Categories
The Week in Breach

The Week in Breach: 19/05/21 – 25/05/21

The spotlight is on supply chain risk and security blunders this week as we see the ripple effect of the Codecov and SITA supply-chain attacks continue. 
  United Kingdom – One Call Exploit: Ransomware
One Call: Insurer >> Read full details on our blog  
  United Kingdom – FastTrack Reflex Recruitment Exploit: Misconfiguration
FastTrack Reflex Recruitment: Staffing Firm  >> Read full details on our blog  
  Ireland – Ardagh Group Exploit: Ransomware
Ardagh Group: Packaging Manufacturer >> Read full details on our blog  
  United States – Bergen Logistics Exploit: Unsecured Database
Bergen Logistics: Shipping & Fulfillment >> Read full details on our blog  
  United States – Alaska Department of Health and Social Services Exploit: Malware
Alaska Department of Health and Social Services: Regional Human Services Agency >> Read full details on our blog  
  United States – Utility Trailer Manufacturing  Exploit: Ransomware
Utility Trailer Manufacturing: Trailer Fabrication >> Read full details on our blog  
  New Zealand – Waikato District Health Board Exploit: Ransomware
Waikato District Health Board: Regional Healthcare Agency >> Read full details on our blog  
  India – Air India Exploit: Third Party Data Breach
Air India: Airline  >> Read full details on our blog  
  India – Domino’s Pizza India Exploit: Hacking
Domino’s Pizza India: Restaurant Chain  >> Read full details on our blog  
  Japan – Mercari Exploit: Supply Chain Data Breach
Mercari: E-commerce Platform  >> Read full details on our blog  
Categories
Data Protection

Microsoft 365 – Is your data safe?

Think Microsoft 365 back up your data? Think again! Learn why you need business continuity. We can help #MSnetUk https://datto-content.amp.vg/web/plf0t5u14xnl

Categories
The Week in Breach

The Week in Breach: 12/05/21 – 18/05/21

In a Week in Breach first, it’s the All Ransomware Edition. Cybercrime gangs have been busy at Toshiba, Ireland’s health service, the US Veterans Administration and other organizations around the globe.
  Ireland – Health Service Executive (HSE)  Exploit: Ransomware
Health Service Executive (HSE): National Healthcare Provider  >> Read full details on our blog  
  United States – Three Affiliated Tribes  Exploit: Ransomware
Three Affiliated Tribes: Tribal Government Organization >> Read full details on our blog  
  United States – US Veterans Administration (VA)  Exploit: Third-Party Exposure (Ransomware)
Veterans Administration: Federal Agency >> Read full details on our blog  
  Germany – Brenntag Exploit: Ransomware
Brenntag: Chemical Distributor  >> Read full details on our blog  
  Norway – Volue  Exploit: Ransomware
Volue: Green Energy Solutions Provider >> Read full details on our blog  
  France – Acer Finance Exploit: Ransomware
Acer Finance: Financial Advisors  >> Read full details on our blog  
  Hong Kong – AXA Exploit: Ransomware
AXA: Insurance Company >> Read full details on our blog  
  Japan – Toshiba Exploit: Ransomware
Toshiba: Electronics Manufacturer >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 05/05/21 – 11/05/21

 Major breaches at two medical service providers are sending shockwaves throughout the industry.
  United States – MedNetwoRX  Exploit: Ransomware
MedNetwoRX: Medical Information Processing >> Read full details on our blog  
  United States – City of Tulsa Exploit: Ransomware
City of Tulsa: Municipality  >> Read full details on our blog  
  United States – Fermilab Exploit: Credential Compromise
Fermilab: Research Laboratory  >> Read full details on our blog  
  United States – BlueForce Inc. Exploit: Ransomware
BlueForce Inc.: Defense Contractor  >> Read full details on our blog  
  United States – CaptureRX  Exploit: Ransomware
CaptureRX: Medical Software Company >> Read full details on our blog  
  United States – Alaska Court System Exploit: Ransomware
Alaska Court System: Judicial Body  >> Read full details on our blog  
  Australia – NSW Labor Party Exploit: Ransomware
NSW Labor Party: Political Organization  >> Read full details on our blog  
  Australia – Schepisi Communications  Exploit: Ransomware
Schepisi Communications: Cloud Storage  >> Read full details on our blog  
  India – WedMeGood Exploit: Hacking
WedMeGood: Wedding Planning  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 28/04/21 – 04/05/21

It’s a very public-sector-oriented Week in Breach.

