"Your Information Technology Leader"

Client Portal Payment Portal

Blog

InTegriLogic Blog

InTegriLogic has been serving the Tucson area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

The Week in Breach News: 07/24/24 – 07/30/24

Breach-5

This week: A concerning data breach at Leidos; hackers snarl operations at Croatia’s St. Jeronim Airport

 

Leidos

https://www.scmagazine.com/brief/us-defense-contractor-leidos-data-leaked

Exploit: Third-Party Breach

Leidos: IT Service Provider

cybersecurity news represented by agauge showing severe risk

 

Risk to Business: 2.356 = Extreme

Leidos Holdings, the IT services provider for the U.S. Department of Defense, the Department of Homeland Security, and NASA, has confirmed having internal data stolen from a third-party breach exposed by threat actors but emphasized that neither its network nor customer information was affected, stems from a previous incident affecting a third-party vendor for which all necessary notifications were made in 2023. Such exposed information may have been exfiltrated from a compromised Diligent Corp. system leveraged by Leidos for internal investigation data hosting, noted a source close to the matter. Meanwhile, Diligent disclosed the incident, which has affected fewer than 15 clients, to be related to the breach of its subsidiary Steele Compliance Solutions two years ago.

How It Could Affect Your Business: This was a close shave for Leidos and a good illustration of why it is essential to consider cybersecurity risks from suppliers and service providers.


 

Michigan Medicine

https://www.securityweek.com/57000-patients-impacted-by-michigan-medicine-data-breach/

Exploit: Hacking

Michigan Medicine: Medical Center

cybersecurity news represented by agauge showing severe risk

 

Risk to Business: 1.356 = Severe

Michigan Medicine, part of the University of Michigan, is notifying around 57,000 individuals of a data breach that may have compromised their personal and health information. The breach occurred when threat actors accessed employee email accounts on May 23 and May 29. Compromised data includes names, addresses, birth dates, medical record numbers, diagnostic and treatment information, and health insurance details. While no financial information was affected, Social Security numbers of four patients were exposed. The compromised accounts were disabled promptly upon discovery.

How It Could Affect Your Business: A data breach is an expensive proposition for any organization but it is especially expensive for organizations in the healthcare sector.


 

Gemini

https://thecyberexpress.com/crypto-exchange-gemini-data-breach/

Exploit: Third-Party Hacking

Gemini: Cryptocurrency Exchange

cybersecurity news represented by agauge showing severe risk

 

Risk to Business: 1.721 = Severe

Cryptocurrency exchange Gemini disclosed a data breach caused by a cyberattack on its ACH service provider. Between June 3 and June 7, 2024, an unauthorized actor accessed the vendor’s systems. Gemini notified affected individuals on June 26, 2024, and submitted details to California’s Attorney General’s Office. The breach may have compromised some customers’ banking information, including names, bank account numbers, and routing numbers. Gemini assured clients that no other sensitive information was affected.

How It Could Affect Your Business: Business relationships can bring unexpected cyber risks in their wake, so it pays to evaluate the cybersecurity of suppliers and service providers.


 

Peco Foods

https://www.jurist.org/news/2024/07/ransomware-attack-shuts-down-los-angeles-superior-court-systems/

Exploit: Hacking

Peco Foods: Poultry Products Provider

cybersecurity news represented by a gauge indicating moderate risk

 

Risk to Business: 2.632 = Moderate

On July 24, 2024, Peco Foods, Inc. reported a data breach to the Maine Attorney General after discovering unauthorized access to its IT network. The breach involved sensitive consumer information, prompting Peco Foods to notify affected individuals. The company detected the cyberattack on December 4, 2023, which disrupted its computer system. Peco Foods quickly secured its systems and collaborated with cybersecurity experts to investigate. By May 23, 2024, they identified the compromised information and impacted consumers. Notification letters were sent out on July 24, 2024, detailing the incident. Although the general notice doesn’t specify the types of leaked data, personalized letters include this information for each individual.

How It Could Affect Your Business: It’s critical for companies to put themselves in the best possible position for a fast, smooth incident response.


