Categories
The Week in Breach

The Week in Breach: 09/12/20 – 15/12/20

This week’s one for the books! 

Nation-state hackers mount a huge campaign against cybersecurity companies and several US federal agencies, the EU’s drug regulator takes a hit, new insight into cyberattack response plan essentials, and fake Zoom invite pitfalls abound.  

Major attacks by suspected Russian nation-state hackers on US Federal agencies including the departments of Commerce, Treasury, and Homeland Security have rocked the public and defense cybersecurity sectors.

Dark Web ID’s Top Threats This Week

Top Source Hits: ID Theft Forum
Top Compromise Type: Domain
Top Industry: Education & Research
Top Employee Count: 11 – 50  
  United States – SolarWinds Exploit: Hacking (Nation-State)
SolarWinds: Cybersecurity Software Developer  >> Read full details on our blog  
  United States – FireEye Exploit: Hacking (Nation-State)
FireEye: Cybersecurity Solutions Development and Testing   >> Read full details on our blog  
  United Kingdom – Marriage Tax Refund Exploit: Misconfiguration
Marriage Tax Refund: Tax Relief Advisory Firm  >> Read full details on our blog  
  United States – Netgain Exploit: Ransomware
Netgain: Data Hosting Provider  >> Read full details on our blog  
  United States – Dental Care Alliance Exploit: Hacking
Dental Care Alliance: Dental Practice Support Organization  >> Read full details on our blog  
  Canada – Parkland Corp. Exploit: Ransomware
Parkland Corp.: Motor Fuel Distributor  >> Read full details on our blog  
  The Netherlands – European Medicines Agency (EMA) Exploit: Hacking (Nation-State)
EMA: International Drug Regulation Authority  >> Read full details on our blog  
  Australia – Epicor Software Exploit: Hacking
Epicor Software: Software Developer  >> Read full details on our blog  
  Taiwan – Foxconn Exploit: Ransomware
Foxconn: Electronics Manufacturer  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 02/12/20 – 08/12/20

Egregor ransomware flies high with hits on everything from retail to infrastructure and manufacturing targets, two plane manufacturers have their wings clipped, a warning about this year’s Amazon phishing scams in the work from home era, and our holiday electronic bookshelf essentials list.

Dark Web ID’s Top Threats This Week

Top Source Hits: ID Theft Forum
Top Compromise Type: Domain
Top Industry: Energy & Transportation
Top Employee Count: 1 – 10  
  United States – Greater Baltimore Medical Center Exploit: Ransomware
Greater Baltimore Medical Center: Hospital  >> Read full details on our blog  
  United States – AspenPointe Exploit:  Unauthorized Database Access
AspenPointe: Healthcare Non-Profit  >> Read full details on our blog  
  United States – Philabundance Exploit: Business Email Compromise
Philabundance: Hunger Relief Non-Profit >> Read full details on our blog  
  United States – Kmart Exploit: Ransomware
Kmart: Retail Store Chain  >> Read full details on our blog  
  United States – Alaska Division of Elections Exploit: Hacking
Alaska Division of Elections: State Agency  >> Read full details on our blog  
  Canada – Metro Vancouver Exploit: Ransomware
Metro Vancouver: Public Transportation Authority >> Read full details on our blog  
  Switzerland – Kopter Group Exploit: Ransomware
Kopter Group: Helicopter Manufacturer  >> Read full details on our blog  
  The Netherlands – Randstad Exploit: Ransomware
Randstad: Staffing Firm  >> Read full details on our blog  
  The Netherlands – Royal Dutch Cycling Union Exploit: Ransomware
Royal Dutch Cycling Union: Sport Governing Body  >> Read full details on our blog  
  Australia – Loch Rannoch Highland Club Exploit: Insider Threat (Employee Error)
Loch Rannoch Highland Club: Private Resort  >> Read full details on our blog  
  Brazil – Embraer Exploit: Ransomware
Embraer: Airplane Manufacturer  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 25/11/20 – 01/12/20

