[Weekly Security News] Cyber attacks in the Telecommunications, healthcare, and councils
[April 24 2024]
1. Frontier Communications shuts down systems after cyberattack
Telecom giant Frontier Communications is restoring systems after a cybercrime group breached some of its IT systems in a recent cyberattack performed on April 14. After discovering the incident, the company was forced to partially shut down some systems to prevent the threat actors from laterally moving through the network, which also led to some operational disruptions. Frontier says the attackers could access some PII data, although it didn’t disclose if it belonged to customers, employees, or both.
Source : Bleeping Computer, Security Week, Dark Reading
2. Michigan healthcare organization says ransomware breached data of 185,000
A ransomware attack in late 2023 exposed the personal data of nearly 185,000 people, a nonprofit Michigan-based Cherry Health reported a data breach to regulators on Wednesday caused by a ransomware attack back in December 2023. The cause of this breach was ransomware, and that the attackers had accessed financial information including names, email and home addresses, phone numbers, and dates of birth, health insurance information, health insurance ID number, patient ID number, etc. The attack type was listed as ransomware, but no criminal crew has yet stepped forward to claim responsible.
Source : The Record, The Register
3. Huge trove of Australian client data leaked following OracleCMS call center hack
Infamous ransomware operator LockBit has struck again, this time targeting an Australian call center operator. Earlier, LockBit had published some sample data such as bills associated with OracleCMS, giving the group until April 16th to negotiate with the group. That deadline passed, and true to its word, LockBit has now published more than 60 gigabytes of data in a single compressed archive. A “Clients” directory from the leaked data included more than 50 different folders of organizations ranging from local city councils to senior citizen care services. With this data leaked, Victoria Council hit.
Source : Cyber Daily, Cyber Express
Check out the product lines of Cloudbric by Penta Security:
Cloud-based Fully Managed WAAP: Cloudbric WAF+
Agent based Zero Trust Network Access Solution: Cloudbric PAS
Agentless Zero Trust Network Access Solution: Cloudbric RAS
Blockchain: Blockchain Security Solution
Click here for inquiries regarding the partner system of Cloudbric
Make sure to follow us on our social media platforms (LinkedIn, Twitter, and Facebook)
Check out Penta Security’s product lines:
Web Application Firewall: WAPPLES
Database Encryption: D’Amo
Identity and Access Management: iSIGN+
Car, Energy, Factory, City Solutions: Penta IoT Security
Click here for inquiries regarding the partner system of Penta Security
Make sure to follow us on our social media platforms (LinkedIn)