Wide range of topics including some good advice about network segmentation, more Snowflake attacks, several material cases of operational disruption, and a company that is having to liquidate due to a cyber attack.
General
- Implement Network Segmentation and Encryption in Cloud Environments – In the Target breach several years ago, access to customer info was gained through air conditioning equipment on the same network. Proper segmentation would have had those two things on different networks that could not talk to one another.
- IoT Vulnerabilities Skyrocket, Becoming Key Entry Point for Attackers – IoT can be vulnerable like anything attached to the network. As mentioned above, Segmentation is highly recommended with these devices.
- TikTok says cyberattack targeted brands and celebrity accounts, including CNN – Who manages your social accounts? Who has access? How are they protected? What could a malicious person do if they gained access to your social accounts?
Data Loss
- Advance Auto Parts stolen data for sale after Snowflake attack – Snowflake is a third party credential service that has said they are not responsible…but this is the third big client of theirs to experience a breach.
- Pure Storage admits breach related to Snowflake workspace – Uhhh – one more, and this article claims the number is 165 orgs breached. BUT, in each of these cases the org was not using MFA.
- MediSecure Files for Liquidation Following Major Data Breach – Last month they disclosed a breach of 400,000 records. This month they are liquidating because they were not prepared.
- Data Leak Exposes Business Leaders and Top Celebrity Data
Operational Disruption
- Critical incident declared as ransomware attack disrupts multiple London hospitals
- ‘Fog’ Ransomware Rolls in to Target Education, Recreation Sectors – the technical details aren’t important, but the fact that they are specifically targeting underfunded orgs as easy prey is. These attacks start with a credential breach, so good password hygiene and MFA helps a lot.
- Cyber incident forces Cleveland to shut down city hall
- Hactivits use DDOS to disrupt elections – Unlike ransomware disruption, these attacks are often more about recognition and disruption to make a point, versus $$$.
Social Engineering
- Phishing Kit Targets European Banks, Bypasses MFA – I recently attended a talk on MFA evasion, and let’s just say it is not a silver bullet and not all MFA is equal. Some are better than others. Definitely a needed tool for ALL organizations today, but should only be part of a larger defense in depth strategy.
Vulnerabilities, Malware, & Patches
- Fortinet Releases Security Updates for FortiOS
- Chinese Fortigate Campaign ‘much larger than previously known’
- TellYouThePass Ransomware Exploits Critical PHP Flaw, Patch NOW
- Critical ‘low complexity’ Windows bug patched; Part of June 2024 Patch Tuesday
Phishy Phirewalls – the lighter side of security!
HopeNet (HopeNetCISO.com) reviews a variety of security news sources so you do not have to! The list below represents items relevant to churches, nonprofits, and charities. The headlines and our added comments are meant to provide enough to get an overview of recent happenings, but links are also provided for readers that want to explore certain topics deeper.
If this was shared with you and you would like to receive a copy directly to your email, please subscribe at HopeNetCISO.com. Thanks for reading!