Try it
Schedule a Demo
November 04

SecureFact – Cyber Security News – Week of November 4, 2024

Interbank confirms data breach following failed extortion, data leak

  • Interbank, a major financial institution in Peru, has confirmed a data breach following an attempted extortion by a hacker who leaked stolen data online.
  • The breach involved unauthorized access to customer information, with the threat actor, known as “kzoldyck,” claiming to have stolen data from over 3 million customers.
  • This includes sensitive details such as full names, account IDs, birth dates, addresses, phone numbers, email addresses, credit card information, and plaintext credentials.
  • Interbank stated that they have implemented additional security measures in response to the breach and assured customers that their deposits remain secure.

*Source

Massive data breach exposes 800,000 insurance customers’ personal information

  • Landmark Admin, an insurance administrative services company, has reported a significant data breach affecting over 800,000 individuals following a cyberattack in May 2024.
  • The breach compromises sensitive information, including names, Social Security numbers, driver’s license numbers, and bank details, as Landmark partners with major insurance carriers in the U.S.
  • The company detected unusual activity on May 13 and took immediate action to secure its systems, but hackers managed to re-enter on June 17.
  • An investigation revealed that both encrypted and unencrypted data had been stolen.
  • Landmark is offering free identity theft protection services to those affected and is notifying impacted individuals through mail.

*Source

LA housing authority confirms breach claimed by Cactus ransomware

  • The Housing Authority of the City of Los Angeles (HACLA) has confirmed a cyberattack on its IT network, which has been claimed by the Cactus ransomware gang.
  • HACLA, one of the largest public housing authorities in the U.S., administers over 32,000 public housing units and operates on an annual budget exceeding $1 billion.
  • Following the attack, HACLA engaged external forensic IT specialists to investigate and respond to the incident.
  • While the authority has stated that its systems remain operational and committed to providing services, it has not disclosed when the breach was detected or whether sensitive data was compromised.
  • Cactus ransomware claims to have stolen 891 GB of data during the attack, including personal identifiable information, database backups, financial documents, and employee data.
  • The gang has already published some evidence of the stolen data on their leak site.

*Source

Medusa Ransomware Hack of Pathology Lab Affects 1.8 Million

  • Medusa ransomware has targeted a pathology lab in the U.S., impacting approximately 18 million patients.
  • The breach occurred when the attackers infiltrated the lab’s systems, leading to the theft of sensitive patient data, including names, Social Security numbers, and medical records.
  • The lab, which provides diagnostic services to various healthcare providers, reported the incident after discovering unauthorized access to its network.
  • The attackers demanded a ransom for the stolen data, and while the lab has not disclosed whether it paid the ransom, it has taken steps to enhance its cybersecurity measures following the attack.

*Source

Cisco says DevHub site leak won’t enable future breaches

  • Cisco has addressed a recent incident involving a leak from its public-facing DevHub portal, confirming that the exposed non-public files do not contain information that could facilitate future breaches.
  • The leaked documents included data intended for customers and some files related to CX Professional Services customers, which were mistakenly made public due to a misconfiguration.
  • Cisco has since corrected this configuration issue and restored access to the DevHub site, emphasizing that no financial data or personal information was compromised.

 

*Source