Ransomware woes have made a home in five North American locales (complete with a new gang on the scene) and trouble rained on everyone’s parade at Swiss Cloud.
  United Kingdom – Merseyrail  Exploit: Ransomware
Merseyrail: Train Operator  >> Read full details on our blog  
  United States – Metropolitan Police Department of the District of Columbia  Exploit: Ransomware
Metropolitan Police Department of the District of Columbia: Law Enforcement Agency  >> Read full details on our blog  
  United States – Illinois Office of the Attorney General  Exploit: Ransomware
Illinois Office of the Attorney General: State Government Agency   >> Read full details on our blog  
  United States – Pennsylvania Department of Health  Exploit: Third-Party Data Breach
Pennsylvania Department of Health: State Government Agency  >> Read full details on our blog  
  United States – Wyoming Department of Health   Exploit: Unsecured Data
Wyoming Department of Health: State Government Agency  >> Read full details on our blog  
  Canada – The Resort Municipality of Whistler  Exploit: Ransomware
The Resort Municipality of Whistler: Municipal Government  >> Read full details on our blog  
  Switzerland – Swiss Cloud  Exploit: Ransomware
Swiss Cloud: Cloud Hosting Provider  >> Read full details on our blog  
  Australia – UnitingCare Queensland  Exploit: Hacking
UnitingCare Queensland: Healthcare Support Services  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 21/04/21 – 27/04/21

Ransomware is a rising tide, setting new records in the UK, hitting Apple supplier Quanta, raining on airlines’ parades by taking down Radixx and flooding businesses with risk worldwide.

  United Kingdom – University of Portsmouth Exploit: Ransomware
University of Portsmouth: Institution of Higher Learning  >> Read full details on our blog  
  United States – Manhunt Exploit: Hacking
Manhunt: Dating App  >> Read full details on our blog  
  United States – Eversource Energy Exploit: Unsecured Database
Eversource Energy: Power Company  >> Read full details on our blog  
  United States – Radixx Exploit: Malware
Radixx: Software Company  >> Read full details on our blog  
  United States – Gyrodata Exploit: Ransomware
Gyrodata: Mining Technology  >> Read full details on our blog  
  France – Laurent Perrier Exploit: Ransomware
Laurent Perrier: Champagne Maker  >> Read full details on our blog  
  Australia – ClickStudios Exploit: Hacking
ClickStudios: Password Security Software Company  >> Read full details on our blog  
  Taiwan – Quanta Exploit: Ransomware
Quanta: Technology Manufacturing  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 14/04/21 – 21/04/21

This week has it all! Codecov discloses a doozy of a breach & ransomware wins at casinos in Tazmania
  United Kingdom – Castle School Education Trust  Exploit: Ransomware
Castle School Education Trust: School System   >> Read full details on our blog  
  United States – LogicGate  Exploit: Hacking
LogicGate: Software Company  >> Read full details on our blog  
  United States – Codecov Exploit: Third Party Data Breach
Codecov: Software and Cloud Developer  >> Read full details on our blog  
  Canada – The Regional Municipality of Durham Exploit: Third-Party Breach (Ransomware)
The Regional Municipality of Durham: Regional Government Services Entity  >> Read full details on our blog  
  Ireland – Matthew Clark Bibendum (MCB) Exploit: Ransomware
Matthew Clark Bibendum (MCB): Beverage Distributor  >> Read full details on our blog  
  Australia – Federal Group Exploit: Ransomware
Federal Group: Casino Operator  >> Read full details on our blog  
  Australia – Spotless Exploit: Ransomware
Spotless: Hospitality Services  >> Read full details on our blog  
  India – Bizongo Exploit: Hacking
Bizongo: Packaging Manufacturer  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 07/04/21 – 13/04/21

