Week in Breach 04/01/20 – 04/07/20

This week, ransomware slows COVID-19 treatment development, malware targets online shoppers, and phishing scams jump by 667% in a month.

Dark Web ID Trends:


Top Source Hits: ID Theft Forums
Top Compromise Type: Domain
Top Industry:  Medical and Healthcare
Top Employee Count: 11-50
United States – Social Bluebook

Exploit: Phishing scam
Social Bluebook: Social media platform

cybersecurity-warning-meterRisk to Small Business:  2.117 = Severe

Cybercriminals exfiltrated a company database containing personal information from thousands of internet influencers. Embarrassingly, the breach, which occurred in October 2019, was identified by TechCrunch reporters who were sent a copy of the stolen database. In a statement, the company claimed to be ignorant of the breach, raising serious questions about the efficacy of its cybersecurity strategy. This incident is likely to have significant blowback from well-connected influencers on social media and invite regulatory scrutiny on many fronts.
cybersecurity-warning-meterIndividual Risk: 2.122 = Severe

The stolen database contains account information for 217,000 users. This includes names, email addresses, and hashed and scrambled passwords. Those impacted by the breach should immediately update their login credentials for this website and any other service using the same information, plus closely monitor their accounts for unusual or suspicious activity.

Customers Impacted:  217,000

What Can You Learn from Their Mistake?

Hackers frequently target social media influencers because of their large public following. Therefore, companies catering to this clientele need to be prepared to protect their users’ valuable personal data. If they can’t, these influencers will almost certainly tell their followers all about it, a principle that applies to a growing number of consumers in every sector.

How Can Spry Squared Help?

Our Managed IT Services provides Dark Web monitoring so you can see if any of your company or your client credentials are on the dark web and what needs to happen to prevent further damage.

United States – Ozark Orthopaedics

Exploit: Phishing scam
Ozark Orthopaedics: Orthopaedic healthcare practice

week-in-breach-cybersecurity-warning-meterRisk to Small Business: 2.113 = Severe

Four employees fell for a phishing scam and gave hackers access to email accounts containing patient data. The scope of the data breach that occurred in late 2019 was just released by the healthcare provider, creating questions about the practice’s cybersecurity practices. As a result, patients were unable to quickly take steps to protect their identities and Ozark Orthopaedics has opened itself up to regulatory scrutiny that could result in substantial financial penalties.

cybersecurity-warning-meterIndividual Risk:  1.775 = Severe

Patients’ personally identifiable information was exposed in the breach, including their names, treatment information, Medicare or Medicaid identification numbers, Social Security numbers, and financial account information. In the wrong hands, this information can be used in a litany of financial or identity-related crimes. Those impacted by the breach should immediately enroll in credit and identity monitoring services to secure their personal information. 

Customers Impacted:  15,240

What Can You Learn from Their Mistake?

More than a trillion phishing emails are sent each year, some of which will inevitably make their way into your employees’ inboxes. Training employees to spot these scams is especially important to protect your company from a devastating data breach.

How Can Spry Squared Help?

We have tools that simulates phishing attacks and conducts security awareness training campaigns to educate your employees, making them the best defense against cybercrime.  Click this link to get started.

Unites States – 10x Genomics Inc.

Exploit: Ransomware
10x Genomics Inc.: Biotechnology company

cybersecurity-warning-meter

Risk to Small Business:  2.206 = Severe

A ransomware attack disrupted operations at the biotechnology company, which is currently acting as part of a consortium working to quickly develop a treatment for COVID-19. Before encrypting IT, hackers exfiltrated company data. Although the company reports “no material day-to-day impact,” it’s unclear what the implications are for the stolen data or how this could impact its development of a COVID-19 treatment.

cybersecurity-warning-meterIndividual Risk:  At this time, no personal information was compromised in the breach.

Customers Impacted:  Unknown

What Can You Learn from Their Mistake?