This week:

Baltimore County Public Schools learn a lesson about ransomware and healthcare targets worldwide take security hits. 
  United Kingdom – National Health Service Exploit: Insider Threat (Employee Error)
National Health Service: National Healthcare System  >> Read full details on our blog  
  United States – Baltimore County Public Schools Exploit: Ransomware
Baltimore County Public Schools: School System  >> Read full details on our blog  
  United States – Belden Exploit: Unauthorized Database Access
Belden: Signal Transmission Solutions Manufacturer  >> Read full details on our blog  
  United States – Spotify Exploit: Credential Stuffing
Spotify: Digital Music Streaming Service  >> Read full details on our blog  
  United States – LSU Health New Orleans Exploit: Unauthorized Systems Access
LSU Health New Orleans: Medical System  >> Read full details on our blog  
  United States – Sophos Exploit: Misconfiguration
Sophos: Cybersecurity Provider  >> Read full details on our blog  
  United States – US Fertility Exploit: Ransomware
US Fertility: Specialty Medical Clinic Operator  >> Read full details on our blog  
  Holland – Endemol Shine Group Exploit: Ransomware
Endemol Shine Group: Television Production & Distribution  >> Read full details on our blog  
  Denmark – Ritzau Exploit: Hacking
Ritzau: News Wire Service  >> Read full details on our blog  
  India – IIAM Exploit: Data Theft
IIAM Jobs: Job Search & Listing Provider  >> Read full details on our blog  
  Australia – Law In Order Exploit: Ransomware
Law In Order: Legal Document Services Provider  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 18/11/20 – 24/11/20

 
This week:

Ransomware scores at Manchester United and chills Americold, Managed.com gets rocked by REvil and Luxottica’s data breach nightmare continues! 

Dark Web ID Trends: 

Top Source Hits: ID Theft Forums
Top Compromise Type: Domain
Top Industry: Education & Research
Top Employee Count: 101 – 250  
  United Kingdom – Manchester United Exploit: Malware
Manchester United: Football (Soccer) Club  >> Read full details on our blog  
  United States – Managed.com  Exploit: Ransomware
Managed.com: Web Hosting Provider  >> Read full details on our blog  
  United States – Mercy Iowa City Exploit: Unauthorized Access
Mercy Iowa City: Medical Center  >> Read full details on our blog  
  United States – TronicsXchange Exploit: Misconfiguration
TronicsXchange: Used Electronics Dealer  >> Read full details on our blog  
  United States – American Bank Systems Exploit: Ransomware
American Bank Systems: Software Services Provider  >> Read full details on our blog  
  United States – Americold Exploit: Ransomware
Americold: Cold Storage and Logistics  >> Read full details on our blog  
  United States – Port of Kennewick Exploit: Ransomware
Port of Kennewick: Municipal Agency  >> Read full details on our blog  
  United States – Kenneth Copeland Ministries  Exploit: Ransomware
Kenneth Copeland Ministries – Televangelism >> Read full details on our blog  
  Italy – Luxottica Exploit: Ransomware
Luxottica: Eyewear Manufacturer  >> Read full details on our blog  
  South Korea – E-Land Exploit: Ransomware
E-Land: Fashion and General Goods Retailer  >> Read full details on our blog  
  Japan – Mitsubishi Electric Exploit: Hacking
Mitsubishi Electric: Electrical Equipment Manufacturer  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 11/11/20 – 17/11/20

This week: 

Hackers scale The North Face!

Ransomware rocks eCommerce. 

