Here’s the latest installment of the Hacks, Attacks and Breaches cybersecurity news update.
The Logically team provides top cyber security stories every week to keep you up to date on the latest news headlines on cybersecurity, hacking, computer security, ransomware and other cybersecurity threats.
CorrectCare Integrated Health
Exploit: Misconfiguration
CorrectCare Integrated Health: Healthcare Provide
Risk to Small Business: CorrectCare Integrated Health, a Kentucky-based company that specializes in providing healthcare to prisoners in U.S. jails, has experienced a data breach. In a filing with the California Attorney General’s Office, the company stated that two file directories on the company’s server had been accidentally exposed on the internet by an employee’s misconfiguration of a server. An estimated 600,000 patients who received medical care in a CDCR facility between January 1, 2012, and July 6, 2022, were among those whose data was potentially impacted.
How it Could Affect Your Business: This employee mistake will cost the a fortune by the time regulators get finished with it.
Middletown Valley Bank
Exploit: Hacking
Middletown Valley Bank: Financial Institution
Risk to Small Business: Maryland-based regional financial institution Middletown Valley Bank has disclosed that it has experienced a data breach as the result of an unspecified hacking incident. Around October 1, 2022, Middletown Valley Bank learned of a potential data security incident that resulted in the bank shutting down parts of its computer network. An investigation determined that an unauthorized party had gained access to its computer network. The unauthorized party was able to access files that contained sensitive information related to bank customers.
How it Could Affect Your Business: The Banking and Finance sector was the top sector for ransomware attacks two years in a row, and the pace is not decreasing.
ESO
Exploit: Hacking
ESO: Medical Software Provider
Risk to Small Business: Ambulance crews across Ontario have been forced to resort to pencil and paper charting after an outage in the iMedic system. Software maker ESO stated that the system has experienced service outages after unauthorized parties gained access to a server, forcing a shutdown. Paramedics typically use iMedic to record patient information that is transmitted to hospitals for incoming patients arriving by ambulance. ESO said that its initial investigation showed no evidence indicated that data had been breached and there was no malware or ransomware installed.
How it Could Affect Your Business: Business service providers in time-sensitive industries are high on the cybercriminal hit list because they’re likely to pay ransoms.
