As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.
Weekly Cybersecurity Report | Week 21, 2024
Information security updates and events from the past week
1 – 11 pharmaceutical companies report that medical information was leaked due to a hack at Cencora.
The company Cencora, which provides various services in the field of pharmaceuticals, reports that in February 2024 attackers managed to access the corporate network and steal sensitive information.
Following the attack, 11 pharmaceutical companies reported that they were affected by the attack and that the leaked information also belonged to their patients.
At this stage it has not been announced who the attack group is responsible for the attack and what type of attack.
2 – A ransomware attack disrupts Seattle Public Library services
The Seattle Public Library is scrambling to restore its online services after falling victim to a ransomware attack on Monday.
The attack, the library says, was detected on May 25, one day before a scheduled maintenance shutdown, and affected all its online services.
3 – Netflix paid over a million dollars for the Bug-Bounty program
Netflix has paid more than $1 million for vulnerabilities found in its systems and products since launching its bug program in 2016.
The streaming giant said Tuesday that more than 5,600 researchers contributed to its program and submitted nearly 8,000 unique vulnerability reports. Bounties were paid for 845 vulnerabilities, more than a quarter of which were rated “critical severity” or “high severity.”
4 – About 55,000 were affected by a cyber-attack on the California School Association
The California Association of School Administrators (ACSA) describes itself as the largest association of school administrators in the United States, serving more than 17,000 California educators, including superintendents, principals, and vice principals.
The incident happened last year. ACSA discovered on September 24, 2023, that some files in its environment had been encrypted, indicating that the organization had been targeted by a ransomware attack.
An investigation revealed that a threat actor gained access to ACSA systems between September 23rd and 24th, and they accessed and possibly extracted certain types of information.
5 – The computer equipment company Cooler Master suffers from an information leak after an attacker offered for sale the information of about 500,000 of the company’s customers.
6 – CDEK, one of the largest shipping companies in Russia, has been down for several days due to a cyber/ransom attack. The attacker posted the attack on Twitter.
7 – The BBC reports that an attacker managed to access the pension database of about 20K company employees. No financial information is disclosed but personal information is disclosed.
The attacks highlighted in this report aren’t just incidents, they’re blueprints of the adversary’s arsenal. To protect your business you need the right protection. Cyberone is here to help! Check out our services.