{"id":9458,"date":"2024-11-11T10:10:09","date_gmt":"2024-11-11T07:10:09","guid":{"rendered":"https:\/\/cyberone.bg\/?p=9458"},"modified":"2024-12-09T11:21:40","modified_gmt":"2024-12-09T08:21:40","slug":"weekly-cybersecurity-report-week-45-2024","status":"publish","type":"post","link":"https:\/\/cyberone.bg\/en\/weekly-cybersecurity-report-week-45-2024","title":{"rendered":"Weekly Cybersecurity Report | Week 45, 2024"},"content":{"rendered":"

As your dedicated cybersecurity services provider,\u00a0Cyberone<\/a><\/strong>\u00a0equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.<\/p>\n

Weekly Cybersecurity Report | Week 45, 2024<\/h2>\n

Information security updates and events from the past week<\/span><\/b>\u00a0<\/span><\/p>\n

1 \u2013 A cybersecurity-attack led to the shutdown of the emergency, monitoring and navigation systems in vehicles intended for transporting prisoners.<\/span><\/b>\u00a0<\/span><\/h3>\n

The attack was reported by the British company Microlise, which provides various services in the field of logistics and vehicles.<\/span>\u00a0<\/span><\/p>\n

Services such as monitoring, navigation, and other systems.<\/span>\u00a0<\/span><\/p>\n

One of Microlise\u2019s clients is the Serco company, which provides the Ministry of Justice in the country with transport services for prisoners in unique protected vehicles.<\/span>\u00a0<\/span><\/p>\n

Following the attack, Serco employees were notified that some of the systems installed in the vehicles would not work, including the vehicle\u2019s navigation and monitoring systems, the emergency alarm system, and more<\/span>\u00a0<\/span><\/p>\n

The company states that as far as it knows, prisoners did not abuse the situation.<\/span>\u00a0<\/span><\/p>\n

2 \u2013 Nine months of credit card theft \u2013 SelectBlinds reports that approximately 200,000 customers were harmed after the attacker damaged credit card information on the company\u2019s sales site.<\/span><\/b>\u00a0<\/span><\/h3>\n

The damage was identified in September of this year, even though it was planted on the site where the company\u2019s products (curtains, windows, etc.) are sold, already in January.<\/span>\u00a0<\/span><\/p>\n

During these months, the attacker managed to steal all the users\u2019 details, including credit card details.<\/span>\u00a0<\/span><\/p>\n

Following the attack, messages were sent to users and the passwords were reset for all affected accounts.<\/span>\u00a0<\/span><\/p>\n

3 \u2013 Courts in the state of Washington suffer disruptions due to a cyber-attack.<\/span><\/b>\u00a0<\/span><\/h3>\n

The disruptions began after an unauthorized factor was identified in the network and various measures were taken to minimize the damage.<\/span>\u00a0<\/span><\/p>\n

While in some courts the activity continues as usual, in other courts they announced disruptions such as postponement of hearings, etc.<\/span>\u00a0<\/span><\/p>\n

4 \u2013 Memorial Hospital and Manor Hospital in Georgia reports a systems shutdown due to a ransomware attack.<\/span><\/b>\u00a0<\/span><\/h3>\n

The attack group Embargo took responsibility for the attack because of which the medical personnel do not have access to the patient\u2019s medical file and other systems.<\/span>\u00a0<\/span><\/p>\n

5 \u2013 Schneider Electric company confirms an attack on the development platform after the hacker stole data<\/span><\/b>\u00a0<\/span><\/h3>\n

Schneider Electric has confirmed that a developer platform was breached after a threat actor claimed to have stolen 40GB of data from the company\u2019s JIRA server.<\/span>\u00a0<\/span><\/p>\n

\u201cSchneider Electric is investigating a cybersecurity incident involving unauthorized access to one of our internal project executions tracking platforms that is hosted within an isolated environment,\u201d Schneider Electric said.<\/span>\u00a0<\/span><\/p>\n

\u201cOur global incident response team mobilized immediately to respond to the incident. Schneider Electric products and services were not affected.\u201d<\/span>\u00a0<\/span><\/p>\n

https:\/\/www.securityweek.com\/schneider-electric-launches-probe-after-hackers-claim-theft-of-user-data\/<\/span><\/a>\u00a0<\/span><\/p>\n