Companies in every sector have seen an uptick in cybersecurity threats as COVID-19 disrupts business-as-usual and puts many people on edge. This is especially true for the healthcare industry, which is experiencing a deluge of ransomware attacks, phishing scams, and other threats at a critical time.

How Can Spry Squared Help?

Spry Squared Managed IT Services offers a comprehensive picture of a company’s security position and potential risk. We work along side our clients, assessing their needs and vunerabilities and transforming the weakest links of an organization into their strongest points of protection.   Learn more now.

United States – GoDaddy

Exploit: Phishing scam
GoDaddy: Internet domain registrar

cybersecurity-warning-meter

Risk to Small Business:  2.313 = Severe

A spear phishing attack tricked a customer service employee into providing information that ultimately allowed hackers to view and modify customer records. As a result, several GoDaddy clients, including Escrow.com, which provides escrow services for several prominent websites, were impacted. The breach will have costly implications for both GoDaddy and its customers, who will have to decide if they want to continue partnering with a company that puts their sensitive data at risk.

cybersecurity-warning-meterIndividual Risk:  At this time, no personal information was compromised in the breach.

Customers Impacted:  Unknown

What Can You Learn from Their Mistake?

Today’s online ecosystem is vast and interconnected. This incident is a reminder that failures at other companies can have significant implications for your own, which increases the importance of securing accounts to buttress your IT infrastructure against potential failure at third-party contractors. With simple cybersecurity features, like two-factor authentication, company accounts remain secure even when credentials or login information is exposed.

How Can Spry Squared Help?

With Spry Squared’s Managed IT Sevices you get secure identity and access management solutions that you need to protect your systems and data in today’s remote work landscape at a price that you can afford, including multi-factor authentication, single sign-on, and secure password storage.   Learn more now.

Canada – The Beer Store

Exploit: Malware attack
Canada: Retail outlet

cybersecurity-warning-meter

Risk to Small Business:  2.187 = Severe

Cybercriminals infiltrated The Beer Store’s website and injected payment skimming malware into its online store. The online store allowed customers to place orders for pickup or delivery, two critical features as social distancing measures keep shoppers at home. This breach removed The Beer Store’s ability to accept payments via credit card, which could significantly impact its bottom line during this already challenging time.

cybersecurity-warning-meterIndividual Risk:  2.311 = Severe  

Although the company quickly detected the intrusion and closed its online store, anyone who made an online purchase before the threat was identified likely had their payment credential compromised – including all sensitive identification and financial information entered during the checkout process. Those impacted should notify their financial institutions of the breach while also taking steps to secure their accounts and personal details from misuse.

Customers Impacted:  Unknown

What Can You Learn from Their Mistake?

Customers are increasingly unwilling to do business with companies that can’t protect their personal information. At the same time, privacy regulators are backing them up, collectively ensuring that companies have millions of reasons to execute on this mission critical priority.

How Can Spry Squared Help?

With Spry Squared’s Managed IT Sevices you get secure identity and access management solutions that you need to protect your systems and data in today’s on-line retail market at a price that you can afford, including multi-factor authentication, single sign-on, and secure password storage.   Learn more now.

In Other News:

Phishing Scams Have Spiked by 667% in One Month

The global COVID-19 response has required millions of workers to work from home. When coupled with a general sense of unease and uncertainty, the situation has created a perfect environment for cybercriminals to execute phishing scams. As a result, the number of phishing emails has increased by 667% in the past month.

According to an assessment of 468,000 phishing emails, 2% were directly related to COVID-19. Meanwhile, 54% were labeled as scams, 34% as brand impersonation attacks, and 11% as blackmail. In addition, many are luring clicks by claiming to sell cures, face masks, and other critical supplies.

For businesses, the implications are clear. Nobody can afford a data breach in this environment. Now is the right time to update and reemphasize phishing scam awareness training to ensure that employees can repel these damaging cyberattacks.

Not sure how safe your data is OR is your company data already on the Dark Web?

Contact the cybersecurity experts at Spry Squared for your complimentary Dark Web scan.

Thanks to our cybersecurity partner ID agent for this Week in Breach report!