 

Croatia – St. Jeronim Airport

https://www.barrons.com/news/cyberattack-hits-croatia-s-split-airport-dac3d776

Exploit: Ransomware

St. Jeronim Airport: Airport

cybersecurity news gauge indicating extreme risk

 

Risk to Business: 1.112 = Extreme

A cyberattack at St. Jeronim Airport in Split, Croatia, snarled air traffic. The airport experienced technical difficulties around 7:30 pm, leading to flight cancellations and delays. Passengers were forced to spend the night at the airport as the system was rebooted. The IT system is still recovering, and staff are managing operations manually. The Akira cybercrime group claimed responsibility for the attack, demanding negotiations, which authorities refused.

How it Could Affect Your Business: Bad actors are always on the hunt for the slightest opening in a company’s armor that they can exploit to strike.


 

India – Taj Hotels

https://www.moneycontrol.com/news/technology/taj-hotels-suffers-data-breach-exposes-information-of-1-5-million-customers-11801161.html#:~:text=Tata%2Downed%20Taj%20Hotels%20group,ransom%20for%20the%20full%20dataset.

Exploit: Hacking

Taj Hotels: Hospitality Chain 

cybersecurity news represented by agauge showing severe risk

 

Risk to Business: 2.896 = Severe

India-based Taj Hotels experienced a data breach that potentially compromised the sensitive personal information of about 1.5 million guests, according to the Economic Times. Tata Group’s Indian Hotels Company (IHCL), which operates Taj Hotels, is investigating the incident. The hacker, known as “Dnacookies,” is demanding $5,000 for the dataset, which includes mobile numbers, addresses, membership IDs and other personal information. The company’s spokesperson stated there are no signs of ongoing security issues or disruptions to operations. 

How it Could Affect Your Business: The hospitality sector keeps many types of data from guests, making hotels and resorts attractive targets for bad actors.


 

Taiwan – Liteon Technology Corporation

https://www.redhotcyber.com/en/post/the-ransomware-group-ransomexx-claims-attack-on-liteon/

Exploit: Ransomware

Liteon Technology Corporation: Electronics Manufacturer

cybersecurity news represented by agauge showing severe risk

 

Risk to Business: 1.661 = Severe

Liteon Technology Corporation, a Taiwan-based leader in electronic components, was attacked on July 26, 2024, by the Ransomexx group. Founded in 1975, Liteon specializes in optoelectronic devices, storage devices, and more, including LED lighting, semiconductors, and automotive electronics. Ransomexx infiltrated Liteon’s systems, encrypting 142GB of critical data and threatened to release it unless a ransom is paid.

How it Could Affect Your Business: A successful cyberattack on a manufacturer can have a disastrous impact on the businesses it supplies too.


 

New Zealand – Squirrel

https://www.rnz.co.nz/news/business/523100/mortgage-broker-squirrel-s-security-incident-exposes-details-of-600-investors

Exploit: Hacking

Squirrel: Financial Services

cybersecurity news represented by agauge showing severe risk

 

Risk to Business: 1.866 = Severe

New Zealand-based mortgage broking and investment firm Squirrel experienced a data breach that exposed the passport or driver’s license details of 600 peer-to-peer investors. Squirrel informed clients that an unauthorized user accessed a third-party system used in their investor registration process. This breach allowed the extraction of personal information, specifically passport or driver’s license details, for customers who registered in the 30 days prior to July 21, 2024. 

How it Could Affect Your  Business: The financial services sector has been a top target for ransomware attacks by bad actors for the past few years.


 

Manage Guests and External Sharing in Teams
Why You Can’t Just Rip External Storage from Your ...

Customer Login

News & Updates

InTegriLogic is proud to announce the launch of our new website at www.integrilogic.com. The goal of the new website is to make it easier for our existing clients to submit and manage support requests, and provide more information about our services for ...

Contact us

Learn more about what InTegriLogic can do for your business.

InTegriLogic
1931 W Grant Road suite 310
Tucson, Arizona 85745

Copyright InTegriLogic. All Rights Reserved.