top of page
OpaCyber

Cyber Security Incidents Updates wk33

Here’s your Cyber Security Incidents Update for wk33 2024


(a once-a-week on Monday glimpse into just a fraction of the Cyber Security events of the previous week to inform regarding the depth and breadth of the incidents world-wide)


-Organisation

⦿ Orion SA - a Luxembourg-based producer of Carbon Black, a material used to make tyres, paints and plastics amongst other items (not to be confused with Carbon Black the enterprise security products organisation that is part of VMWare 🤦‍♂️)

-Data compromised

⦿ Not so much data, as money. Around $60 million was stolen in a BEC scheme after an employee was tricked into making several wire transfers to cybercriminals



-Organisation

⦿ Australian gold mining company Evolution Mining, which operates in Australia and Canada

-Data compromised

⦿ The company informed investors that it became aware of a ransomware attack last week impacting its IT systems


-Organisation

⦿ Schlatter Group, a Switzerland-based manufacturing company specialising in plant engineering and welding

-Data compromised

⦿ Schlatter Group stated that "it was dealing with a criminal cyberattack using malware". It is believed this included losing access to its email system (that may be a result of ransomware or action by incident responders)



One piece of good news 👍:

Maksim Silnikau, a Belarusian-Ukrainian national, faces charges in the US after being extradited from Spain in a joint law enforcement operation. Silnikau along with co-conspirators Volodymyr Kadariya and Andrei Tarasov, Belarussian-Ukrainian and Russian respectively, operated the ransomware-as-a-service "Ransom Cartel". The trio face extensive prison terms upon conviction



One final note:

Enzo Biochem, New York-based biotech company, reached an agreement with the attorneys general of New York, New Jersey and Connecticut to pay $4.5 million for failing to protect the diagnostic test information and personal data of nearly 2.5 million people in a ransomware attack in 2023. The company will NOW be adding multi-factor authentication to all employee accounts and updating other security policies and programs (now.. 🤦‍♂️)

bottom of page