Weekly Cybersecurity Report | Week 8, 2024

As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.

Weekly Cybersecurity Report | Week 8, 2024

1 – The German battery manufacturer VARTA reports that it is forced to shut down production lines due to a cyber-attack. 

The attack was on the IT systems, but due to the shutdown of the IT systems, the production lines were also shut down. 

The company’s stock reacts with a decrease of almost 5%. 

2 – At least 21 hospitals in Romania suffer significantly from ransomware attack after ransomware attack on the HIS system that manages the entire medical record. 

The Ministry of Health in Romania published a statement that the system was attacked, and all the databases were encrypted. 21 hospitals were directly affected while 79 other hospitals took down the communication network proactively for fear of an attack. In all hospitals they switched to working with pen and paper. 

This is an event of unusual magnitude, at this stage no infidel group has taken responsibility for the attack. 

3 – Hyundai Europe reports that it was attacked in a ransomware attack 

Initially, the company claimed that it was technical glitches, but later, after confronting them with the data, the company admitted that it was a ransomware attack. 

The Blackbasta group is responsible for the attack. 

Learn more here: https://www.bleepingcomputer.com/news/security/hyundai-motor-europe-hit-by-black-basta-ransomware-attack/ 

4 – Prudential Financial was hacked in a cyber-attack. 

Prudential Financial disclosed that its network was breached last week, with attackers stealing employee and contractor data before being locked out of breached systems a day later. 

As the second largest life insurance company in the US, it employs 40,000 people worldwide and reported revenues of more than $50 billion in 2023. 

Learn more here: https://www.bleepingcomputer.com/news/security/prudential-financial-breached-in-data-theft-cyberattack/ 

5 – Bank of America warns customers against data breach after breach of suppliers 

Bank of America is warning customers about a data breach exposing their personal information after Infosys McCamish Systems (IMS), one of its service providers, was hacked last year. 

Customers’ personally identifiable information (PII) exposed in the security breach includes affected individuals’ names, addresses, social security numbers, dates of birth and financial information, including account and credit card numbers, according to the details shared with the Texas Attorney General. 

The bank serves approximately 69 million customers in over 3,800 retail financial centers and through approximately 15,000 ATMs in the United States, its territories and in more than 35 countries. 

Learn more here: https://www.bleepingcomputer.com/news/security/bank-of-america-warns-customers-of-data-breach-after-vendor-hack/ 

6 – The French hospital Armentières was hit by a cyber attack, the emergency rooms are closed for the day 

The attackers demand a ransom. This is the first time that Armentières Hospital has experienced such an attack. 

The Armentières Hospital Center was the victim of a cyber-attack during the night from Saturday to Sunday at 02:00. 

The emergency department is closed for the next 24 hours, the patients are being referred to other hospitals. 

A crisis unit, made up of security professionals from Armentières Hospital and Lille Hospital, was set up at 5.40am. 

All hospital computers are disconnected from the network for now. 

Learn more here: https://actualnewsmagazine.com/english/armentieres-hospital-victim-of-cyberattack-emergency-rooms-closed-for-the-day/ 

7 – PlayDapp security breach: $31 million cyberattack shakes the blockchain gaming world 

The company PlayDapp, a prominent player in the field of Blockchain games, fell victim to a sophisticated cyber-attack. A hacker managed to penetrate the system and add a new address as a miner on the platform. 

The unauthorized access allowed the attacker to mine 200 million PLA tokens, worth approximately $31 million based on current market rates. 

The PLA token, an integral part of the PlayDapp ecosystem, is used for transactions within the platform, making the breach particularly concerning. 

The attack method points to a significant security flaw within PlayDapp’s infrastructure. By adding his address as a miner, the attacker can bypass conventional theft methods, and directly affect the supply of the token and, consequently, its value. 

Learn more here: https://www.cryptopolitan.com/security-breach-playdapp-31-mil-cyber-attack/ 

8 – A cyber-attack hits the Swedish cloud provider Advania, health services were affected 

Nordic information technology provider Advania, which serves the public and private sectors, suffered a cyber security incident that affected at least 60 of its customers in Sweden. Local media reports that several health centers were exposed to the attack. 

The company admitted to a “security incident” in its public announcement. 

“During the afternoon of Tuesday, February 6, we discovered an anomaly in a limited portion of our customer environment. Because we suspected this could be a security incident, we isolated the customer environment and notified the approximately 60 customers that were affected,” the statement said. 

A preliminary investigation of the incident revealed that it was caused by the intrusion of an outside party. The company has isolated the affected customer environments and says they have no connection to Advania’s services or other customers. 

Learn more here: https://cybernews.com/news/cyberattack-hits-swedish-cloud-provider-advania/ 

9 – Ukrainian cyber experts disrupt Russia’s drone control system 

Cyber warfare specialists of Ukraine’s HUR military intelligence carried out a successful operation that led to a significant disruption of Russia’s drone control system, HUR reported in a February 8 Telegram press release. 

The hackers attacked software that was used to prepare drones for combat operations that allows for the setting of control panels, video recording, image transfer to the command post and control of the drone from a computer rather than via remote control. In addition, it also ensures the functioning of the friend or foe system, HUR said. 

Learn more here: https://news.yahoo.com/ukrainian-cyber-specialists-disrupt-russias-164500594.html 

 

The attacks highlighted in this report aren’t just incidents; they’re blueprints of the adversary’s arsenal. To protect your business you need the right protection. Cyberone is here to help! Check out our services.