{"id":8812,"date":"2024-07-08T14:32:09","date_gmt":"2024-07-08T11:32:09","guid":{"rendered":"https:\/\/cyberone.bg\/?p=8812"},"modified":"2024-07-08T14:32:09","modified_gmt":"2024-07-08T11:32:09","slug":"weekly-cybersecurity-report-week-27-2024","status":"publish","type":"post","link":"https:\/\/cyberone.bg\/en\/weekly-cybersecurity-report-week-27-2024","title":{"rendered":"Weekly Cybersecurity Report | Week 27, 2024"},"content":{"rendered":"<p>As your dedicated cybersecurity services provider,<strong> <a href=\"https:\/\/cyberone.bg\/\">Cyberone<\/a><\/strong> equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.<\/p>\n<h2><strong>Weekly Cybersecurity Report | Week 27, 2024<\/strong><\/h2>\n<h4><b><span data-contrast=\"auto\">Information security updates and events from the past week<\/span><\/b><span data-ccp-props=\"{&quot;335551550&quot;:1,&quot;335551620&quot;:1,&quot;335559685&quot;:0,&quot;335559739&quot;:60}\">\u00a0<\/span><\/h4>\n<h3><b><span data-contrast=\"auto\">1 &#8211; The major telecom company KT Corporation is involved in a malware attack: more than 600,000 users were affected<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Prominent South Korean media giant KT Corporation has found itself at the center of controversy following an investigation by JTBC, a leading Korean news outlet.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The company is accused of infecting over 600,000 users with malware, specifically targeting customers who use torrent services through Webhard&#8217;s Grid Program, a popular cloud service in Korea.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">2 &#8211; Formula 1&#8217;s governing body reveals data breach after email hacks<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">The FIA \u200b\u200b(F\u00e9d\u00e9ration Internationale de l&#8217;Automobile), the governing body of motor racing since the 1950s, reported that attackers gained access to personal data after breaking into several FIA email accounts in a phishing attack.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The FIA \u200b\u200bsays it has informed the Prepos\u00e9 F\u00e9d\u00e9ral \u00e0 la Protection des Donn\u00e9es et \u00e0 la Transparence (the Swiss data protection regulator) and the National Commission Informatique et des Libert\u00e9s (the French data protection regulator) about the incident.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">F1&#8217;s governing body also took additional security measures to block similar attacks in the future and said it &#8220;regrets any concern caused to the people affected&#8221;.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/thecyberexpress.com\/fia-data-breach-emails-hacked-confirmed\/\"><span data-contrast=\"none\">https:\/\/thecyberexpress.com\/fia-data-breach-emails-hacked-confirmed\/<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">3 &#8211; A cyber-attack disabled the Zagreb University Hospital Center in Croatia<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">A cyber-attack began targeting the Zagreb University Hospital Center (KBC Zagreb), the largest Croatian hospital, on Wednesday night, according to a report by Croatian Radio.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The hospital shut down its IT infrastructure in response to the cyber-attack.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">KBC Zagreb&#8217;s assistant director of healthcare quality and supervision, named Milivoj Novak, said on the evening program &#8220;Otvoreno&#8221;\u202fthat the shutdown of the IT system took the hospital back 50 years &#8211; to paper and pencil.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">It is unclear if the hospital was the victim of a ransomware attack.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Novak later told a press conference that all services, including the hospital&#8217;s emergency service and medical laboratories, had been fully restored.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">However, the temporary impossibility of printing medical reports and staff having to write them by hand caused significant delays.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">4 &#8211; TeamViewer&#8217;s corporate network was hacked by a Russian attack group.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">In the announcement published by the company, it reports that it has identified unusual activity on the corporate network and activated response teams accordingly.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The company claims that the corporate network is completely disconnected from the product&#8217;s network and the customers&#8217; information.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">TeamViewer did not reveal who is behind the attack, but various sources indicate that it is the Russian attack group APT29, also known by the names Cozy Bear, NOBELIUM, and Midnight Blizzard.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3><b><span data-contrast=\"auto\">5 &#8211; The Patelco company, which provides various financial services in the USA, reports that its computer systems have been shut down due to a ransomware attack.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Following the attack, all banking services provided by the company online are not available to customers, nor can bank transfers, money deposits and various payments be made.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Some more cyber updates around the world:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\ud83d\udd3a<\/span><\/b><b><span data-contrast=\"auto\"> The Agropur company, one of the largest producers of dairy products in North America, reports an information leak after some of the company&#8217;s databases were exposed to the world.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\ud83d\udd3a<\/span><\/b><b><span data-contrast=\"auto\"> The British chain of shoe stores Shoezone reports to the London Stock Exchange about a cyber-attack after identifying an unauthorized party in the company&#8217;s network.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\ud83d\udd3a<\/span><\/b><b><span data-contrast=\"auto\"> Operation &#8220;Or Rishon&#8221; &#8211; Interpol, together with dozens of enforcement agencies around the world arrested about 4,000 suspects who engaged in fraud, phishing and more.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\ud83d\udd3a About 6,500 bank accounts were frozen and assets worth hundreds of millions of dollars were seized.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\ud83d\udd3a<\/span><\/b><b><span data-contrast=\"auto\"> The immigration authority in Indonesia arrested about 100 immigrants who lived in a villa in the country and committed cyber-crimes.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\ud83d\udd3a<\/span><\/b><b><span data-contrast=\"auto\"> The attack group dAn0n published on its leak site the Pediatric Urology Associates company that operates medical centers in the USA.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\ud83d\udd3a According to dAn0n, they have had access to the company&#8217;s network since January 2023&#8230;<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\ud83d\udd3a<\/span><\/b><b><span data-contrast=\"auto\"> The computer and telephone systems in the Palomar Health Medical Group&#8217;s (PHMG) network of medical centers have been down for about two months (!) due to a cyber-attack.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\ud83d\udd3a<\/span><\/b><b><span data-contrast=\"auto\"> The Maryhaven company, which operates rehab centers in the USA, is suffering from a ransom attack carried out by the INC ransom group. Some of the company&#8217;s systems are disabled.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><strong><em>The attacks highlighted in this report aren&#8217;t just incidents, they&#8217;re blueprints of the adversary&#8217;s arsenal. To protect your business you need the right protection. Cyberone is here to help! Check out our <a href=\"https:\/\/cyberone.bg\/en\/services\">services<\/a>.<\/em><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape. Weekly Cybersecurity Report | Week 27, 2024 Information security updates and events from the past week\u00a0 1 &#8211; The major telecom [&hellip;]<\/p>\n","protected":false},"author":6,"featured_media":8612,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[58],"tags":[57,65,56],"class_list":["post-8812","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-weekly-cyber-updates","tag-cybersecurity","tag-weekly-cybersecurity-report","tag-weekly-update"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/8812","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/comments?post=8812"}],"version-history":[{"count":1,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/8812\/revisions"}],"predecessor-version":[{"id":8813,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/8812\/revisions\/8813"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/media\/8612"}],"wp:attachment":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/media?parent=8812"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/categories?post=8812"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/tags?post=8812"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}