"Your Information Technology Leader"

Client Portal Payment Portal

Blog

InTegriLogic Blog

InTegriLogic has been serving the Tucson area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

The Week in Breach News: 10/11/23 – 10/17/23

Breach-1

This week: An $80 million ransom demand from LockBit, a disruptive cyberattack nails Simpson Manufacturing, and U.S. federal agencies warn against a novel ransomware attack

 

Simpson Manufacturing Company

https://www.constructiondive.com/news/simpson-manufacturing-cyberattack-construction/696408/

Exploit: Hacking

Simpson Manufacturing Company: Construction Materials Fabricator

 

Risk to Business: 1.403 = Extreme

Construction materials giant Simpson Manufacturing has revealed that it was hit by a disruptive cyberattack The California-based company said in its filing with the U.S. Securities and Exchange Commission (SEC) that it discovered malicious activity in its network infrastructure and immediately took systems offline to limit the damage. The company expects continued snags to its operations in the wake of the attack.

How It Could Affect Your Business: Bad actors have been heavily targeting critical infrastructure targets, with attacks on manufacturers rising.


 

First Judicial Circuit Court of Florida

https://www.bleepingcomputer.com/news/security/alphv-ransomware-gang-claims-attack-on-florida-circuit-court/

Exploit: Ransomware

First Judicial Circuit Court of Florida: State Court System

 

Risk to Business: 1.603 = Severe

The ALPHV/BlackCat ransomware group has claimed responsibility for a ransomware attack on Florida’s First Judicial Circuit Court. The court confirmed that it had experienced a successful cyberattack on October 2. That attack has resulted in major disruptions in the operations of the court system. A statement from the court said that the Circuit is prioritizing essential court proceedings but will cancel and reschedule other proceedings and pause related operations for several days, beginning October 2. No ransom demand has been made public.

How It Could Affect Your Business: Bad actors have been putting pressure on government agencies and institutions like court systems and agencies with ransomware.


 

CDW

https://therecord.media/cdw-investigates-ransomware-gang-claim

Exploit: Ransomware

CDW: Technology Services

 

Risk to Business: 1.873 = Moderate

CDW, a major supplier of technology services to businesses and the U.S. federal government, has been added to the LockBit ransomware group’s leak site. The company confirmed that it had experienced a cyberattack but noted that the attack was limited to a few servers dedicated solely to the internal support of Sirius Federal, a subsidiary of CDW’s government services arm CDW-G. CDW was quick to reassure customers that the affected servers are non-customer-facing and isolated from CDW’s main network and other CDW-G systems. LockBit has demanded a whopping $80 million in ransom, one of the largest ransom demands ever publicly released. LockBit published a small amount of the stolen data as proof of its hack, including images of employee badges, audit data, commission payout data and other account-related information.  

How It Could Affect Your Business: This kind of data is highly sensitive and cybercriminals could use it to spear phish or facilitate blackmail


 

Morrison Community Hospital

https://securityaffairs.com/152486/cyber-crime/alphv-ransomware-morrison-community-hospital.html

Exploit: Ransomware

Morrison Community Hospital: Medical Center

 

Risk to Business: 1.710 = Severe

Morrison Community Hospital has been the victim of a ransomware attack. The ALPH-V/BlackCat ransomware gang has added the medical center to its dark web leak site. The group said that it stole 5TB of data including patients’ and employee’s information, backups and PII documents. The group has published a sample of the data on its leak site. In a twist, BlackCat stated that the hospital has not responded, threatening to begin contacting patients.

How It Could Affect Your Business: Ransomware has been heavily used in attacks against healthcare targets like hospitals and clinics.


 

Walmart

https://www.jdsupra.com/legalnews/walmart-inc-files-notice-of-data-breach-8481333/

Exploit: Hacking

Walmart: Retailer

 

Risk to Business: 1.673 = Severe

One of the world’s largest retailers has informed the U.S. Department of Health and Human Services Office for Civil Rights that is has experienced a data breach. Walmart did not specify what type of data was stolen but the nature of the filing offers insight, pointing to the exposed data being protected health information. Walmart said that this data breach affected 85,952 individuals.  

How it Could Affect Your Business: Fines and penalties for a breach of protected health information will be expensive even for a massively profitable business like Walmart,


 

Spain – Air Europa

https://www.reuters.com/business/aerospace-defense/spanish-airline-air-europa-hit-by-credit-card-system-breach-2023-10-10/

Exploit: Hacking

Air Europa: Airline

 

Risk to Business: 1.612 = Severe

Spanish air carrier Air Europa is informing customers that they have suffered a data breach. The breach of customer credit card details resulted from exposure through Air Europa’s online payment system. The airline emailed customers whose credit card details were exposed. Air Europa did not specify the number of customers affected. The company said no other information had been exposed, and it has informed the relevant authorities.

How it Could Affect Your Business: Credit card data can be very lucrative for bad actors, making it a hot commodity.


 

France – LDLC ASVEL Villeurbanne

https://cybernews.com/news/tony-parker-asvel-data-breach/

Exploit: Ransomware

ASVEL: Basketball Team

 

Risk to Business: 2.802 = Moderate

A ransomware group is claiming to have snatched data from LDLC ASVEL Villeurbanne, a Euro League basketball team owned by the former NBA star Tony Parker. The gang NoEscape has added ASVEL to its dark web leak site, claiming that they stole 32GB of data. That data supposedly includes players’ passports and IDs, ASVEL’s financial and tax data, team non-disclosure agreements (NDAs), player scouting contracts and other confidential information.

How it Could Affect Your Business: Ransomware attacks are primarily email-based and businesses need advanced email security that can quickly detect threats like ransomware.


 

France – Shadow PC

https://techcrunch.com/2023/10/13/shadow-data-breach-hacked/

Exploit: Hacking

Shadow PC: Cloud Gaming Support Provider

cybersecurity news represented by agauge showing severe risk

 

Risk to Business: 1.716 = Severe

PC gaming cloud services provider Shadow PC has confirmed that the company has experienced a cyberattack that led to the exposure of half a million customers’ data. The company said that one of its employees had fallen victim to a social engineering attack that began on the Discord platform. An employee apparently downloaded malware in the guise of a game on the Steam platform. The stolen data includes full customer names, email addresses, dates of birth, billing addresses and credit card expiration dates. Passwords and payment data were not impacted.

How it Could Affect Your Business: It’s essential to teach employees to resist social engineering lures with security awareness training.


 

The Week in Breach News: 10/18/23 – 10/24/23
The Week in Breach News: 10/04/23 – 10/10/23

Customer Login

News & Updates

InTegriLogic is proud to announce the launch of our new website at www.integrilogic.com. The goal of the new website is to make it easier for our existing clients to submit and manage support requests, and provide more information about our services for ...

Contact us

Learn more about what InTegriLogic can do for your business.

InTegriLogic
1931 W Grant Road suite 310
Tucson, Arizona 85745

Copyright InTegriLogic. All Rights Reserved.