Weekly
June 24th - 28th, 2024
A hacker compromised a cloud database platform (Snowflake) used by Neiman Marcus, allowing unauthorized access. Names, contact information, dates of birth, and some gift card numbers (without PINs) were exposed. This breach impacted approximately 64,472 customers. Read more
Evolve Bank was hit by a ransomware attack in late May 2024, likely through a phishing email. The LockBit ransomware group claimed responsibility and leaked data on the dark web after the bank refused to pay. While financial credentials seem secure, the leaked data may include names, Social Security numbers, and other personal information. Read more
Fast food giant Jollibee is investigating reports of a data breach involving its delivery systems, acknowledged to have affected 32 million customers. Cybersecurity group Deep Web Konek reported the personal details of customers, including names, addresses, phone numbers and order history, were being sold online. Jollibee said it was taking the matter seriously to understand the full scope but e-commerce systems were unaffected. Read more
Ascension's investigation into their major ransomware attack in May revealed it started with an employee downloading a seemingly legitimate but malicious file. It impacted systems like MyChart and disrupted operations. Attackers accessed 7 servers where PHI and PII may have been stolen. The Black Basta ransomware gang is believed responsible for this incident. Read more
The recent ransomware attack on CDK Global highlighted the devastating impact such incidents can have on automotive dealerships and the entire industry supply chain. With over 15,000 stores locked out of essential systems, the disruption rippled across North America. To learn more about ransomware threats, techniques used, and best practices for prevention and mitigation, read our full blog examining the vulnerabilities within the automotive sector and steps businesses can take to strengthen their cyber defenses. Read more
Banking giant Truist confirmed experiencing a cybersecurity attack in October 2023 after stolen data, including details of 65,000 employees and account information, surfaced online for sale. An investigation found no evidence of fraud or links to other incidents like the Snowflake compromises. Additional customers were notified based on new information. Read more
Add Disaster Recovery (DR) to your Wasabi or better, Upgrade to Wasabi with Air-Gapped and Immutable Plus Disaster Recovery (DR).
Protect your valuable assets, minimize downtime, restore to the cloud while performing forensics. Cleanup, securing safe available resources, and restoring your on-prem.
This also qualifies you for the Protection Plus program, which provides continuous monitoring and Professional Services to optimize and protect you against Ransomware.
For details, contact us.
Weekly
June 17th - 21st, 2024
The hacker collective IntelBroker alleges a major data breach at Apple involving internal source codes. IntelBroker published authentication, teamwork and processes codes, which if real, may undermine Apple's security by exposing flaws and putting staff information at risk. Apple has yet to confirm the breach. Read more
The group Intelbroker claims to have infiltrated extensive AMD resources including unreleased products, source code, employee and customer information in a major computer intrusion. As Intelbroker is experienced in targeting other tech firms, the stolen AMD materials could potentially enable industrial spying, ransom demands or broader geopolitical goals if disclosed. AMD is investigating the validity and scope of the reported security incident. Read more
CDK Global, a leader in automotive dealership management platforms, underwent a major cyber attack on June 19th that forced the shutdown of essential operations for thousands of vehicle sellers across America. The digital incident disrupted activities such as sales, repairs and inventory management, pushing many to temporary manual workarounds during ongoing recovery efforts from an unspecified cybersecurity event. Read more
The Biden administration will prohibit the purchase and distribution of Kaspersky antivirus software nationwide by September 2024 due to persisting national security concerns regarding the company's reported connections to Russia. While Kaspersky rejects wrongdoing, the US is uneasy about potential surveillance of American networks and data retrieval capabilities that could be leveraged by Moscow. The ban will significantly impact organizations and individuals transitioning protection options. Read more
Qilin (Agenda) ransomware, responsible for the recent London hospitals cyberattack, is a relatively new ransomware strain written in advanced programming languages like Golang and Rust. It leverages techniques like double extortion, encryption customization, and critical system targeting to severely disrupt operations. In this blog, explore this cyberthreat in detail, learn the techniques it uses to infiltrate enterprise networks, and how to stop it. Read more
Maxicare Health, a prominent insurance organization in the Philippines, reported over 13,000 customer records were exposed after a third-party homecare service experienced a cybersecurity incident. While medical particulars were safe, private identifiers like names, emails, addresses and bookings became compromised putting member privacy at risk without consent. Read more
200TB Veeam, Rubrik, Commvault Fully automated Immutable and Air-gapped Backup & DR Appliance with object lockdown, file lockdown, incremental and full snapshots, replication, and instant multi-VM recovery for $14,995.
