Here’s the latest installment of the Hacks, Attacks and Breaches cybersecurity news update.
The Logically team provides top cyber security stories every week to keep you up to date on the latest news headlines on cybersecurity, hacking, computer security, ransomware and other cybersecurity threats.
Block Inc.
Exploit: Insider Risk
Block Inc: Financial Services Platforms
Risk to Small Business: More than 8 million customers of Cash App Investing may have had their personal information exposed thanks to an incident involving an ex-employee of the app’s parent company Block Inc. In an SEC filing, the company disclosed that a former employee had downloaded reports that contained customer data. This breach does not impact customers using this app’s sister product, CashApp.
How it Could Affect Your Business: Companies that are sloppy about removing past users’ access are likely to find themselves in this position.
Snap-on
Exploit: Ransomware
Snap-on: Tool Manufacturer
Risk to Small Business: Major tool manufacturer Snap-on has disclosed that it has been the victim of a ransomware attack. The Conti ransomware group has claimed responsibility. The group has already begun leaking Snap-on’s data online. Snap-on reported that the breach was discovered when it detected suspicious network activity, which led to them shutting down company systems. Employee and franchisee data was compromised.
How it Could Affect Your Business: Attacks against industrial and manufacturing targets have been accelerating as bad actors look for fast ransoms from time-sensitive businesses.
Fox News
Exploit: Misconfiguration
Fox News: Television Network
Risk to Small Business: Researchers at Website Planet have announced that they discovered a trove of information about employees of Fox News exposed in a misconfigured database. The 58GB of exposed data includes almost 13 million records of content management data, employee details, internal Fox emails, usernames, employee ID numbers, affiliate station information and more. 65,000 names of celebrities, cast and production crew members and their internal Fox ID reference numbers were also in the mix. No further specifics about exposed employee data were available at press time.
How it Could Affect Your Business: Personal data is a hot ticket item, and big companies often have a storehouse of it in their employee records.
Parker Hannifin
Exploit: Ransomware
Parker Hannifin: Industrial Components Manufacturer
Risk to Small Business: Conti ransomware is to blame for an attack on major industrial supplier Parker Hannifin, a manufacturer of specialized in motion and control technologies used by aerospace, defense, and industrial manufacturers. Conti has already published more than 5 GB of the company’s stolen data but stated that is only a small fraction of the total data they snatched.
How it Could Affect Your Business: Cybercriminals aren’t just after personal data, they’ll gladly take proprietary technical data like spec sheets, blueprints, and formulas too.