Global air transport data giant SITA has confirmed a data breach involving passenger data. The company said in a brief statement on Thursday that it had been the “victim of a cyberattack,” and that certain passenger data stored on its U.S. servers had been breached. The cyberattack was confirmed on February 24, after which the company contacted affected airlines.
ISBuzz Team
Cybersecurity expert provides an insight on the news that the US govt has expressed growing concern over a hack on Microsoft’s Exchange email software that the tech company has blamed on China.
The European Banking Authority, a key EU financial regulator, confirmed it has fallen victim to a hack of its Microsoft email system which the US company blames on a Chinese group. Microsoft said last week that a state-sponsored group operating out of China was exploiting previously unknown security flaws in its Exchange email services to steal data from business and government users, believed to number in the tens of thousands so far.
A poll of more than 500 business leaders found nearly a quarter of UK SMEs — equivalent to 1.3m companies — were likely to go bust if they were forced to deal with the average cost of a cyber attack. The research, commissioned by Vodafone, also showed that 16 percent of firms would likely be forced to lay off staff in the event of a hack. As a result, the report called on ministers to beef up the country’s corporate cyber defenses, warning that a failure to do so could hamper the post-pandemic economic recovery.
It has been reported that a security flaw in a website run by the government of West Bengal in India exposed the lab results of at least hundreds of thousands of residents, though likely millions, who took a COVID-19 test. The website is part of the West Bengal government’s mass coronavirus testing program. Once a COVID-19 test result is ready, the government sends a text message to the patient with a link to its website containing their test results. The researcher found that the link containing the patient’s unique test identification number was scrambled with base64 encoding, which can be easily converted using online tools.…
US healthcare provider Elara Caring has disclosed a data breach that exposed 100,000 patients’ information after an intruder gained access via a phishing attack targeting employees.
A number of Nottinghamshire schools suffered a cyber attack that resulted in the shutdown of their IT systems and hence affecting their online offering for students at home. The incident was reported on Wednesday morning (March 3) through social media channels for a few of the schools and is now being investigated.
Infosec outfit Qualys, its cloud-based vulnerability detection technology, and SSL server test webpage have seemingly fallen victim to a ransomware attack. Files appearing to originate from Qualys, including customer invoices, were dumped online, on the Tor blog of the extortionists, Clop, whose recent victims include Canadian aerospace firm, Bombardier.
It has been reported that the leading payroll company PrismHR is suffering a massive outage after suffering a cyberattack this weekend that looks like a ransomware attack from conversations with customers. PrismHR is an online payroll, benefits, and human resources platform serving over 80,000 organizations with 2 million employees and total annual payrolls of over $80 billion.
The chief technology officer provides an insight on new version of Ryuk ransomware after Agence Nationale de la Sécurité des Systèmes d’Information (ANSSI) warned that a variant of Ryuk with dangerous new capabilities has been spotted in the wild. The ANSSI wrote: “First observed in August 2018, the Ryuk ransomware has since been used in Big Game Hunting operations. It is characterized by the use of different infection chains and the extreme speed of the Bazar-Ryuk chain, as well as the absence of a dedicated leak site. A Ryuk variant with worm-like capabilities, allowing it to spread automatically over the local network, was recently discovered during incident response.””A Ryuk variant with worm-like capabilities, allowing it to spread automatically over the local network, was recently discovered…