[Weekly Security News] Tech Giant Fujitsu Confirms Data Breach After Malware Infects Work Computers

[Weekly Security News] Tech Giant Fujitsu Confirms Data Breach After Malware Infects Work Computers

[March 27 2024]

1. Tech Giant Fujitsu Confirms Data Breach After Malware Infects Work Computers

Fujitsu issued a statement confirming a cyberattack on its systems. The company’s officials disclosed that the Fujitsu data breach resulted in the discovery of malware on several of the organization’s work computers, raising concerns about the potential theft of personal and customer information. Despite the severity of the situation, Fujitsu has not received any reports of misuse of personal information or customer data thus far. The company has also taken proactive steps by reporting the incident to the Personal Information Protection Commission and reaching out to affected individuals and customers individually.

Source : Cyber Express, The Register, Dark Reading, Tech Crunch

 

2. Tarrant Appraisal District says a criminal ransomware attack shut down its website

The Tarrant Appraisal District(TDA) announced a network disruption on 21st Mar resulted from a criminal ransomware attack. The TDA said in a statement Friday that after learning of the network disruption they took steps to secure their network and worked with cybersecurity experts to determine the cause of the disruption and how to restore services. The TAD website is accessible, but the ability to search for records is still offline. According to a statement at the top of the website, the TAD’s phones and email are also temporarily disrupted.
This is not the first time that the TAD Has had issues securing data, The same ones  happened in 2022 and 2023.

Source : NBC DFW, Fort Worth Report, SC Media

 

3. Misconfigured Firebase instances leaked 19 million plaintext passwords

Three cybersecurity researchers discovered close to 19 million plaintext passwords exposed on the public internet by misconfigured instances of Firebase, a Google platform for hosting databases, cloud computing, and app development. They scanned more than five million domains and found 916 websites from organizations that either had no security rules enabled or had set them up incorrectly. More than 125 million sensitive user records were found, including emails, names, passwords, phone numbers, and billing information with bank details.

Source : Bleeping Computer, Tech Radar Pro, SC Media

 

Check out Penta Security’s Cloudbric product lines:

Cloud-based Fully Managed WAAP: Cloudbric WAF+

Agent based Zero Trust Network Access Solution: Cloudbric PAS

Agentless Zero Trust Network Access Solution: Cloudbric RAS

Blockchain: Blockchain Security Solution

Click here for inquiries regarding the partner system of Cloudbric
Make sure to follow us on our social media platforms (LinkedIn, Twitter, and Facebook)

Check out Penta Security’s product lines:

Web Application Firewall: WAPPLES

Database Encryption: D’Amo

Identity and Access Management: iSIGN+ 

Car, Energy, Factory, City Solutions: Penta IoT Security

Click here for inquiries regarding the partner system of Penta Security
Make sure to follow us on our social media platforms (LinkedIn)