6 \u2013 A cybersecurity-attack on the telematics provider Microlise damaged the company\u2019s data and also disrupted the tracking services for DHL and Serco (gold customers of the company)<\/span><\/b>\u00a0<\/span><\/h3>\n

Following the attack, Microlise\u2019s share price fell by 16%<\/span>\u00a0<\/span><\/p>\n

Serco: reports that tracking and assistance alarms on prisoner transport vehicles have been disabled, forcing crews to rely on alternative safety measures, such as checking in every 30 minutes and using paper maps.<\/span>\u00a0<\/span><\/p>\n

DHL Company: Shipment tracking has been affected. DHL has since resumed tracking capabilities but has not disclosed details of its delivery schedules.<\/span>\u00a0<\/span><\/p>\n

\u201cAs a trusted technology provider, Microlise\u2019s role in asset tracking has made it an attractive target for attackers. Cybercriminals are increasingly realizing that disrupting a single provider can have far-reaching effects across multiple customers,\u201d said the company director.<\/span>\u00a0<\/span><\/p>\n

7 \u2013 A Russian attack group announces that it hacked Verdad, an oil and gas corporation in the USA<\/span><\/b>\u00a0<\/span><\/h3>\n

Verdad Resources is an oil and gas company in Colorado, their assets include over 91,000 acres and 270 wells that produce more than 7,000 barrels of oil per day.<\/span>\u00a0<\/span><\/p>\n

The control server of a corporation is under the control of the attackers as well as the corporate network, it has not yet been published how much information was stolen or compromised<\/span>\u00a0<\/span><\/p>\n

8 \u2013 Portsmouth UK City Council was hit by a cybersecurity-attack.<\/span><\/b>\u00a0<\/span><\/h3>\n

The United Council was attacked by the group NoName057(16), pro-Russian hackers who also hit the towns of Salford and Middlesbrough.<\/span>\u00a0<\/span><\/p>\n

Portsmouth said council services were not affected, and residents\u2019 data was not at risk.<\/span>\u00a0<\/span><\/p>\n

\u201cWe can confirm that the Portsmouth City Council website is under cyber-attack, which means you will experience problems when trying to use the website\u201d<\/span>\u00a0<\/span><\/p>\n

\u201cWe are working to resolve the problem as soon as possible and apologize for the inconvenience caused.\u201d<\/span>\u00a0<\/span><\/p>\n

9 \u2013 Nokia investigates breach after hackers claim to have stolen source code<\/span><\/b>\u00a0<\/span><\/h3>\n

Nokia is investigating whether a third-party vendor was hacked after a hacker claimed to be selling the company\u2019s stolen source code.<\/span>\u00a0<\/span><\/p>\n

\u201cNokia is aware of reports that an unauthorized actor has claimed to have gained access to certain third-party contractor data and possibly Nokia data,\u201d the company said.<\/span>\u00a0<\/span><\/p>\n

\u201cNokia takes the incident seriously and we are investigating. To date, our investigation has found no evidence that any of our systems or data were affected. We continue to monitor the situation closely.\u201d<\/span>\u00a0<\/span><\/p>\n

\u00a0<\/span>The attacks highlighted in this report aren\u2019t just incidents, they\u2019re blueprints of the adversary\u2019s arsenal. To protect your business you need the right partner. Cyberone is here to help! Check out our services<\/a>.<\/em><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"

As your dedicated cybersecurity services provider,\u00a0Cyberone\u00a0equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape. Weekly Cybersecurity Report | Week 45, 2024 Information security updates and events from the past week\u00a0 1 \u2013 A cybersecurity-attack led to the […]<\/p>\n","protected":false},"author":6,"featured_media":8609,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[58],"tags":[],"class_list":["post-9458","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-weekly-cyber-updates"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/9458","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/comments?post=9458"}],"version-history":[{"count":2,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/9458\/revisions"}],"predecessor-version":[{"id":9546,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/posts\/9458\/revisions\/9546"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/media\/8609"}],"wp:attachment":[{"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/media?parent=9458"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/categories?post=9458"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyberone.bg\/en\/wp-json\/wp\/v2\/tags?post=9458"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}