Cybercriminals leak the PII of millions of professionals in a new LinkedIn breach & an unwelcome visit by nation-state hackers exposes data at BlueCross BlueShield DC.
  Ireland – National College of Ireland Exploit: Ransomware
National College of Ireland: Institution of Higher Learning  >> Read full details on our blog  
  United States – CareFirst BlueCross BlueShield Community Health Plan District of Columbia (CHPDC)  Exploit: Nation-State Hacking
CareFirst BlueCross BlueShield’s Community Health Plan District of Columbia (CHPDC): Insurer >> Read full details on our blog  
  United States – Office Depot  Exploit: Unsecured Database
Office Depot: Business Supply Retailer  >> Read full details on our blog  
  United States – LinkedIn Exploit: Hacking
LinkedIn: Social Media Network   >> Read full details on our blog  
  United States – Personal Touch Holding Corp. (PTHC) Exploit: Hacking
Personal Touch Holding Corp. (PTHC): Home Healthcare Provider  >> Read full details on our blog  
  France – Pierre Fabre Exploit: Ransomware
Pierre Fabre: Pharmaceutical & Cosmetics Maker  >> Read full details on our blog  
  India – Upstox Exploit: Hacking
Upstox: Stock Trading App  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 31/03/21 – 06/04/21

A massive Facebook leak exposes personal data for millions in the US and India, the Clop ransomware gang had a very good week (and US universities had a very bad week).
  United States – Facebook Exploit: Hacking
Facebook: Social Media Company  >> Read full details on our blog  
  United States – The New York Foundling Exploit: Unsecured Database
The New York Foundling: Children’s Charity  >> Read full details on our blog  
  United States – University of Maryland Baltimore (UMB)  Exploit: Ransomware
University of Maryland Baltimore: Institution of Higher Learning  >> Read full details on our blog  
  United States – 200 Networks LLC Exploit: Ransomware
200 Networks LLC: Call Center Operatr >> Read full details on our blog  
  The Netherlands – Royal Dutch Shell Exploit: Ransomware
Royal Dutch Shell: Oil Company  >> Read full details on our blog  
  France – Asteelflash Exploit: Ransomware
Asteelflash: Electronics Manufacturer  >> Read full details on our blog  
   Italy – Boggi Milano Menswear Exploit: Ransomware
Boggi Milano Menswear: Luxury Fashion Retailer  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 24/03/21 – 30/03/21

 Hobby Lobby’s mistakes pack a high cost, Australia’s Channel 9 News gets knocked off the air by a cyberattack and production at Sierra Wireless gets held up by ransomware.
  United Kingdom – University of Northampton Exploit: Hacking
University of Northampton: Institution of Higher Learning  >> Read full details on our blog  
  United Kingdom – Fat Face Exploit: Malware
Fat Face: Clothing Retailer  >> Read full details on our blog  
  United States – Hobby Lobby Exploit: Misconfiguration
Hobby Lobby: Craft Supply Retailer  >> Read full details on our blog  
  United States – CNA Financial Exploit: Ransomware
CNA Financial: Insurer  >> Read full details on our blog  
  United States – California State Controller Exploit: Phishing
California State Controller: State Government Agency  >> Read full details on our blog  
  United States – PDI Group Exploit: Ransomware
PDI Group: Defense Contractor  >> Read full details on our blog  
  Canada – Sierra Wireless Exploit: Ransomware Sierra Wireless: Electronics Manufacturing >> Read full details on our blog  
  The Netherlands – RDC Exploit: Hacking
RDC: Maintenance & Garage Services  >> Read full details on our blog  
  Australia – Channel Nine Exploit: Ransomware
Acer: Computer Manufacturer  >> Read full details on our blog