cyber-security-update-june-2021

June 2021

Cyber Security Update

Cyber Security Update June 2021

We believe there is a need for additional information when it comes to cybersecurity, as organizations have made it clear that investment in a proper security strategy is paramount. SoftwareONE’s monthly Cyber Security Update provides information on the most recent threats and breaches and how to react to them so you can stay on top of malware and ransomware threats.

Latest Security Breaches

A misconfigured cloud database exposed over 800 million records linked to WordPress users.

West Virginia´s unemployment agency WorkForce was affected by a security breach while an unauthorized individual accessed a job-seekers database.

Computer storage supplier ExaGrid paid nearly $3M to criminals who infected its corporate network with ransomware.

FUJIFILM Corporation suffered a ransomware attack that disrupted its business operations.

A data breach at Maximus Corp., a global provider of government health data services, exposed the personal information of more than 334,000 Medicaid healthcare providers.

The Chinese ecommerce giant Alibaba’s Taobao shopping platform suffered a data leak that exposed over 1.1B records of user information.

The German luxury carmaker Mercedes-Benz disclosed a data leak in the USA on the part of a third-party vendor that exposed the personal information of up to 1.6M prospective and actual customers.

McDonald's Corp suffers a data breach. Hackers exposed U.S. business information and some customer data in South Korea and Taiwan.

Cybersecurity Awareness

Remote Access Trojan (RAT) is now targeting schools with ransomware. The RAT has recently shifted its focus from government agencies to schools in the US.

Nobelium, which also conducted the SolarWinds supply chain attack, intruded Microsoft's customer support system. The information-stealing malware was found on a device belonging to one of Microsoft's customer support agents.

Ransomware is one of the key cybersecurity threats. Recent incidents, like ransomware attacks against Colonial Pipeline and meat processor JBS, have demonstrated how disruptive these cyber-criminal campaigns can be to critical services.

Patch now: Companies running VMware vCenter Server and VMware Cloud Foundation software need to update as soon as possible because attackers are scanning the internet for vulnerable servers.

Microsoft warns: Now attackers are using a call center to trick you into downloading ransomware. Usually, the attack starts with phishing emails advising the potential victim that a trial subscription has expired and that they will be automatically charged a monthly fee unless they call a number to cancel the trial.

Cybersecurity Intelligence

Spear-Phishing attack is directing recipients to download a fake Windows Application impersonating a financial institution.

Microsoft noted a driver being distributed within gaming environments that turned out to be a malicious network filter rootkit. The driver, called “Netfilter,” is a rootkit that talks to Chinese C2 IPs and aims to spoof gamers´ geo-locations to cheat the system and play from anywhere.

NVIDIA Patches High-Severity GeForce Spoof-Attack Bug. The bug is tracked as CVE‑2021‑1073, with a CVSS severity rating of 8.3 (high).

Cisco ASA bug now actively exploited as PoC Drops. In-the-wild XSS attacks have commenced against the security appliance (CVE-2020-3580), as researchers publish exploit code on Twitter.

Hot Topic of the Month: How Much Is Your Data Worth to Hackers?

Why would someone want to hack your company? Generally, the motivation to access an account, steal an identity or take over a PC is selling the data to make a buck. According to Verizon’s annual data breach report, 86% of all data breaches in 2020 were about money.

When a system is breached and personal data is stolen, the hacker involved in the malicious activity will typically sell or advertise that data on the dark web. Even if your company is small, a hacker will cast a wide net to obtain stolen information from multiple sources.

Here’s how much hackers earn after stealing personal data:

  • Credit card with PIN: $15-$35
  • Credit card details: $150-$240
  • Stolen online banking logins: $40-$120
  • Hacked email accounts (Groups of 2,500+) – $1-$15
  • Hacked Social Media Account - $35-$80
  • Stolen identity – $0.10-$1.50
  • ID/passport scans or templates: $1-$35
  • Mobile phone online account: $15-$25
  • Full ID packages (name, address, phone, SSN, email, bank account): $30-$100.
  • Medical notes and prescriptions: $15-$20
  • Hotel loyalty from reward program accounts with 100,000 points – $10-20
  • Cloud service account – $5-$10

(Sources: Symantec, PrivacyAffairs.com)

While these numbers may seem small in terms of individual records of data, just multiply by the size of a data breach, in hundreds of thousands to millions, and you can see how the payout increases exponentially. If you store passport data, how much could a hacker earn by breaching your database? If you process online payments, how much could a hacker earn by skimming your site? The cost of the individual may be minor, but when you view it in terms of entire databases of personal information, the costs can make a huge impact.

Identify and Rectify Your IT Security Weaknesses Before Hackers Do

Data theft is usually financially driven. There are many ways for cybercriminals to get their hands on your personal data, including malware, phishing, password cracking and man-in-the-middle attacks. Start mitigating the risks you face with professional Penetration Testing.

Be Cyber Smart
  • Cybersecurity, Managed Security, Cybersecurity User Awareness, Cyber Threat Bulletin
  • Data Security, Information Security, Cyber Threats, Cyber Awareness

Comment on this article

Leave a comment to let us know what you think about this topic!

Leave a comment

Author

Bala Sathunathan

Bala Sethunathan

Director, Security Practice & CISO

Cybersecurity

Related Articles

cyber-security-update-august-2021
  • 15 September 2021
  • Bala Sethunathan
  • Cybersecurity, Managed Security, Cyber Threat Bulletin, Cybersecurity User Awareness
  • Cyber Threats, Ransomware, Vulnerability Management

Cyber Security Update August 2021

Accenture and Bangkok Airways suffer from a LockBit Ransomware Attack. Learn why ransomware attacks have become a favorite form of attack.

cyber-security-update-july-2021
  • 09 August 2021
  • Bala Sethunathan
  • Cybersecurity, Managed Security, Cyber Threat Bulletin, Cybersecurity User Awareness
  • Cyber Threats, Physical Security Risks

Cyber Security Update July 2021

At least one in three reported data breaches involved an insider. Accidental and malicious insider risk can cost businesses 20% of their annual revenue.

nonprofits-approach-to-cybersecurity

6 Ways to Strengthen Your Nonprofit’s Approach to Cybersecurity

By following a few best practices, your nonprofit will be able to protect itself against modern cybersecurity threats. Read on to learn how to protect your NPO.