Dark Web ID Trends: 

Top Source Hits: ID Theft Forums
Top Compromise Type: Domain
Top Industry: Education & Research
Top Employee Count: 501+

  United Kingdom – Sandcliffe Motor Group Exploit: Phishing
Sandcliffe Motor Group: Automobile Retailer  >> Read full details on our blog  
  United States – Delaware Division of Public Health Exploit: Accidental Data Sharing
Delaware Division of Public Health: State Health Agency  >> Read full details on our blog  
  United States – Vertafore Inc. Exploit: Unsecured Database
Vertafore Inc.: Insurance Company  >> Read full details on our blog  
  United States – X-Cart  Exploit: Third Party Software 
X-Cart: eCommerce Platform Creator  >> Read full details on our blog  
  United States – Wildworks (Animal Jam) Exploit: Third-Party Data Breach
Wildworks: Video Game Developer  >> Read full details on our blog  
  United States – Pluto TV Exploit: Hacking
Pluto TV: Online Television Service  >> Read full details on our blog  
  United States – The North Face Exploit: Credential Stuffing
The North Face: Outdoor Apparel Retailer   >> Read full details on our blog  
  Canada – The City of Saint John, N. B. Exploit: Ransomware
The City of Saint John, N. B.: Municipal Government >> Read full details on our blog  
  Germany – Miltenyi Biotec  Exploit: Malware
Miltenyi Biotec: Cell and Therapy Research Solutions Provider  >> Read full details on our blog  
  Australia – Nexia Australia and New Zealand Exploit: Ransomware
Nexia Australia and New Zealand: Accounting Firm >> Read full details on our blog  
  India – Press Trust of India Exploit: Ransomware
Press Trust of India: News Reporting Service >> Read full details on our blog  
  Singapore – RedDoorz Exploit: Unauthorized Database Access
RedDoorz: Hotel Management and Booking Platform >> Read full details on our blog  
  Malaysia – 123RF Exploit: Unauthorized Database Access
123RF: Stock Photo Service >> Read full details on our blog  
  Chile – Cencosud Exploit: Malware
Cencosud: Retail Conglomerate >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 04/11/20 – 10/11/20

This week: 
Capcom discovers ransomware isn’t a game, Magecart hackers strike gold from JM Bullion and healthcare cyberattack warnings come to fruition.

Dark Web Trends:  Top Source Hits: ID Theft Forums
Top Compromise Type: Domain
Top Industry: Finance & Insurance
Top Employee Count: 501+  
  United Kingdom – Flagship Group Exploit: Ransomware
Flagship Group: Rental Housing Facilitator  >> Read full details on our blog  
  United States – JM Bullion  Exploit: Skimming (Magecart)
JM Bullion: Precious Metals Dealer  >> Read full details on our blog  
  United States – University of Vermont Medical Center Exploit: Ransomware
University of Vermont Medical Center: Hospital System  >> Read full details on our blog  
  United States – GrowDiaries Exploit: Misconfiguration
GrowDiaries: Industry Blogging Platform  >> Read full details on our blog  
  United States – Mattel Exploit:  Ransomware
Mattel: Toymaker  >> Read full details on our blog  
  United States – GEO Group Exploit: Ransomware
GEO Group: Private Prison Developer  >> Read full details on our blog  
  Canada – Saskatchewan Polytechnic Exploit: Ransomware
Saskatchewan Polytechnic: Institution of Higher Learning  >> Read full details on our blog  
  Sweden – Folksam Insurance Group Exploit:  Accidental Data Sharing
Folksam Insurance Group: Insurance Company  >> Read full details on our blog  
  Spain – Prestige Software Exploit: Misconfiguration
Prestige Software: Travel Industry Software Developer  >> Read full details on our blog  
  Italy – Campari Group Exploit: Ransomware
Campari Group: Beverage Vendor   >> Read full details on our blog  
  India – Lupin Exploit: Ransomware
Lupin: Drugmaker  >> Read full details on our blog  
  Japan – Capcom Co. Ltd. Exploit: Ransomware
Capcom Co. Ltd – Videogame Company  >> Read full details on our blog  
  Brazil – Superior Court of Justice Exploit: Ransomware
Superior Court of Justice: Judiciary Body  >> Read full details on our blog