Here’s your Cyber Security Incidents Update for wk16 2024
(a once-a-week on Monday glimpse into just a fraction of the Cyber Security events of the previous week to inform regarding the depth and breadth of the incidents world-wide)
-Organisation
⦿ A third-party vendor of Canadian retail chain Giant Tiger
-Data compromised
⦿ Customer data including 2.8 million unique email addresses, names, phone numbers and physical addresses
-Organisation
⦿ Atlantic States Marine Fisheries Commission, eastern seaboard of the USA
-Data compromised
⦿ Invoices, personal data, contracts and more currently being claimed by the ransomware gang
-Organisation
⦿ Cherry Street Services, aka Cherry Health, Michigan, USA (Healthcare. Again)
-Data compromised
⦿ The personal data of 185,000 people, including financial information such as credit card numbers and related security codes or passwords
One piece of good news 👍:
UK police, along with 39 other law enforcement agencies (inc. An Garda Síochána 👍) and private sector cyber security industry partners, took down one of the world's largest Phishing-as-a-Service platforms LabHost. The platform was known to host up to 40,000 phishing sites and was responsible for the theft of 480,000 credit card numbers, 64,000 Pin numbers and 1 million passwords. 37 suspects are under arrest and notifications are starting to be sent to users of the platform (be nervous when the doorbell rings 🤣)
One final note:
UnitedHealth, owners of Change Healthcare, reported that the ransomware attack of its subsidiary had so far cost $872 million in costs with the total expected to exceed $1 BILLION. Change Healthcare was the organisation, previous reported on, that was subject to a $22 million exit scam (rug pull) after it is believed it paid a ransom only for the data to be transferred to another ransomware gang after the hacker didn't receive their cut