Please fill in the form below to subscribe to our blog

Categories

Tags

BullPhish ID cybersecurity Dark Web ID Email security Graphus incident response phishing ransomware Rocketcyber Week In Breach

The Week in Breach News: 12/04/24 – 12/10/24

December 11, 2024

This week: Ransomware slows shipping of cardiac devices; even more cyber trouble for the UK’s National Health Service (NHS); new HR-related phishing simulations in three languages; and our 12 Days of Tips to Help Businesses Reduce Holiday Cyber-Risk checklist for 2024 is here!

Curious about what has happened in cybersecurity in 2024 including the rise of AI? READ OUR REPORT>>

Pacific Pulmonary Medical Group

https://databreaches.net/2024/11/23/pacific-pulmonary-medical-group-patient-information-dumped-by-everest-ransomware-team

Exploit: Hacking

Industry: Healthcare

The Pacific Pulmonary Medical Group (PPMG) in California suffered a data breach. The Everest cybercrime group listed PPMG on its dark web leak site. The leaked data spans 2021-2024 and includes over 150 image files that include insurance cards and driver’s licenses. Exposed personal information includes names, contact details, Social Security numbers and emergency contacts. Patient IDs, appointment details, referring physicians, billing info and insurance account data were also involved. The most recent entry was dated October 4,2024, indicating exfiltration likely occurred around that date.

How It Could Affect Your Customers’ Business: Medical practices, hospitals and clinics must be extremely aware of potential cyber risk created by service providers and suppliers.

Kaseya to the Rescue: Learn to mitigate a company’s risk of damage from often email-based cyberattacks like ransomware in A Comprehensive Guide to Email-based Cyberattacks. GET THE GUIDE>>

TEAM Software

https://www.globenewswire.com/news-release/2024/11/15/2981742/0/en/TEAM-Software-Data-Breach-Exposes-Personal-Information-Murphy-Law-Firm-Investigates-Legal-Claims.html

Exploit: Hacking

Industry: Software

TEAM Software, a Nebraska-based company specializing in workforce management solutions, has disclosed a data breach. The company determined that cybercriminals had accessed its computer systems and potentially compromised the sensitive personal information of approximately 99,525 individuals. The unauthorized access to the company’s network infrastructure occurred between July 25 and July 26, 2024. The information involved may include names, Social Security numbers and driver’s license numbers.  

How It Could Affect Your Customers’ Business: This kind of personal data is very valuable for bad actors who are engaged in forgery and identity theft.

Kaseya to the Rescue:  Explore the biggest challenges professionals contended with in 2024 and the impact of AI on cybersecurity in the Kaseya Cybersecurity Survey 2024. GET THE REPORT>>

Chemonics

https://www.nj.com/hudson/2024/11/cyber-attack-shuts-down-nj-citys-government.html

Exploit: Ransomware

Industry: Government & NGO

Chemonics, a major contractor for The United States Agency for International Development (USAID), has disclosed that it has experienced a data breach that resulted in the exposure of 263,136 people’s data. The company said it discovered suspicious activity on December 15, 2024, and launched an investigation that revealed hackers had been in its systems since May 30, 2023, and continued to have access until January 9, 2024. The information stolen includes Social Security numbers, state ID information, passports, U.S. military ID information, health information, biometric data and even signatures. The company said that it is providing credit monitoring services to those impacted.

How It Could Affect Your Customers’ Business: This incident highlights ongoing cybersecurity challenges that worldwide aid agencies continue to face.

Kaseya to the Rescue: See how an antiphishing solution that leverages AI and automation can help businesses stop phishing economically. DOWNLOAD EBOOK>>

Artivion

https://therecord.media/artivion-medical-device-company-cyberattack-notice-sec

Exploit: Ransomware

Industry: Healthcare

Atlanta-based Artivion filed documents with the U.S. Securities and Exchange Commission (SEC) on Monday morning warning that the incident was having an impact on its operations. The company identified the cyberattack on November 21 and said it was forced to take some systems offline in response. Artivion informed regulators that the incident has caused disruptions to some ordering and shipping processes as well as its corporate operations. No ransomware group has claimed responsibility for the incident at press time.

How It Could Affect Your Customers’ Business: An incident that impacts the delivery of critical medical equipment is a public health risk.

Kaseya to the Rescue:  Our infographic walks you through exactly how security awareness training prevents phishing from hooking unsuspecting employees. DOWNLOAD IT>>

Learn more about growing supply chain risk for businesses and how to mitigate it in a fresh eBook. DOWNLOAD IT>>

UK – BT Group

https://www.theregister.com/2024/12/05/bt_group_confirms_attempted_attack

Exploit: Ransomware

Industry: Telecommunications

UK telecommunications behemoth BT Group confirmed that it was recently targeted by the Black Basta ransomware group. The gang hit BT’s “Conferencing” business division and forced it to shut down parts of its infrastructure. Black Basta claims to have snatched 500GB of data including financial and organizational data, user data, personal documents, NDA documents and other confidential material. BT disputes that claim and says that the incident is still under investigation.

How it Could Affect Your Customers’ Business: Telecoms are an essential element of critical infrastructure, and it is critical to protect them from cyberthreats that could take them down.

