Online publication Cybercrime Magazine reports on cyber attacks worldwide. The following list summarizes attacks just since 9/1/23 – 9/22/23 and US only. You are going to recognize some big names. Hackers don’t care how big (or small you are) or what your business might be – if your business doesn’t already have a cyber security partner working to keep your company safe, you are vulnerable. Check out the list; you’ll likely recognize most of them. Hackers don’t care who you are, what business you’re in, or even how big you are. Think of all the companies that have been hacked that didn’t make the news. If you don’t already have a cyber security partner, call us. Your business’s survival depends on it. Further details of each incident can be found at the cited source.
Clorox Warns of Product Shortages Following Cyberattack
Clorox’s quarterly earnings will take a hit from a recent cyberattack, which has disrupted operations and dented availability of the company’s products. The cleaning-products maker said Sep. 18 in a securities filing that the fallout from the attack will cause a material impact to its current-quarter financial results. The longer-term impact is uncertain, given the continuing recovery. The cyberattack on Clorox’s information technology infrastructure, initially disclosed Aug. 14, prompted the company to take certain systems offline and resort to manually ordering and processing products at a lower rate than normal. Clorox is still operating at a reduced rate, which has recently hurt product availability. “At this time, the company cannot estimate how long it will take to resume fully normalized operations,” Clorox said.
Source: The Wall Street Journal
Billionaire investor Mark Cuban loses $870K in crypto in MetaMask wallet hack
Entrepreneur and investor Mark Cuban, whose net worth is over $5 billion, fell victim to a hack on the night of Sep. 15. Cuban lost crypto assets worth $870,000 in the attack that compromised his MetaMask wallet, according to a DL News report. Cuban confirmed the hack to DL News and said he had lost 5 Ethereum (ETH) tokens, worth around $8,170 at current prices. However, he also lost USD Coin (USDC), Polygon (MATIC), Lido staked Ethereum (stETH), and tokens from SuperRare and Ethereum Name Service. Most of the proceeds from the hack were still lying in the hacker’s wallet at the time of writing. Cuban managed to transfer around $2 million USDC from the wallet to Coinbase Custody and save most assets from being stolen. According to Cuban, he is “pretty sure” he downloaded a malicious version of MetaMask, which led to the hack.
Ransomware attack hits Orbcomm’s BT series of ELDs; paper logs are back
Orbcomm, a major provider of ELDs (electronic logging devices) to the trucking sector, is dealing with a ransomware attack that has limited the ability of its customers to use its Fleet Manager offering, which includes its Blue Tree ELD systems, the company has confirmed. Resolving the issue may take up to two weeks. “On Sep. 6, ORBCOMM experienced a ransomware attack that is temporarily impacting our FleetManager platform and BT product line, which is used by some of our customers to track and monitor their transportation assets,” Michelle Ferris, the company’s VP of corporate communications, said in response to an email query from FreightWaves. “Upon discovering the issue, industry-leading external cybersecurity experts were retained to conduct a thorough investigation.
Source: Freight Waves
Caesars Entertainment Paid Millions to Hackers in Attack
Caesars Entertainment Inc. paid tens of millions of dollars to hackers who broke into the company’s systems in recent weeks and threatened to release the company’s data, according to two people familiar with the matter. Caesars is expected to disclose the cyberattack in a regulatory filing imminently, the people said. The disclosure of the alleged Caesars breach comes as another Las Vegas entertainment giant, MGM Resorts International, announced that it was hacked earlier this week.The group behind the attack is known as Scattered Spider or UNC 3944, according to the people. Its members are skilled at social engineering in order to gain access to large corporate networks, according to cybersecurity experts. In the case of Caesars, the hackers first breached an outside IT vendor before gaining access to the company’s network.
Save the Children hit by Ransomware, 7TB stolen
Cybercrime crew BianLian says it has broken into the IT systems of a top nonprofit. As highlighted by VX-Underground and Emsisoft threat analyst Brett Callow earlier today, BianLian bragged on its website it had hit an organization that, based on the gang’s description of its unnamed victim, looks to be Save The Children International. The NGO, which employs about 25,000 people, says it has helped more than a billion kids since it was founded in 1919. BianLian added that its victim, “the world’s leading nonprofit,” operates in 116 countries with $2.8 billion in revenues. The extortionists claim to have stolen 6.8TB of data, which they say includes international HR files, personal data, and more than 800GB of financial records. They claim to also have email messages as well as medical and health data. Save the Children has confirmed someone broke into its computer systems, understood to be BianLian.
