The Week in Breach News: 11/27/24 – 12/03/24
This week: More cyber trouble for the UK’s National Health Service (NHS); bad actors nab an estimated $17 million from Uganda’s central bank; learn how IT pros can help retailers mitigate cyber-risk this holiday season; and nine more new Microsoft-themed phishing simulations in three languages are now available.
Read this week’s new featured blog: Protecting Retailers From Cyber-Risks This Holiday Season: A Guide for MSPs
Curious about what has happened in cybersecurity in 2024 including the rise of AI? READ OUR REPORT>>
Veteran’s Health Administration
https://www.fox9.com/news/veterans-health-administration-cyberattack-compromises-records
Exploit: Third-Party Data Breach
Industry: Government
The Veterans Health Administration (VHA) has reported a ransomware attack on DBP, a contracted medical transcription vendor, resulting in the exposure of protected health information for 2,302 veterans. While the breach encrypted one of DBP’s servers, an investigation confirmed that the attackers did not access any medical record data stored in the VA’s electronic health record system. The exposed data may include veterans’ full names, medical record details and Social Security numbers. Affected individuals will be notified directly via letters, according to VHA officials.
How It Could Affect Your Customers’ Business: This incident underscores the danger that all types of organizations face from supply chain cyberattacks.
Kaseya to the Rescue: Learn to mitigate a company’s risk of damage from often email-based cyberattacks like ransomware in A Comprehensive Guide to Email-based Cyberattacks. GET THE GUIDE>>
Bojangles
Exploit: Hacking
Industry: Restauraunt
Bojangles’ Restaurants, Inc. Has admitted that the company experienced a data breach in March 2024. Based on its forensic investigation, Bojangles determined that cybercriminals gained access to its employee data files between February 19, 2024, and March 12, 2024. The investigation uncovered that the information exposed in the data breach includes, but is not limited to names, social security numbers, driver’s license numbers, government-issued ID card numbers, financial account information, medical information and health insurance information.
How It Could Affect Your Customers’ Business: Companies with a high turnover rate may also have a large store of employee data that is attractive to cybercriminals.
Kaseya to the Rescue: Explore the biggest challenges professionals contended with in 2024 and the impact of AI on cybersecurity in the Kaseya Cybersecurity Survey 2024. GET THE REPORT>>
City of Hoboken, NJ
https://www.nj.com/hudson/2024/11/cyber-attack-shuts-down-nj-citys-government.html
Exploit: Ransomware
Industry: Government
The city of Hoboken, New Jersey, fell victim to a cyberattack last week, leading to significant disruptions in municipal operations. City Hall and online services were shut down, forcing the cancellation of Municipal Court proceedings and the temporary redirection of court and police-related matters to neighboring Secaucus. Street sweeping was suspended, although trash collection and recreation programs continued as scheduled. The city is working to restore full functionality while safeguarding against further impacts.
How It Could Affect Your Customers’ Business: This incident highlights ongoing cybersecurity challenges that governments and government agencies continue to face.
Kaseya to the Rescue: See how an antiphishing solution that leverages AI and automation can help businesses stop phishing economically. DOWNLOAD EBOOK>>
Texas Tech University Health Sciences Center
Exploit: Hacking
Industry: Healthcare
Officials from Texas Tech University Health Sciences Center El Paso and Texas Tech University Health Sciences Center have confirmed a data breach exposing sensitive patient information during a September cyberattack. The incident disrupted computer systems and applications between September 17 and 29, allowing unauthorized access to or removal of files containing personal and medical data. Affected information varies by individual but may include names, addresses, dates of birth, driver’s license numbers, financial details and health records.
How It Could Affect Your Customers’ Business: Healthcare systems face punishing regulatory fines in the wake of an incident like this.
Kaseya to the Rescue: Our infographic walks you through exactly how security awareness training prevents phishing from hooking unsuspecting employees. DOWNLOAD IT>>
Learn more about growing supply chain risk for businesses and how to mitigate it in a fresh eBook. DOWNLOAD IT>>
Italy – Bologna FC
https://www.theregister.com/2024/11/30/bologna_fc_ransomhub
Exploit: Hacking
Industry: Sports and Entertainment
Italian football club Bologna FC has allegedly fallen victim to the RansomHub cybercrime gang, which claims to have stolen extensive sensitive data, according to postings on the group’s dark web leak site. Among the disclosed files is a purported employment contract for manager Vincenzo Italiano, revealing personal details, bank account information, and a $4.8 million annual salary, with a potential $477 thousand bonus for a Serie A league victory. Other exposed records reportedly include a passport scan of former assistant manager Emilio De Leo, contracts, and personal data for first-team players dating back to 2017. RansomHub has also leaked spreadsheets allegedly detailing the club’s financials, sponsorship revenues, and transactions with other clubs, alongside medical records, young player data and business plans.
How it Could Affect Your Customers’ Business: No organization is safe from cybercrime, bad actors are always hungry for data no matter what type.
Kaseya to the Rescue: Are you taking advantage of the amazing benefits you get when you combine RocketCyber Managed SOC and Datto EDR? This product brief outlines them all! DOWNLOAD IT>>
UK – NHS Alder Hey Children’s Hospital
https://www.theregister.com/2024/11/29/inc_ransom_alder_hey_childrens_hospital
Exploit: Ransomware
Industry: Healthcare
The cybercrime group INC Ransom has claimed responsibility for stealing sensitive data from Alder Hey Children’s Hospital and Liverpool Heart and Chest Hospital NHS Foundation Trust. A limited sample of the stolen data, published by the group, includes full names, addresses, donation amounts, medical reports, unique hospital numbers, and financial documents dating from 2018 to 2024. Alder Hey has reassured the public that hospital operations remain unaffected by the breach.
