSPs a growth opportunity that they can leverage to drive revenue in 2023. BullPhish ID is the perfect partner in that effort. Offer your clients painless, effective security awareness training and the industry’s leading phishing simulation at a price you’ll both love with affordable, easy-to-use BullPhish ID.
BullPhish ID offers both MSPs and businesses great features and benefits:
For MSPs
Purpose-built for MSPs, BullPhish ID offers exactly what MSPs need to grow their security awareness training business without putting additional strain on their staff.
- Easily add BullPhish ID to your technology stack to enter security awareness training space − then scale profitably as you grow and acquire new security training clients.
- White label every aspect of the end users’ training experience and keep your MSP’s brand front and center with custom URLs and your/your client’s logo in the training portal and emails.
- Get phishing and training campaigns up and running in minutes and serve more customers with ease with our automated platform and pre-made kits and courses.
- Automate training and testing delivery and deliver reports directly to stakeholders, minimizing the time your techs spend babysitting the solution.
- Give your customers access to manage their own campaigns and training, offering them the opportunity to train their way and reducing your staff’s workload
For your clients
Businesses are thrilled with the ease, flexibility and value of training with BullPhish ID!
- Choose from a multitude of plug-and-play phishing simulation campaign kits with new content added every month to reflect the latest threats.
- Use preloaded kits or customize phishing emails, add attachments or create custom campaigns from blank templates.
- Ready-to-use training videos in eight languages − English, Dutch, French, German, Italian, Portuguese, Spanish (Iberian/European) and Spanish (Latin)
- Effective security and compliance training delivered in bite-sized pieces with quizzes that measure knowledge retention and simple reports to view progress
- Painless campaign management and automated training delivery through a personalized, user-friendly training portal
Schedule a demo of BullPhish ID now.
See cybercrime trends & the results of thousands of phishing simulations in The Global Year in Breach 2022. DOWNLOAD IT>>
MSP Cybersecurity Round Table: Holiday Ransomware Readiness is Next Week!
Are you ready for the holiday ransomware surge? Every year, bad actors ramp up the cyberattack pressure during the holiday season. Find out how to reduce risk for your business and your clients at our November MSP Cybersecurity Round Table: Holiday Ransomware Readiness on Tuesday, November 22, at 2 pm EST. REGISTER NOW>>
November 17: Is Your Email Security Up to the Test? REGISTER NOW>>
November 22: Connect IT Local – Brisbane AUS – REGISTER NOW>>
November 22: MSP Cybersecurity Roundtable: Holiday Ransomware Readiness REGISTER NOW>>
November 24: Connect IT Local – Scotland REGISTER NOW>>
November 24: Connect IT Local – Adelaide, AUS REGISTER NOW>>
December 6: Connect IT Local – Atlanta REGISTER NOW>>
December 6: Connect IT Local – Auckland, NZ REGISTER NOW>>
December 8: Connect IT Local – Miami REGISTER NOW>>
December 8: Datto & Kaseya Connect IT Local – Reading, UK REGISTER NOW>>
December 13: Connect IT Local – Ft. Lauderdale REGISTER NOW>>
December 13: Executive Roadshow REGISTER NOW>>
December 15: Connect IT Local – Washington DC REGISTER NOW>>
January 23 – 25, 2023: Schnizzfest in Phoenix, AZ REGISTER NOW>>
April 24 – 27, 2023: Connect IT Global in Las Vegas, NV REGISTER NOW>>
Read case studies of MSPs and businesses that have conquered challenges using Kaseya’s Security Suite. SEE CASE STUDIES>>
Do you have comments? Requests? News tips? Complaints (or compliments)? We love to hear from our readers! Send a message to the editor.
ID Agent Partners: Feel free to reuse this content. When you get a chance, email [email protected] to let us know how our content works for you!
Our Partners typically realize ROI in 30 days or less. Contact us today to learn why 3,850 MSPs in 30+ countries choose to Partner with ID Agent!
Check out an on-demand video demo of BullPhish ID or Dark Web ID WATCH NOW>>
See Graphus in action in an on-demand video demo WATCH NOW>>
Book your demo of Dark Web ID, BullPhish ID, RocketCyber or Graphus now!