CYBER SECURITY NEWS – WEEK OF OCTOBER 30, 2023
Patient database with over 12 million Redcliffe Labs records exposed
- A diagnostic services provider in India experienced a security lapse, leaving 7TB of its databases unprotected for an unknown duration.
- A large open database was uncovered at Redcliffe Labs, a leading Indian diagnostic service provider, where over 12 million healthcare records, including medical diagnostic scans, test results, and patient information, were left unprotected without password security.
- Cybersecurity expert Jeremiah Fowler, who found the data trove, alerted Redcliffe Labs, following which the firm, promptly secured the database the same day. This incident raises serious concerns about data protection measures and the potential misuse of such sensitive records.
- In response to the query by The Cyber Express, Redcliffe Labs confirmed that the data was not breached, and even with credentials, it was inaccessible to the public.
Lockbit ransomware gang claims to have stolen data from Boeing
- The Lockbit ransomware gang claims to have hacked the aerospace manufacturer and defense contractor Boeing and threatened to leak the stolen data.
- The Lockbit ransomware group today added Boeing to the list of victims on its Tor leak site. The gang claims to have stolen a huge amount of sensitive data from the company and threatens to publish it if Boeing does not contact them within the deadline (02 Nov, 2023 13:25:39 UTC).
- “Boeing, the 60 billion Company, together with its subsidiaries, designs, develops, manufactures, sells, services, and supports commercial jetliners, military aircraft, satellites, missile defense, human space flight, and launch systems and services worldwide.” reads the message published by the group on its leak site.
Stanford University investigating cyberattack after ransomware claims
- A spokesperson for the university directed Recorded Future News to a statement published late on Friday afternoon explaining that it is in the process of figuring out the details of the incident.
- “We are continuing to investigate a cybersecurity incident at the Stanford University Department of Public Safety (SUDPS) to determine the extent of what may have been impacted,” the school said.
- “Based on our investigation to date, there is no indication that the incident affected any other part of the university, nor did it impact police response to emergencies. The impacted SUDPS system has been secured.”
- They added that their information security teams are looking into the incident alongside outside specialists. Once the investigation is completed, they said, they would share more information.
Hello Alfred app exposes user data
- Hello Alfred, an in-home hospitality app, left a database accessible without password protection, exposing almost 170,000 records containing private user data.
- Residents using the platform get an app-based personal assistant service for their apartments. A designated Hello Alfred employee handles the residents’ home-related inquiries, such as managing weekly shopping, in-home delivery, or picking up dry cleaning.
- On September 19th, researchers discovered that the platform exposed sensitive user data.
- The owners of the app were informed about the leak and secured access almost immediately.
Kansas court system down nearly 2 weeks in ‘security incident’ that has hallmarks of ransomware
- Kansas officials are calling a massive computer outage that’s kept most of the state’s courts offline for two weeks a “security incident” and, while they had not provided an explanation as of Wednesday, experts say it has all the hallmarks of a ransomware attack.
- The disruption has left attorneys unable to search online records and forced them to file motions the old fashioned way — on paper. Courts are limping along, although the growing piles of paper are a mess that will have to be sorted and scanned eventually.
- Since 2019, ransomware groups have targeted 18 state, city or municipal court systems, said analyst Allan Liska of the cybersecurity firm Recorded Future. That includes one in Dallas, where some jury trials had to be canceled this year.
Over 9,500 Bank of Canton customers may have had personal information exposed due to data breach
- Thousands of Massachusetts customers who use the Bank of Canton may have had personal information, such as account numbers and social security numbers, exposed following a data breach, a bank spokesperson confirmed to Boston 25.
- Approximately 9,540 people who use the Bank of Canton may have had their banking information exposed after Fiserv, one of the bank’s vendors, was impacted by a cyber security incident around or on May 27, 2023.
- A bank spokesperson says clients were notified after the bank received the necessary information from Fiserv.
- Although the bank says there is no evidence any of its customers have experienced fraud at this time, clients can enroll in a free two-year identity protection service including credit monitoring, fraud consolation and identity theft restoration. Customers can also opt-in for security alerts warning them of potential fraudulent charges to their accounts.