Here’s the latest installment of the Hacks, Attacks and Breaches cybersecurity news update.
The Logically team provides top cyber security stories every week to keep you up to date on the latest news headlines on cybersecurity, hacking, computer security, ransomware and other cybersecurity threats.
Bed, Bath and Beyond
Exploit: Phishing
Bed, Bath and Beyond: Home Goods Retailer
Risk to Small Business: Big-box retailer Bed, Bath and Beyond has experienced a data breach. The company disclosed that a third party had improperly accessed its data through a phishing scam. Bad actors gained access to the hard drive and certain shared drives of one of its employees earlier this month. The retailer was quick to reassure consumers that it does not believe that any sensitive or personally identifiable information was accessed.
How it Could Affect Your Business: Phishing takes down businesses of every size and every industry, bringing sticky problems in its wake.
See Tickets US
Exploit: Hacking
See Tickets US: Event Ticketing Platform
Risk to Small Business: The U.S. division of UK company See Tickets has revealed that its platform has been hosting a credit card skimmer for an estimated two and a half years. In a data breach notification shared with the Montana Attorney General’s office, See Tickets disclosed that it discovered the breach in April 2021 and ultimately determined that the skimmer was activated on June 25, 2019. However, it wasn’t until January 8, 2022, that the malicious code was fully removed from its site. The company says that it worked with forensic experts and Visa, MasterCard, American Express and Discover in the investigation.
How it Could Affect Your Business: This is going to be an expensive, damaging nightmare thanks to it going on for so long, putting the company’s security commitment in question.
Kenosha Unified School District
Exploit: Ransomware
Kenosha Unified School District: Local Education Authority
Risk to Small Business: Kenosha Unified School District in Wisconsin has been the victim of a successful ransomware attack by the Snatch ransomware group. The gang added the district to its dark web leak site last week. Kenosha Unified School District officials admitted that the district was forced to take systems offline to deal with the attack but they’ve since been restored. No ransom amount has been reported, nor did the district elaborate on what data had been stolen. The district serves an estimated 20,000 students.
How it Could Affect Your Business: Schools at every level and education authorities have been getting pounded by ransomware groups and need to improve their defenses.