How it Could Affect Your Customers’ Business: The NHS has experienced an ongoing wave of cyberattacks against its hospitals.
Kaseya to the Rescue: Learn about five ways that businesses may be in danger of trouble from the dark web in an infographic that’s also perfect for sharing on social media! DOWNLOAD IT>>
See why choosing a smarter SOC is a smart business decision. DOWNLOAD AN EBOOK>>
Uganda – Bank of Uganda
Exploit: Hacking
Industry: Finance
Ugandan officials confirmed that the country’s central bank, the Bank of Uganda, experienced a security incident. Offshore hackers allegedly stole $16 billion. The Waste cybercrime group is believed to be responsible for the attack, which saw funds transferred to accounts in the UK and Japan. Authorities in the UK have since frozen $7 million, although some funds were withdrawn. An estimated $6 million was suspected to have been moved to Japan. An investigation is underway by Uganda’s Criminal Investigations Department (CID) and the Auditor General.
How it Could Affect Your Customers’ Business: The banking and financial services sector is one of the top three sectors that cybercriminals have in their sights.
Kaseya to the Rescue: Run more effective security awareness and phishing resistance campaigns with this infographic featuring 10 expert tips to maximize your training programs. DOWNLOAD IT>>
Learn how managed SOC gives you big security expertise on call 24/7without the big price tag. LEARN MORE>>
Japan – The Kumamoto Prefecture Anti-Violence Movement Promotion Center
https://www.csoonline.com/article/3611377/gangster-counseling-center-fears-data-leak.html
Exploit: Human Error
Industry: Healthcare
The Kumamoto Prefecture Anti-Violence Movement Promotion Center, which offers free and confidential counseling to individuals threatened by Japan’s yakuza organizations, has disclosed that the people it treats may have had their personal information exposed in a data breach. The center revealed that an employee had fallen victim to a tech support scam in mid-November. In the incident, the employee unknowingly granted remote access to their computer. The Center is now warning the public not to respond to any suspicious contact requests by email or phone that may appear to come from its employees.
How it Could Affect Your Customers’ Business: This is a dangerous situation because the stolen data could expose people to the risk of physical harm or loss of life.
Kaseya to the Rescue: Run more effective security awareness and phishing resistance campaigns with this infographic featuring 10 expert tips to maximize your training programs. DOWNLOAD IT>>
Take a deep dive into why an AI-powered anti-phishing solution is a smart financial choice. GET EBOOK>>
Read this week’s feature story: Protecting Retailers from Cyber Risks This Holiday Season: A Guide for IT Pros
‘Tis the season for cyberthreats! All retailers, from brick-and-mortar stores to e-commerce sites, face a barrage of phishing and other cyber-risks this holiday season. Learn about the key dangers retail businesses face rand how IT professionals can help keep their register bells ringing.
Learn how to identify and mitigate malicious and accidental insider threats before there’s trouble! GET EBOOK>>
Discover 9 new Microsoft-centered phishing kits in 3 languages
As you map out your security awareness training plans for 2025, consider utilizing these nine new phishing simulation kits that imitate Microsoft in Spanish, French and Portuguese.
Microsoft – Quarantined Email
- Microsoft – Correo Cuarentenado (Spanish)
- Microsoft – E-mail Mis en Quarantaine (French)
- Microsoft – E-mail em Quarentena (Portuguese)
Microsoft Teams: Message Available
- Microsoft Teams – Mensaje Disponible (Spanish)
- Microsoft Teams – Message Disponible (French)
- Microsoft Teams – Mensagem Disponível (Portuguese)
SharePoint – Remote Work Policy
- SharePoint – Política de Trabalho Remoto (Portuguese)
- SharePoint – Politique de Travail à Distance (French)
- SharePoint – Política de Trabajo Remoto (Spanish)
Learn more about these and other fresh phishing simulation kits in the Release Notes.
Learn more about growing supply chain risk for businesses and how to mitigate it in a fresh eBook. DOWNLOAD IT>>
Get your copy of The Anti-phishing Email Security Buyer’s Guide
Phishing is the most prevalent type of cyberattack targeting businesses. Today’s most dangerous cyberattacks, like ransomware and business email compromise (BEC), typically start with a phishing email. Effective phishing prevention is key to reducing the risks of cyberattacks and data breaches. In The Anti-phishing Email Security Buyer’s Guide, you’ll learn:
- Strategies to block phishing messages before they reach employees.
- The importance of implementing a multilayered defense approach for comprehensive phishing protection.
- Ways to mitigate phishing risks effortlessly and efficiently.
- Essential features to prioritize when selecting an anti-phishing solution.
Did you miss…the eBook Unlocking Revenue with Managed Detection and Response? DOWNLOAD THE EBOOK>>
See why choosing a smarter SOC is a smart business decision. DOWNLOAD AN EBOOK>>
THIS WEEK! Cybersecurity Jeopardy Returns!
December 5, 2024 | 2:00 PM ET / 11:00 AM PT
Tomorrow our fan-favorite Cybersecurity Jeopardy game is back for one last time in 2024!
Test your skills during this always popular interactive webinar. Our dynamic host, Miles Walker, Channel Development Manager, will lead expert contestants through several rounds of cybersecurity challenges designed to tackle today’s threats until a champion emerges. Don’t worry, the audience gets to join the fun! You’ll be able to jump in to answer answering live questions and compete for awesome prizes.
Don’t miss your chance to level up your cybersecurity know-how and see how you stack up against the pros! REGISTER NOW>>
Read our case studies and see how MSPs and businesses have benefitted from using our solutions. READ NOW>
Do you have comments? Requests? News tips? Complaints (or compliments)? We love to hear from our readers! Send a message to the editor.
Partners: Feel free to reuse this content. When you get a chance, email [email protected] to let us know how our content works for you!