Week 28 Cyberattack Digest 2019 – KHSUT, St John Ambulance, Arlington County and others
Here is a new portion of cyber news in our week 28 cyber attack digest that we have prepared for you. Enjoy, please!
Servers of Humboldt State University radiostation are disabled
by North Coast Journal – 10 July 2019
The KHSUT radiostation currently owned by Humboldt State University has been affected by a ransomeware attack as a result of which most of the station’s programming systems and storage servers were disabled. A spokesperson revealed that the university does not yet know if the attack was the result of a phishing effort, a targeted ransom attack or sabotage actions. The servers touched by the incident did not store any critical information. Ransomware attacks usually come with a ransom request, but the university has not “received a specific payment demand.” Currentlly, KHSU programming remains being interrupted. “The university hopes to have this resolved as soon as possible as it rebuilds programming and improves the security of KHSU,” the press release says.
St John Ambulance suffers a cyber attack
by Civil Society – 8 July 2019
St John Ambulance experienced a ransomware attack last Tuesday.The incident has been reported to relevant regulators. According to the representatives of the first aid charity, the attack happened at 9am on 2 July. Employees were blocked from accessing data of the customers. The incident affected the details of every client who had performed any actions with personal information on the St John Ambulance website until February 2019. The records affected are believed to include the names of the course attendees, their contact details, invoicing details, and driving license data. Still St John Ambulance claimed that this data has not been spread outside the charity and that the consequences of the leakage were eliminated within half an hour. Both the ICO and the Charity Commission received a report from St John Ambulance. An ICO spokesperson commented: “We have received a report from St John’s Ambulance and we will assess the information provided.”
Arlington County employees received a malicious email
by ARLnow.com – 10 July 2019
Arlington County, Virginia, revealed that a number of its employees had been affected in the cyber incident, still the exact number remains unknown. The intrusion seems to stem from of a phishing email sent out to county employees. The police is being involved in the investigation. Earlier county employees had been trained by Arlington’s cybersecurity division due to the growing number of cyber attacks. The county handed $60,000 to the department to teach county employees to avoid phishing emails, among other security best practices.
NHS needs “urgent” improvements according to the House of Lords
by Digital Health – 8 July 2019
Lord Darzi has talked to the NHS to make considerable improvements in cyber security in a new report presented to the House of Lords. A white paper written by researchers from Imperial College London’s Institute of Global Health Innovation states that new investments are “urgently needed” and are to defend against potential incidents. The report gives recommendations on key aspects that need improvement in order strengthen IT security. Also, it was recommended to hire more cyber security professionals into IT teams and build “fire-breaks” into networks allowing staff to cut off and isolate the systems in case they become infected. The paper sheds light on healthcare technologies that might pose a serious threat to patients if not made secured properly by design, such as robotics, artificial intelligence and implantable medical devices.Lord Darzi, co-director of the Institute of Global Health Innovation (IGHI), commented: “We are in the midst of a technological revolution that is transforming the way we deliver and receive care. But as we become increasingly reliant on technology in healthcare, we must address the emerging challenges that arise in parallel.”
Healthcare sector has always been especially vulnerable to cyber attacks due to the potential risks that can be caused by security incidents. Never forget to care about your personal data and follow us on Twitter, Facebook, and LinkedIn.