Source: The Register
MGM Resorts Sees Outages Across Properties Due to Cybersecurity Issue
Hotel and gaming company MGM Resorts is grappling with a cybersecurity issue that has caused an outage across its properties. “Our investigation is ongoing, and we are working diligently to determine the nature and scope of the matter,” the company said in a post on X, formerly Twitter. “We notified law enforcement and took prompt action to protect our systems and data, including shutting down certain systems,” the company said in the post. The incident has affected various systems, TechCrunch reported Sep. 11. Guests at MGM’s Las Vegas casinos have reported that ATM cash dispensers and slot machines have been affected, leading to outages, according to the report. Additionally, hotel restaurants are only accepting cash payments, and guests are unable to charge expenses to their rooms. The incident has also rendered digital room keys unusable.
Associated Press Stylebook Data Breach Impacts Customers
The Associated Press (AP) has alerted its customers about a recent data breach that has impacted users of the AP Stylebook. This widely used guide on grammar, punctuation, and writing style for journalists and newsrooms worldwide has suffered a security incident where attackers stole customer data and then launched targeted phishing attacks. The breach occurred between Jul. 16 and 22, 2023, on an old third-party-managed AP Stylebook site that was no longer in use. The stolen information includes customers’ names, email addresses, street addresses, city, state, zip codes, phone numbers, and User IDs. Moreover, customers who entered tax-exempt IDs, such as Social Security Numbers or Employer Identification Numbers, also had these IDs stolen. Journalists’ and media companies’ login credentials are highly sought after by cybercriminals due to the potential for extortion, data theft, and cyber espionage. Full Story
IBM Flags Data Breach At J&J’s Janssen Carepath Portal
IBM has announced a data breach of Janssen’s CarePath platform and has started informing affected customers. The Janssen CarePath portal provides patients and healthcare professionals in the U.S. with information regarding insurance coverage, out-of-pocket costs, and prescribing information at no cost to the users. The Janssen CarePath systems provider, IBM, indicated that the stolen data may have contained information provided as part of the Janssen CarePath application, including individual names, contact information, date of birth, health insurance information, and information on an individual’s health conditions and medications. Although IBM has identified that a data breach occurred on Aug. 2, the company is unsure of the extent of information that was accessed. Janssen is a Johnson & Johnson company.
Source: Pharmaceutical Technology
Coffee Meets Bagel Hacked — Why The App Went Offline & What’s Next
Coffee Meets Bagel, a popular dating app boasting “over 150 million matches and counting,” is back online as of Sept. 3 after being hacked by an “outside actor who maliciously deleted company data and files,” resulting in the service being down for nearly a week beginning on Aug. 27, 2023. An update shared by the company explained that it “quickly re-established a secure environment for our technology team to restore our production services and notified law enforcement about this incident,” with its team working around the clock to repair the damage. CMB apologized for the service disruption: “In addition to restoring your experience,” they said, “we’ve added 1,000 beans [in-app currency] to any accounts that were active 14 days prior to the outage to make up for lost time.”
Source: Women’s Health Interactive
Golf Club Maker Callaway says 1 million Affected by Data Breach
The company that sells the Callaway brand of golf gear reported a data breach that affected more than 1 million people. Topgolf Callaway Brands Corp. has been notifying customers that some users of its e-commerce websites had information exposed in an “IT system incident” that began Aug. 1. The breach affected customers of the “Callaway, Odyssey, Ogio, and/or Callaway Golf Preowned sites,” the company said. Exposed information included account passwords and answers to security questions, as well as names, mailing addresses, email addresses, phone numbers and order histories. The company forced a password reset for customers and said it “has taken a number of additional steps to further secure its data. Topgolf Callaway, based in Carlsbad, Calif., did not specify the nature or source of the incident.
Source: The Record
Forever 21 Data Breach Affects Half a Million People
Clothing giant Forever 21 said a data breach earlier in the year affects more than half a million individuals. A data breach notice filed with Maine’s attorney general said the fashion giant was hacked over a three-month period beginning early Jan. 2023, during which intruders obtained files from its systems. This data included the personal information of current and former employees, said a spokesperson for Forever 21 via public relations firm FTI Consulting. According to the notice, Forever 21 notified 539,207 people that the breached data included their name, date of birth, bank account number and Social Security number, as well as information regarding employees’ Forever21 health plan, including enrollment and premiums paid. Forever 21 has about 500 retail locations and an online store.
No matter what size your business or the industry you’re in, you are at risk if you are connected to the internet and have customer or business data. Think about what would happen if hackers took your customer files hostage. What would you do? Now is the time to call us for a risk assessment and learn how to protect your business and customers. Call us at 800-854-2444 or visit www.inversetech.com to learn more about our cybersecurity services.