This week Bombardier and Steris get caught up in a third-party data breach and troubled crypto exchange Cryptopia gets hacked again.
United States – Gab
https://www.hackread.com/gab-hacked-ddosecrets-leak-profiles-posts-dms-passwords-online/
Exploit: Hacking
Gab: Social Media Platform
Risk to Business: 1.479 = Extreme
Right wing social media platform Gab was hacked by hacktivist group DDoSecrets. The platform is notorious for lax censorship of hate speech and is a haven for extremists including white supremacists, neo-Nazis, white nationalists, the alt-right, and QAnon conspiracy theorists. DDosSecrets has posted 70 GB of Gab content to its website including public posts, private posts, user profiles, hashed passwords for users, DMs, and plaintext passwords for groups in SQL format, along with over 70,000 messages in more than 19,000 chats with over 15,000 users in plaintext format.
Individual Risk: 1.447 = Extreme
It is unclear how many individuals may have been impacted. Gab users should be wary of spear phishing attempts, as well as potential legal consequences for nationalist or hate group activity.
Customers Impacted: Unknown
How it Could Affect Your Customers’ Business: Hacktivists are growing bolder in their quest to expose hate in public and private spaces. Information like this will haunt users for years on the dark web.
United States – Steris
https://www.infosecurity-magazine.com/news/steris-touted-as-latest-accellion/
Exploit: Third Party Data Breach
Steris: Medical Equipment Sales
Risk to Business: 1.919 = Severe
The ransomware gang Clop is claiming to have snatched an unspecified amount of information belonging to the Steris Corporation during a ransomware attack at third party cloud solutions provider Accellion. A small amount of internal data including studies and communications was identified as Steris data.
Individual Impact: No sensitive personal or financial information was announced as part of this incident, but the investigation is ongoing.
Customers Impacted: Unknown
How it Could Affect Your Customers’ Business Third party threats are growing more serious as cybercriminals collect information used in past breaches to fuel future attacks.
United States – Covenant Healthcare
Exploit: Phishing
Covenant Healthcare: Medical System
Risk to Business: 2.212 = Severe
Bad actors obtained access to two employee email accounts at Covenant Healthcare, leading to the exposure of personal information for an estimated 45K patients. The Michigan-based health system is undertaking an investigation with outside cybersecurity professionals.
Individual Risk: 1.712 = Severe
Potentially stolen patient information includes includes names, addresses, dates of birth, Social Security numbers, driver’s license numbers, medical diagnosis and clinical information, medical treatment, prescription information, doctors’ names, medical record numbers, patient account numbers, and medical insurance information. The hospital is offering identity theft protection to impacted patients.
Customers Impacted: 45K
How it Could Affect Your Customers’ Business: Phishing is the gateway to dangerous cybercrime, and regular phishing resistance training helps keep that gate closed.
Canada – Bombardier
https://www.teiss.co.uk/bombardier-data-breach/
Exploit: Third Party Data Breach
Bombardier: Airplane Manufacturing
Risk to Business: 1.816 = Severe
Canadian aerotech manufacturer Bombardier has been caught up in a third party data breach In the recent breach at cloud services provider Accellion stolen data about many companies was obtained, including this information that Bombardier says was taken from specific servers and uploaded by hackers on their dark web portal.
Risk to Business: 1.891 = Severe
Cybercriminals got their hands on a small subset of employee data including unspecified confidential information relating to 130 employees in Costa Rica.
Customers Impacted: 130 employees so far
How it Could Affect Your Customers’ Business: Ransomware that strikes your partner or service provider can be your problem too. Protecting businesses against damage from third party sources is a must these days.