Hacks, Attacks and Breaches: 10/28/2020 to 11/3/2020
Here’s the latest installment of the Hacks, Attacks and Breaches cybersecurity news update.
The Logically team provides top cyber security stories every week to keep you up to date on the latest news headlines on cybersecurity, hacking, computer security, ransomware and other cybersecurity threats.
Steelcase: Furniture Manufacturer
Risk to Small Business: Furniture manufacturing giant Steelcase was hit with a nasty ransomware attack that forced a brief shutdown of all systems. The company was able to quickly contain the suspected Ryuk ransomware incident and says that no data was stolen. Recovery operations were fast and everything is back online.
How it Could Affect Your Business: These days, ransomware attacks aren’t just a threat to data – they’re being used to shut down production lines, impact infrastructure, and cause havoc.
Wisconsin Republican Party: Political Organization
Risk to Small Business: The Wisconsin Republican Party had a suspected phishing incident that couldn’t have come at a worse time. An estimated $2.3 million was stolen by cybercriminals from the party’s reelection fund after at least one staffer interacted with a phishing email, impacting operations just as the races were coming down to the wire. The FBI and local officials are investigating the incident.
How it Could Affect Your Business: Phishing is about more than just credential compromise. Today’s most dangerous attack is used to do everything from steal money to deploy malware.
Exploit: Unsecured Database
Ledger: Cryptocurrency Storage Platform
Risk to Small Business: Once again, Ledger is hot water for a cyberattack. This time, Ledger users received a phishing email that directed them to log in at a new address, allowing cybercriminals to steal both the victim’s login credentials and cryptocurrency. This is the company’s second incident this year, and information from that July 2020 incident is suspected to have played a part in this attack.
How it Could Affect Your Business: Cyberattacks can have cascading consequences, with information stolen in cyberattacks coming back to haunt businesses months or years later. Data like login credentials can live on in Dark Web data dumps to haunt you later.
Exploit: Unauthorized Database Access
Fragomen, Del Rey, Bernsen & Loewy: Law Firm
Risk to Small Business: Data theft at a top law firm that provides employment verification screening services for companies like Google exposed a small amount of sensitive data. An unauthorized intrusion into a database exposed the employment verification information for some current and past Google employees.
How it Could Affect Your Business: When you’re storing sensitive data, that information needs extra protection in order to really serve your clients.