The healthcare industry faces a bevy of malicious actors who aim to extract sensitive medical records by targeting firms that lack adequate cyber defenses. In one recent incident, the critical health information of more than 295,000 patients at healthcare provider AspenPointe was breached after an intruder hacked into its IT network. Meanwhile, Apodis Pharma, a French digital supply chain management and software solutions provider, blurted out around 1.7TB of sensitive data due to a misconfigured database. On that note, read on to know about all that occurred in the cybersecurity space in the past 24 hours.
01
Today, Cyware announced the launch of CTIX Lite—the first fully-automated, lightweight Threat Intelligence Platform (TIP) for small to mid-sized security teams. Cyware has partnered with industry leaders Flashpoint, Bambenek, PolySwarm, and Comodo to include built-in threat intelligence data and enrichment sources at no additional cost to customers.
02
U.S. healthcare provider AspenPointe disclosed a breach incident wherein attackers stole protected health information and PII of around 295,000 patients.
03
Apodis Pharma, a software company based in France, left an ElasticSearch database, containing 1.7TB of confidential business-related data, exposed through an unsecured Kibana dashboard.
04
An unnamed Cayman Islands-based investment firm was found divulging its entire database as a result of failing to secure Microsoft Azure backup.
05
BlackShadow group allegedly compromised Shirbit insurance company and tweeted stolen data including photos of ID cards, driving licenses, and other personal information of many civil servants.
06
Brazilian airplane maker Embraer revealed being hit by a cyberattack, impacting systems for employees working from home. According to sources, the attack involved a piece of ransomware.
07
Absa Group, a South African bank, leaked identity numbers, descriptions of financed vehicles, addresses, and contact details of some clients after an employee illegally traded client information for a price.
08
After detecting a ransomware attack on its platform and threat to its data, online learning solutions provider Stride Inc. (previously K12 Inc) has announced to pay the ransom amount to attackers.
09
Microsoft warned against Vitemanese hacker group—APT32 or OceanLotus—deploying cryptocurrency-mining malware alongside their usual cyber-espionage toolkits.
10
Security experts discovered a credit card skimmer group that uses postMessage to inject highly convincing PayPal iframes and hijacks the checkout process on compromised online stores.
