Week 29 Cyberattack Digest 2018 – SingHealth, Telefonic, LabCorp and others
It is Monday, which means that it is high time for our cyber attack week digest and we will discuss the most notable incidents of the past week.
Worst Singapore security incident ever
by ejinsight – 23 July 2018
The news on the Singapore cyber incident almost exploded the internet this week, which is not surprising. Personal data of the equivalent of a quarter of the population was compromised, and by far, the personality of the malefactors is not disclosed yet. The authorities characterized the attack as “the most serious breach of personal data” ever happened in the history of Singapore. According to the official information, attackers infiltrated the computers of SingHealth, one of the state’s major government healthcare groups. As the result, almost 1.5 million patients who visited clinics between May 2015 and July 4, 2018, have had their personal data stolen. Singaporean Prime Minister Lee Hsien Loong also confirmed that even his own data had been compromised and said that the authorities would strengthen the defense. “My medication data is not something I would ordinarily tell people about, but there is nothing alarming in it,” Lee commented.
Medical laboratory’s network affected
by BankInfoSecurity – 17 July 2018
Sadly, Singapore incident wasn’t the only one affecting medical organizations. This week, LabCorp Diagnostics, a $10.3 billion company, also was investigating a weekend hack of its IT network. The incident made the medical laboratory testing firm put several systems offline, which limited test processing and customer access to test results. The authorities also added that there was no evidence of unauthorized transfer or misuse of the information stored in the system.
Telefonica exposes millions of customers’ records
by SC Media – 16 July 2018
Spanish operator Telefonica reported a breach on Monday. All the personal data of millions of the organization’s customers was affected. Attackers got access to personal and payment data, including land line and mobile numbers, national ID numbers, addresses, banks, and records of calls and other critical information. Fortunately, there was no evidence of fraudulent activity with the use of the data. Pravin Kothari, founder and CEO of cloud security provider CipherCloud, commented that the “moral of the story” is that malefactors “will get into any network sooner or later.” Specialists also noted that if the stolen data had been protected by end-to-end encryption, there would be no reason to worry as in that case the information would be encrypted and unusable.
Bank loses about $1m in a major attack
by ItPortal – 23 July 2018
It seems that banks will never be out of fashion among attackers. This time, one of the largest banks in Russia was affected in a fraudulent incident. The attack on Russia’s PIR Bank was supposed to be carried out by a group called MoneyTaker. The attack campaign began in late May as the attackers compromised bank’s router. This way, attackers managed to enter the bank’s network and compromised a computer in order to cash out. Then, on July 3, attackers used paid helpers to syphon out money from ATMs. The bank partially managed to stop the theft, still not too much of the funds was recovered. MoneyTaker finally got away with some $900,000. The gang is also notorious for its past attacks: in 2017, the attackers were suspected for stealing some $10 million from Russian, American and UK companies.
This week, we can observe quite typical scenarios of attacks – hacking banks and medical organizations has always been popular among malefactors as accessing these organization’s system is always fruitful. Stay secure and follow us on Twitter, Facebook, and LinkedIn.