Week 28 Cyberattack Digest 2019 – KHSUT, St John Ambulance, Arlington County and others

Here is a new portion of cyber news in our week 28 cyberattack digest that we have prepared for you. Enjoy, please!

Servers of Humboldt State University radiostation are disabled

by North Coast Journal – 10 July, 2019 

The KHSUT radiostation currently owned by Humboldt State University has been affected by a ransomeware attack as a result of which most of the station’s programming systems and storage servers were disabled 

A spokesperson revealed that the university does not yet know if the attack was the result of a phishing effort, a targeted ransom attack or sabotage actions. The servers touched by the incident did not store any critical information. Ransomware attacks usually come with a ransom request, but the university has not “received a specific payment demand.”

Currentlly, KHSU programming remains being interrupted: “The university hopes to have this resolved as soon as possible as it rebuilds programming and improves the security of KHSU,” the press release says.

St John Ambulance suffers a cyberattack 

by Civil Society – 8 July, 2019 

St John Ambulance experienced a ransomware attack last Tuesday

The incident has been reported to relevant regulators. According to the representatives of the first aid charity, the attack happened at 9am on 2 July. Employees were blocked from accessing data of the customers. The incident affected the details of every client who had performed any actions with personal information on the St John Ambulance website until February 2019.

The records affected are believed to include the names of the course attendees, their contact details, invoicing details, and driving license data. Still St John Ambulance claimed that this data has not been spread outside the charity and that the consequences of the leakage were eliminated within half an hour.

Both the ICO and the Charity Commission received a report from St John Ambulance. An ICO spokesperson commented: “We have received a report from St John’s Ambulance and we will assess the information provided.” 

Arlington County employees received  a malicious email 

by ARLnow.com – 10 July, 2019 

Arlington County, Virginia, revealed that a number of its employees had been affected in the cyber incident, still, the exact number remains unknown

The intrusion seems to stem from of a phishing email sent out to county employees. The police is being involved in the investigation.  Earlier county employees had been trained by Arlington’s cybersecurity division due to the growing number of cyberattacks. The county handed $60,000 to the department to teach county employees to avoid phishing emails, among other security best practices.

NHS needs “urgent” improvements according to the House of Lords

by Digital Health – 8 July, 2019

Lord Darzi has talked to the NHS to make considerable improvements in cybersecurity in a new report presented to the House of Lords

A white paper written by researchers from Imperial College London’s Institute of Global Health Innovation states that new investments are “urgently needed” and are to defend against potential incidents. The report gives recommendations on key aspects that need improvement in order strengthen IT security. Also, it was recommended to hire more cybersecurity professionals into IT teams and build “fire-breaks” into networks allowing staff to cut off and isolate the systems in case they become infected.

The paper sheds light on healthcare technologies that might pose a serious threat to patients if not made secured properly by design, such as robotics, artificial intelligence and implantable medical devices.

Lord Darzi, co-director of the Institute of Global Health Innovation (IGHI), commented: “We are in the midst of a technological revolution that is transforming the way we deliver and receive care. But as we become increasingly reliant on technology in healthcare, we must address the emerging challenges that arise in parallel.”

Healthcare sector has always been especially vulnerable to cyberattacks due to the potential risks that can be caused by security incidents. Never forget to care about your personal data and follow us on Twitter, Facebook, and LinkedIn.

Do you want more?

Subscribe me to your mailing list