The Week in Breach News: 01/05/22 – 01/11/22 | CloudSmart IT

The Week in Breach News: 01/05/22 – 01/11/22

Ransomware rocks two major service providers, disrupting IT services and schools around the world.




FinalSite

https://thejournal.com/articles/2022/01/07/thousands-of-schools-affected-by-ransomware-attack-on-website-provider-finalsite.aspx 

Exploit: Ransomware

FinalSite: Education Technology Provider

cybersecurity news gauge indicating extreme risk

Risk to Business: 1.227=Extreme

School website services provider FinalSite has suffered a ransomware attack that disrupted access to websites for thousands of schools worldwide. FinalSite provides solutions for over 8,000 K – 12 schools and universities in 115 countries. school districts that hosted their websites with FinalSite found that they were no longer reachable or were displaying errors. Bleeping Computer reports that in addition to the website outages the attack prevented schools from sending closure notifications due to weather or COVID-19. FinalSite says that approximately 5,000 school websites went offline as a result of the ransomware attack and no data was stolen. An investigation is ongoing. 

Individual Impact: No consumer or employee PII or financial data exposure was disclosed in this incident as of press time.

Customers Impacted: Unknown

How It Could Affect Your Customers’ Business: Ransomware risk is rising for organizations in every sector, especially companies that provide important services for other businesses.

 


Broward Health 

https://www.techtimes.com/articles/270004/20220103/hospital-data-breach-personal-info-1-3-million-patients-staff-data-breach.htm 

Exploit: Hacking

Broward Health: Hospital System

cybersecurity news represented by agauge showing severe risk

Risk to Business: 2.223 =Severe

Florida-based healthcare system Broward Health has disclosed a data breach affecting 1,357,879 individuals after an intruder gained unauthorized access to the hospital’s network and patient data. The organization discovered the breach four days after the initial intrusion and immediately notified the FBI and the US Department of Justice. Broward Health contracted a third-party cybersecurity expert to help with the investigations. 

cybersecurity news represented by agauge showing severe risk

Risk to Business: 2.419=Severe

The exposed personal data for patients and former patients at Broward health may include Social Security numbers, bank or financial account information, driver’s license numbers, names, addresses, telephone numbers and hospital payment account information. Protected health information including medical information like care history, condition, treatment and diagnosis records may also have been exposed.  

Customers Impacted: Unknown

How It Could Affect Your Customers’ Business Medical data is always a win for cybercriminals and losing it is an expensive nightmare for hospitals once regulators are finished with them.

 


D.W. Morgan

https://www.websiteplanet.com/blog/dwmorgan-leak-report/ 

Exploit: Hacking

D.W. Morgan: Logistics and Supply Chain Management 

cybersecurity news represented by agauge showing severe risk

Risk to Business: 1.717= Severe

Researchers at Website Planet uncovered a data breach at D.W. Morgan because of a misconfigured AW3 bucket. The exposed data included more than 2.5 million files equating to over 100GB of data related to D.W. Morgan’s clients and their shipments from 2013 to late 2021. Some files also included sensitive client data and employee PII. Website Planet revealed that records pertaining to deliveries for clients including Cisco, and Life Technologies was also exposed in files.

Individual Impact: No specifics about any consumer/employee PII or financial data loss were available at press time.

Customers Impacted: Unknown

How It Could Affect Your Customers’ Business Service providers like this are goldmines for cybercriminals, amping up supply chain risk for evryone.

  


Ravkoo

https://www.bleepingcomputer.com/news/security/us-online-pharmacy-ravkoo-links-data-breach-to-aws-portal-incident/

Exploit: Hacking

Ravkoo: Pharmacy 

cybersecurity news represented by agauge showing severe risk

Risk to Business: 1.719 = Severe

US-based online pharmacy Ravkoo has disclosed a data breach. The company disclosed that its AWS hosted cloud prescription portal was involved in a security incident that may have led to personal and health information being accessed by unauthorized parties, resulting in the potential compromise of customers’ prescription and health information.  

Individual Impact: No consumer/employee PII or financial data loss was disclosed in this breach as of press time.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business Once again, a service provider that maintains a large array of records full of PII was hit, gaining cybercriminals a data bonanza.