It is 2U, 12 Bay, Rackmount unit with 11x18TB Enterprise SAS drives, 12 Core Storage Virtualization Engine, 128GB System Memory, 960GB PCI-E Based NVMe SSD for Virtualization and Storage Engine, Dual 10Gb RJ-45 Ports, 800W Hot-Swappable Power Supply, 12Gb SAS Hardware RAID Controller. 2 hours of Professional Services for Remote Installation, Configuration, Testing and Training. 1 Year Silver Support service from Ship date.
Data services such as immutable snapshot, encryption (Hardware), Dedupe (hardware), Replication (Sync, Async), Thin provisioning, HOT/COLD Tiering, Flash Cache (NVMe+SSD), WORM (Immutable policy-based vault), Predictive failure, call home, Real-time performance, report, and notification are available as an option if needed.
For details, contact us.
Weekly
June 3rd - 7th, 2024
Ransomware disrupted UK pathology provider Synnovis' IT systems, temporarily delaying blood test results for major London hospitals served by the company. The outage posed risks for trauma patients needing urgent transfusions. Cyber agencies assisted hospitals to minimize patient care disruptions from the security breach however the scale of the impact is huge. Read more
Hackers claim stealing 380 million customer records from Advance Auto Parts stored in Snowflake accounts. Data includes names, addresses, orders, payments. Data is now sold online though Snowflake denies system vulnerabilities, it admits that some accounts were breached using stolen employee login credentials. Read more
Criminals exploited a vulnerability in April to access the popular e-commerce platform PandaBuy's customer database and servers, extracting over 310,000 users' profiles with personal and financial details. The stolen data remains for sale while experts warn of identity theft and phishing risks for affected users. Read more
In February, debt collector FBCS suffered a breach compromising sensitive information of over 3.2 million Americans, but the company took over two months to begin notifying victims. At least 14 resulting lawsuits allege failures in protecting consumer data and complying with timely breach disclosure laws. Read more
While the 3-2-1 backup rule has long served as the gold standard for data protection, modern threats require expanding this approach. With rampant ransomware incidents, the 3-2-1 rule alone may no longer provide adequate defense for your valuable information. To truly safeguard your data, additional layers of immutability and monitoring are essential. Learn how Veeam ONE v12 builds upon the 3-2-1 standard with powerful features like immutable backups and activity tracking. Read more
Investigations traced unauthorized access of data at multiple companies, including breaches impacting Ticketmaster and Santander Bank, back to theft of customer records stored with cloud provider Snowflake. One hacker claimed to have stolen hundreds of accounts after accessing some through pilfered credentials. Read more
100TB Fully Air Gapped and Immutable Veeam Backup and DR appliance with Object Lockdown Technology for Ransomware protection & Instant multi VM recovery.
It is 2U, 8 Bay Rackmount unit with 6x16TB Enterprise SAS drives, 12 core Storage Virtualization Engine, 128GB System Memory, 512GB NVMe SSD, Hot-Swappable Power Supply, 12Gb SAS Hardware RAID Controller. Fully Integrated SAN, NAS and optional S3 cloud object storage.
This powerful 100TB DR365-V site in a box leverages Veeam-integration using the built-in Air-Gapped network, power management controller repository and storage controller using fully automated and Veeam integrated isolation technology.
Data services such as immutable snapshot, encryption (Hardware), Dedupe (hardware), Replication (Sync, Async), Thin provisioning, HOT/COLD Tiering, Flash Cache (NVMe+SSD), WORM (Immutable policy-based vault), Predictive failure, call home, Real-time performance, report, and notification are available as an option if needed.
For details, contact us.