Here’s your Cyber Security Incidents Update for wk29 2024
(a once-a-week on Monday glimpse into just a fraction of the Cyber Security events of the previous week to inform regarding the depth and breadth of the incidents world-wide)
-Organisation
⦿ Life360, a family location tracker app, headquartered in San Francisco, USA
-Data compromised
⦿ Email addresses (440,000) and, in most cases, names & phone numbers
-Organisation
⦿ Rite Aid, the third-largest pharmacy chain in the US
-Data compromised
⦿ According to the organisation, "a "limited" cyberattack on Rite Aid exposed the sensitive information of more than 2 million people", including purchaser name, address, date of birth and driver’s license number or other form of government-issued ID. (Phew, good job it was only "limited")
One piece of good news 👍:
Interpol's Operation Jackal III against several West African cybercrime groups, known for romance fraud, business email compromise (BEC) and other financial crimes, resulted in: 300 arrests; the seizure of $3m of assets; the identification of 400 suspects; and blocking of more than 720 bank accounts
(actually, late news, I'll sneak in another one):
UK law enforcement arrested a second person, a 17-year-old, alleged to be part of the Scattered Spider cybercrime syndicate. This follows the first arrest, in Spain, in June
One final note:
(some updates on previously reported items)
⦿ MarineMax (updates wk14), a large recreational boat and yacht retailer, Florida, USA, has finally confirmed that a data breach caused by a recent ransomware attack impacts over 123,000 individuals
⦿ MediSecure (or not so secure) (updates wk20 & 21) revealed that the personal and health data of approximately 12.9 million Australians has been affected by the May 2024 attack (I believe the population of Australia is about 26-27 million and, although maths isn't my finest subject, even I can work out that is nearly half of all Australians)