 


FlexBooker 

https://www.bleepingcomputer.com/news/security/flexbooker-discloses-data-breach-over-37-million-accounts-impacted/

Exploit: Hacking

FlexBooker: Scheduling Platform

cybersecurity news represented by agauge showing severe risk

Risk to Business: 1.806=Moderate

FlexBooker experienced an attack before the holidays that resulted in the theft of more than three million user records. The platform is used for scheduling and employee calendar management by small businesses like doctor’s offices, real estate companies, service sector businesses and similar companies. Bleeping Computer reports that a group calling themselves Uawrongteam, has claimed responsibility, providing links to archives and files with sensitive information, such as photos, driver’s licenses, and other IDs as proof.  

Individual Impact: No specific information about exposed customer personal or financial data was available at press time.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business Cybercriminals are especially likely to target companies that provide time-sensitive products and services in hopes of a fast extortion payment.

 


France – Inetum Group

https://www.bleepingcomputer.com/news/security/global-it-services-provider-inetum-hit-by-ransomware-attack/ 

Exploit: Ransomware 

Inetum Group: IT Services Provider

cybersecurity news represented by agauge showing severe risk

Risk to Business: 1.991 = Severe

Over the winter holidays, French IT services company Inetum Group was hit by a ransomware attack that impacted its business and its customers. The company was quick to reassure clients that none of the main infrastructures, communication, collaboration tools or delivery operations for Inetum clients has been affected. Inetum Group has notified authorities about the attack and is collaborating with specialized cybercrime units. A third party investigation is underway. Inetum provides IT services for clients in myriad industries in 26 countries.  

Individual Impact: No consumer or employee PII or financial data exposure was disclosed in this incident as of press time.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business IT services companies are juicy targets for crooks who may be able to parlay a successful attack on them into an intrusion on one of their clients.

 


Switzerland – CPH Chemie + Papier

https://www.hackread.com/german-audio-tech-sennheiser-expose-customers-data/ 

Exploit: Malware

CPH Chemie + Papier: Industrial Packaging. Paper and Chemicals

cybersecurity news represented by agauge showing severe risk

Risk to Business: 1.806 = Severe

Swiss company CPH Chemie + Papier has announced that it was hit with a cyberattack that has impacted its IT systems and some production facilities. Production in the paper and packaging operations in Perlen LU and Müllheim, Germany was halted briefly but the company’s chemical operations were unaffected. Malware is suspected to be the culprit. Investigation and recovery efforts are underway.

Individual Impact: No consumer PII or financial data exposure was disclosed in this incident as of press time.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business Ransomware isn’t the only malware on the block. Other types of malware also pack a nasty punch that can devastate businesses.




Singapore – OG Department Stores

https://www.straitstimes.com/singapore/consumer/personal-data-of-og-department-store-customers-leaked 

Exploit: Hacking

OG Department Stores: Retailer

cybersecurity news represented by a gauge indicating moderate risk

Risk to Business: 2.721 = Moderate

OG Department Stores has announced that they’ve experienced a breach that has exposed customers’ personal data. The company said that the incident affected members who are in either the basic or gold membership tiers. OG said it has reported the matter to the police and other relevant authorities, including the Personal Data Protection Commission (PDPC) and the Cyber Security Agency of Singapore (CSA).   

cybersecurity news represented by a gauge indicating moderate risk

Risk to Business: 2.775 = Moderate

Customer data that may have been compromised includes the names, mailing addresses, email addresses, mobile numbers, genders and dates of birth. Encrypted data including NRIC numbers and passwords may also have been snatched.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business Personal data is always a winner for cybercriminals who are looking to make a quick profit in the booming dark web data markets.


1 – 1.5 = Extreme Risk

1.51 – 2.49 = Severe Risk

2.5 – 3 = Moderate Risk

Risk scores for The Week in Breach are calculated using a formula that considers a wide range of factors related to the assessed breach.

View All News & Articles

Ready to customize an IT solution that fits YOUR business goals? Get free guidance from our CEO.

Ready to customize an IT solution that fits YOUR business goals?

Get free guidance from CloudSmart IT.

Book a call or call us at 844.200.0549 today for your no-cost, no-obligation consultation.