Here’s your Cyber Security Incidents Update for wk33 2024
(a once-a-week on Monday glimpse into just a fraction of the Cyber Security events of the previous week to inform regarding the depth and breadth of the incidents world-wide)
-Organisation
⦿ Orion SA - a Luxembourg-based producer of Carbon Black, a material used to make tyres, paints and plastics amongst other items (not to be confused with Carbon Black the enterprise security products organisation that is part of VMWare 🤦♂️)
-Data compromised
⦿ Not so much data, as money. Around $60 million was stolen in a BEC scheme after an employee was tricked into making several wire transfers to cybercriminals
-Organisation
⦿ Australian gold mining company Evolution Mining, which operates in Australia and Canada
-Data compromised
⦿ The company informed investors that it became aware of a ransomware attack last week impacting its IT systems
-Organisation
⦿ Schlatter Group, a Switzerland-based manufacturing company specialising in plant engineering and welding
-Data compromised
⦿ Schlatter Group stated that "it was dealing with a criminal cyberattack using malware". It is believed this included losing access to its email system (that may be a result of ransomware or action by incident responders)
One piece of good news 👍:
Maksim Silnikau, a Belarusian-Ukrainian national, faces charges in the US after being extradited from Spain in a joint law enforcement operation. Silnikau along with co-conspirators Volodymyr Kadariya and Andrei Tarasov, Belarussian-Ukrainian and Russian respectively, operated the ransomware-as-a-service "Ransom Cartel". The trio face extensive prison terms upon conviction
One final note:
Enzo Biochem, New York-based biotech company, reached an agreement with the attorneys general of New York, New Jersey and Connecticut to pay $4.5 million for failing to protect the diagnostic test information and personal data of nearly 2.5 million people in a ransomware attack in 2023. The company will NOW be adding multi-factor authentication to all employee accounts and updating other security policies and programs (now.. 🤦♂️)