InTegriLogic Blog
The Week in Breach News: 11/08/23 – 11/14/23
This week: A cyberattack on the world’s largest bank shakes up the financial markets and a cargo of ransomware shuts down Australia’s largest port operator.
The State of Maine
https://www.maine.gov/moveit-global-data-security-incident/
Exploit: Hacking
The State of Maine: Regional Government
Risk to Business: 1.627 = Severe
The State of Maine said that it has experienced a MOVEit-related data breach that impacts 1.3 million people. The informational website that Maine created about this incident says that the hack impacted at least ten state agencies, with the Maine Department of Health and Human Services and the Maine Department of Education hit the hardest. The state said a variety of information was exposed including a resident’s name, Social Security number (SSN), date of birth, driver’s license/state identification number and taxpayer identification number. For some individuals, certain types of medical information and health insurance information may be involved. Both a hotline and a dedicated website are available for people who think they may be impacted.
How It Could Affect Your Business: Supply chain trouble isn’t just a problem for businesses; government agencies and non-profits also have suppliers
Washington Department of Transportation
https://www.govtech.com/security/cyber-attack-disrupts-washington-dot-website-services
Exploit: Hacking
Washington Department of Transportation: Government Agency
Risk to Business: 1.741 = Severe
Washington State’s Department of Transportation was hit by a cyberattack that knocked its website, cameras and app offline. Statewide traffic cameras were restored last Thursday morning, but the state’s travel map, mobile app, mountain pass reports, ferry vessel watch video feeds and online freight permits system are still being restored on both the agency’s app and website. The agency said that it is working with law enforcement to investigate the attack.
How It Could Affect Your Business: Cybercriminals have been increasingly attacking infrastructure, opening the door to major problems for everyone.
Pacific Union College (PUC)
https://www.legalscoops.com/pacific-union-college-reports-data-breach-affecting-56041-people/
Exploit: Ransomware
Pacific Union College (PUC): Institution for Higher Learning
Risk to Business: 2.603 = Moderate
Pacific Union College (PUC) in Napa County, California has informed officials that it has suffered a data breach. PUC told the Maine Attorney General’s Office that 56,041 people had data exposed in this April 2023 breach. Cybercriminals made off with a wide variety of data including personnel records, student files and financial data. The Trigonia ransomware group has claimed responsibility.
How It Could Affect Your Business: Education has now become the top sector for ransomware attacks.
Sutter Health
https://www.cbsnews.com/sacramento/news/sutter-health-announces-ransomware-attack-that-exposed-personal-information-of-patients/
Exploit: Supply Chain Attack
Sutter Health: Healthcare System
Risk to Business: 1.740 = Severe
California-based healthcare provider Sutter Health has announced that an estimated 840,000 patients may have had information exposed in a data breach at one of its vendors. The vendor, Virgin Pulse, informed Sutter Health that it had been impacted by a MOVEit exploit cyberattack earlier this year. The data was stolen in late May 2023. The healthcare system was quick to reassure patients that Social Security numbers and financial information were not exposed in the breach.
How It Could Affect Your Business: Cybercriminals are expected to ramp up their efforts to detect and utilize zero-day exploits next year.
Ireland – Electric Ireland
https://www.independent.ie/irish-news/electric-ireland-customers-hit-by-data-breach-told-to-cancel-debit-and-credit-cards/a789728241.html
Exploit: Malicious Insider
Electric Ireland: Power Company
Risk to Business: 1.673 = Severe
Electric Ireland is informing its customers that their payment data may have been exposed in a recent insider-related data breach. The company said that an unauthorized worker at one of its call centers gained access to the financial and other details of 8,000 customers of the energy supplier. It cautioned that customers may wish to cancel payment cards that were on file. Electric Ireland is working with officials to resolve the incident.
How it Could Affect Your Business: Every company needs to take smart precautions that enable it to detect malicious insiders and limit the damage they can do.
Australia – DP World
https://www.theguardian.com/australia-news/2023/nov/13/australian-port-operator-hit-by-cyber-attack-says-cargo-may-be-stranded-for-days
Exploit: Ransomware
DP World: Port Operator
Risk to Business: 1.332 = Extreme
Australia’s largest port operator was forced to shut down its network following a ransomware attack last week. DP World Australia closed its Sydney, Melbourne, Brisbane and Fremantle port operations after detecting the attack Friday, resulting in a backup of cargo and containers stuck on the docks. Those three ports handle about 40% of Australia’s freight. Those ports stayed closed for three days, reopening on Monday, November 8.
How it Could Affect Your Business: This kind of infrastructure hit can quickly become a disaster as shipping containers pile up and shipments of all kinds of goods become delayed.
China – The Industrial & Commercial Bank of China (ICBC)
https://www.bleepingcomputer.com/news/security/worlds-largest-commercial-bank-icbc-confirms-ransomware-attack/
Exploit: Ransomware
The Industrial & Commercial Bank of China (ICBC): Bank
Risk to Business: 1.202 = Extreme
The world’s largest bank, The Industrial & Commercial Bank of China (ICBC), has disclosed that its U.S. unit has experienced a ransomware attack that took down several of its systems The LockBit ransomware group has claimed responsibility. The attack left financial markets scrambling and disrupted the U.S. Treasury market. For a brief time, ICBC was unable to process trades, which at one point led to ICBC owing the Bank of New York $9 billion. Systems have since been brought back online.
How it Could Affect Your Business: A successful attack on a major player in the finance sector can have an unpleasant wide-ranging ripple effect.
Singapore – Marina Bay Sands
https://therecord.media/massive-cyberattack-hinders-services-in-germany
Exploit: Hacking
Marina Bay Sands: Resort
Risk to Business: 2.716 = Moderate
Marina Bay Sands, a luxury resort and casino in Singapore, has experienced a data breach that may impact an estimated 665,000 people. The resort disclosed that customer information was compromised in a cyberattack it experienced on October 19 and 20, 2023. Attackers snatched data belonging to patrons including names, phone and mobile numbers, email addresses, country of residence and membership numbers and tiers. The incident remains under investigation.
How it Could Affect Your Business: This attack comes as U.S. officials publish a warning that cybersecurity risk is heightened for casinos.
About the author