Kaseya to the Rescue: Watch this webinar to explore K365 User, our latest innovation to empower small and midsize businesses to maximize security while boosting productivity. LEARN MORE>>

Ireland – Cabot Financial

https://www.irishtimes.com/business/2024/11/28/cyberattack-on-debt-acquisition-firm-involved-theft-of-394000-data-files-court-hears

Exploit: Hacking

Industry: Banking & Finance

An attack targeting acquisition and credit servicing firm Cabot Financial resulted in the theft of some 394,000 data files, including material related to its direct customers and its loan book. The company says that unnamed bad actors stole 356 GB of data initially removed from its IT system around September 17 – 18, 2024. The firm told legal officials that it holds personal and corporate information on its IT system along with identification documentation, corporate, commercial and employee data. Cabot said in a statement that it detected the intrusion in late September and has engaged Mandiant to investigate the incident.  

How it Could Affect Your Customers’ Business: This investigation and the fines that regulators may impose are going to result in big bills for Cabot.

Kaseya to the Rescue:  Learn about five ways that businesses may be in danger of trouble from the dark web in an infographic that’s also perfect for sharing on social media! DOWNLOAD IT>>

UK –NHS Wirral University Teaching Hospital

https://www.msn.com/en-us/health/other/wirral-university-teaching-hospital-declares-major-incident-after-cyberattack/ar-AA1uW0gH

Exploit: Hacking

Industry: Healthcare

The UK’s National Health Service (NHS) has confirmed that Wirral University Teaching Hospital was forced to isolate its systems after detecting suspicious activity. Outpatient appointments at the hospital were cancelled and the public was asked to seek hospital care only for genuine emergencies. Officials said that the Wirral University Teaching Hospital NHS Foundation Trust is operating according to its business continuity procedures in the impacted areas, using paper instead of digital recordkeeping. This is the newest entry in a parade of cyberattacks on the NHS in recent weeks.

How it Could Affect Your Customers’ Business: The NHS has been facing a constant barrage of attacks, and new pieces of the system are falling to threat actors every week.

Kaseya to the Rescue: Run more effective security awareness and phishing resistance campaigns with this infographic featuring 10 expert tips to maximize your training programs. DOWNLOAD IT>>

IDA-GRP-Blog-Image-May

Take a deep dive into why an AI-powered anti-phishing solution is a smart financial choice. GET EBOOK>>

Read this week’s feature story: 12 Strategic Moves for Cybersecurity Success in 2025

With the new year right around the corner, IT professionals are certain to face a host of cyber challenges in 2025. Are you set up for cybersecurity success in the coming year? Discover 12 game-changing moves to make right now to build a strong foundation for solid security in 2025. READ MORE>>

Learn how to identify and mitigate malicious and accidental insider threats before there’s trouble! GET EBOOK>>

New HR-related phishing simulations in 3 languages are here!

Messages that seem like they come from within the company are some of the most dangerous phishing messages that employees encounter at work. These new phishing simulation kits are available in Portuguese, French and Spanish.

BambooHR – Important documents

  • BambooHR – Documents Importants (French)
  • BambooHR – Documentos Importantes (Spanish)

HR Newsletter – Recent theft in your workplace

  • Boletim de RH – Roubo Recente no seu Local de Trabalho (Portuguese)
  • Bulletin RH – Vol Récent sur votre Lieu de Travail (French)
  • Boletín de RRHH – Robo Reciente en tu Lugar de Trabajo (Spanish)

Human Resources – Leadership survey

  • Human Resources – Encuesta de Liderazgo (Spanish)

Microsoft – Notice of delivery

  • Aviso de Entrega da Microsoft (Portuguese)
  • Avis de Livraison de Microsoft (French)

Learn more about these new phishing simulations and other developments for BullPhish ID in the Release Notes. READ NOW>>

Learn more about growing supply chain risk for businesses and how to mitigate it in a fresh eBook. DOWNLOAD IT>>

Download the NEW infographic 12 Days of Tips to Help Businesses Reduce Holiday Cyber-Risk

The winter holiday season can be a profitable time for cybercriminals and a nightmare for businesses. Skeletal IT staffing combined with distracted employees and the year-end hustle and bustle is a recipe for cybersecurity disaster. Our annual must-have checklist, 12 Days of Tips to Help Businesses Reduce Holiday Cyber-Risk, is designed to help IT professionals set businesses up for security success during this dangerous season. This year’s checklist is now available, so don’t miss out! DOWNLOAD IT>>

Did you missThe Kaseya Cybersecurity Survey Report 2024? DOWNLOAD THE EBOOK>>

AI phishing represented by a robotic face behind several conversation bubbles

See why choosing a smarter SOC is a smart business decision. DOWNLOAD AN EBOOK>>

2025 Cybersecurity Predictions: Insights to Stay Ahead of Emerging Threats 

December 12, 2024 | 1 PM ET / 10 AM PT

It’s been a wild ride for cybersecurity in 2024 with new technologies and trends driving constant evolution. Will 2025 be equally tumultuous? Join Product Managers Austin O’Saben and Jim Freely for a look ahead at the challenges, innovations and roadblocks that IT professionals might expect to encounter in 2025, including: 

  • Predictions about emerging threats
  • The influence of global events on security strategies
  • Technologies that are redefining security operations

Don’t miss this chance to get essential insights! REGISTER NOW>>

Read our case studies and see how MSPs and businesses have benefitted from using our solutions. READ NOW>

Do you have comments? Requests? News tips? Complaints (or compliments)? We love to hear from our readers! Send a message to the editor.

Partners: Feel free to reuse this content. When you get a chance, email [email protected] to let us know how our content works for you!