3.9 min to readCloud ServicesDigital WorkplaceNews and Updates

Cyber security update, October

Ravi Bindra
Ravi BindraCISO
A building is lit up at night.

SoftwareOne believes there is a need for additional information when it comes to cyber security, as organizations have made it clear that investment in a proper security strategy is paramount. SoftwareOne’s monthly “Cyber Security Update” provides information on the most recent threats, the latest breaches and how to react to them in order to stay on top of malware and ransomware threats.

Latest security breaches

Japanese tech giant, Nidec Corporation suffered a ransomware attack, leading to data theft and leakage on the dark web, potentially exposing its employees and partners to targeted phishing attacks. The cyberattack targeted Nidec's Precision division in Vietnam, resulting in the theft of over 50,000 files, including internal documents, business partner letters, and procurement-related documents.

Casio confirms a ransomware attack resulted in the theft of personal and confidential data of employees, job candidates, and some customers. The stolen data includes personal information, financial data, and sensitive documents related to employees, business partners, and customers.

Fidelity Investments, a global financial services company experienced a significant data breach, exposing the personal information of over 77,000 customers, but there is no evidence that the stolen data has been misused. The breach occurred when an unknown attacker accessed data using two recently established customer accounts, prompting Fidelity to provide two years of free credit monitoring and identity restoration services to affected customers.

In another data breach, Security company ADT credentials have been stolen from a third-party business partner, leading to the exfiltration of encrypted employee account data. The company responded by terminating unauthorized access, initiating an investigation with cybersecurity experts, and experiencing disruption to its information systems.

Landmark Admin, an insurance administrative services company, experienced a data breach affecting over 800,000 individuals as a result of a cyberattack. The breach involved unauthorized access to personal information such as names, addresses, social security numbers, financial account numbers, and medical information. The company shut down its IT systems and engaged a cybersecurity firm for remediation and investigation.

In another significant data breach, approximately 470,000 individuals records were affected at California health center Omni Family Health, exposing sensitive personal and medical information. The stolen information includes names, addresses, dates of birth, Social Security numbers, health insurance and medical details for patients, as well as financial account information for employees.

Varsity Brands, a major apparel company, suffered a data breach affecting over 65,000 individuals, prompting the offer of free credit monitoring and identity theft protection services. The breach, potentially involving ransomware, led to the unauthorized access of a small subset of personal files, prompting the company to enlist external cybersecurity experts and notify law enforcement.

In another massive data breach, Gryphon Healthcare and Tri-City Medical Centre experienced data breaches, compromising the personal information of over 500,000 individuals. Gryphon is offering free identity theft protection services to the 393,358 affected individuals, while Tri-City is providing similar services to 108,149 impacted people.

Cyber security awareness

CISA has collaborated with the National Cybersecurity Alliance (NCA) to create resources and messaging for organizations to use to build their own Cybersecurity Awareness Month campaigns. In the event, various topics will be explored including how cybersecurity professionals and the public sector can work together to address emerging technologies and implement Secure by Design best practices.

Kerberoasting is a significant threat to Active Directory environments, exploiting weak passwords to gain unauthorized access to service accounts and potentially enabling lateral movement. Using Group Managed Service Accounts (gMSA) or Delegated Managed Service Accounts (dMSA) can enhance security by providing centralized credential management and resisting brute-force attacks.

Cyber security intelligence

The FBI and CISA have released a public service announcement warning about foreign threat actors spreading disinformation during the 2024 U.S. general election. The announcement highlights tactics used by foreign adversaries, such as creating fake news sites and using AI-generated content. They urge the public to verify information from trusted sources and remain vigilant.

The World Economic Forum's latest report emphasizes the need for a fundamental shift in how emerging technologies are developed and deployed to address cybersecurity challenges.

Read the full report here.

A blue ocean with sunlight shining through the water.

Secure your Digital Workplace with SoftwareOne

We provide comprehensive security services that enable you to protect your data, devices, and users across your digital workplace. Whether you use Microsoft 365, Google Workspace, AWS, or any other platform, we can help you achieve a robust and resilient security posture that supports your business objectives.

Secure your Digital Workplace with SoftwareOne

We provide comprehensive security services that enable you to protect your data, devices, and users across your digital workplace. Whether you use Microsoft 365, Google Workspace, AWS, or any other platform, we can help you achieve a robust and resilient security posture that supports your business objectives.

Author

Ravi Bindra

Ravi Bindra
CISO

Ravi holds over 20 years’ experience as a cyber security evangelist, holding multiple leadership roles in the Swiss pharmaceutical industry, such as Global Head of Risk Management, Global Head of Architecture and Global Head of Security Operations.