As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.
Weekly Cybersecurity Report | Week 48, 2024
Information security updates and events from the past week
1 – The Medusa attack group hacked into the United Sleep Diagnostics network in the US and stole 1TB+ of data.
The company, which operates about 10 sleep clinics in different countries, did not report the incident to the media and did not pay the ransom, and now the group is publishing over 1TB of information, including sensitive medical information.
This is just another ransomware incident, which you probably won’t hear about in any other media because it is a relatively small entity.
But pay attention to the amounts of information that the attackers are extracting from the network without organizations noticing. This is not a process that happens in minutes or hours, but a process that takes longer and includes quite a few warning lights that should have been lit in the organization’s defense systems.
2 – The NHS Trust, which operates several hospitals in the UK, reports disruptions due to a cybersecurity-attack.
One of the hospitals operating under the organization has published a notice stating that all appointments are canceled, and they are asking new patients not to come. to the hospital until further notice.
One NHS Trust employee who was interviewed by the media said that “all the computers are down, there is no access to medical records, and everything is done manually, it is a huge loss.”
At this point, no ransomware group has claimed responsibility for the attack.
3 – The Ransomhub group claims responsibility for two ransomware attacks against government organizations in the US.
The group recently announced the City of Coppell and the Minneapolis Park and Recreation Board as victims.
Both organizations announced widespread disruptions following the attack.
This is a busy month for ransomware attacks.
4 – Blue Yonder, a company that provides technological services to thousands of businesses around the world, is suffering from a ransomware attack and the impact is being felt widely.
The company reports that it is working around the clock to deal with the incident, but in the meantime, Starbucks, for example, announced that following the attack they are forced to switch to manual work for employee payments and time sheet management.
At this point, no ransomware group has claimed responsibility for the attack.
5 – Finastra confirms that attackers managed to steal sensitive information from the corporate network.
The company, which provides technology services to most of the world’s largest banks and other financial institutions, reports that the attackers managed to steal information from a file transfer system that the company used.
The attacker published the information leak announcement about three weeks ago and claimed that he stole 400GB of information from the company, which he extracted from the network using IBM’s fast file transfer tool called IBM Aspera….
The attacker offered the stolen information for sale for $20,000, which was later reduced to $10,000.
As mentioned, Finastra confirmed the hack and stated that the file transfer system had been replaced with another system and notifications were sent to everyone affected by the attack.
6 – International Game Technology (IGT), one of the largest gambling companies in the United States, reports to the stock exchange in the country that it has suffered a cybersecurity-attack.
The company reports that because of the attack it was forced to disable some of its computer systems.
At this point, no attack group has claimed responsibility for the attack.
IGT employs about 11,000 people and reports revenues of $1.9 billion in the first nine months of the year.
7 – Cybersecurity-attack affects operations at Wirral University Teaching Hospital in the United Kingdom
Wirral University Teaching Hospital in the United Kingdom has suffered a cyber-attack that caused delays in meetings and procedures.
Wirral Hospital NHS Foundation Trust (WUTH) is an NHS Foundation Trust. It provides healthcare services to people on the Wirral Peninsula and the surrounding areas of NorthWest England and North Wales.
A UK healthcare provider has suffered a cyberattack that has affected its systems, forcing the health organisation to postpone scheduled appointments and procedures.
In response to the security breach, the company has isolated some of its systems and taken part in its IT infrastructure offline.
WUTH Hospital is still dealing with disruption following the cyberattack.
8 – Yakuza victim data leaked in Japanese agency cybersecurity attack
The network of the brutal organised crime group Yakuza in Japan continues to operate, threatening the country’s citizens with everything from extortion to gangland murders.
As a result, local agencies within certain communities are being set up to help those who get involved with gangsters – but unfortunately, one of them has been hacked, which could lead to physical safety consequences for victims.
The Kumamoto Prefecture Violence Prevention Movement Promotion Center said 2,500 people who used its counseling services (which help with everything from avoiding extortion to getting out of yakuza gangs) were affected by a data breach following a successful phishing attempt.
The stolen information may have included addresses, phone numbers and names.
https://cionews.co.in/japanese-attack-led-to-data-leak-of-yakuza-victim/
The attacks highlighted in this report aren’t just incidents, they’re blueprints of the adversary’s arsenal. To protect your business you need the right partner. Cyberone is here to help! Check out our services.
