Try it
Schedule a Demo
October 07

SecureFact – Cyber Security News – Week of October 07, 2024

Comcast and Truist Bank customers caught up in FBCS data breach

  • Comcast and Truist Bank have reported that their customers were affected by a significant data breach at Financial Business and Consumer Solutions (FBCS), a debt collection agency.
  • The breach occurred between February 14 and February 26, 2024, and initially impacted 1.9 million individuals, a number that later rose to 4.2 million.
  • The stolen data includes full names, Social Security Numbers (SSNs), dates of birth, account information, and driver’s license numbers. FBCS initially assured Comcast that no customer data was compromised. However, it later confirmed that 273,703 Comcast customers were affected.
  • These customers are being offered 12 months of free identity theft protection.
  • Truist Bank has also notified its customers about the breach, although the exact number of affected individuals remains unspecified. The bank indicated that the type of compromised information varies per individual.

*Source

Highline Public Schools confirms ransomware behind shutdown

  • Highline Public Schools confirmed that a ransomware attack led to the shutdown of all its schools in early September.
  • The district discovered unauthorized activity on its network, prompting the closure and cancellation of school activities.
  • The school district engaged a third-party cybersecurity firm to investigate, which confirmed the ransomware nature of the attack.
  • They have notified the FBI and are cooperating with their investigation, although details about the attackers or potential data breaches remain unclear.

*Source

Ransomware attack forces UMC Health System to divert some patients

  • UMC Health System in Texas has been forced to divert some patients to other facilities due to a ransomware attack that caused significant IT outages.
  • While the healthcare provider, which operates 30 clinics and serves around 400,000 patients annually, remains open, both emergency and non-emergency services are affected.
  • The attack has led to the unavailability of medical prescription lists, and patients are advised to bring their prescriptions when visiting.
  • Certain departments, such as radiology, are either closed or experiencing significant delays.
  • Communication via phone or online portals is unreliable, prompting patients needing immediate assistance to visit clinics directly.

*Source

Chinese hackers breached US court wiretap systems: Report

  • Chinese hackers have reportedly breached the networks of major U.S. telecom companies, including Verizon, AT&T, and Lumen Technologies, gaining access to systems used for court-authorized wiretapping.
  • This intrusion, which may have lasted for months, allowed the hackers to collect sensitive communications data and intercept internet traffic.
  • The ministry emphasized that cybersecurity is a global challenge that requires cooperation rather than accusations.
  • The hacking group responsible for this breach has been identified as “Salt Typhoon,” part of a broader pattern of Chinese cyber espionage activities.

*Source

Cloudflare blocks largest recorded DDoS attack peaking at 3.8Tbps

  • Cloudflare successfully blocked the largest recorded DDoS attack, which peaked at 3.8 terabits per second (Tbps), targeting sectors such as financial services, internet, and telecommunications.
  • This month-long campaign involved over 100 hyper-volumetric attacks that overwhelmed network infrastructure with excessive data.
  • The attack involved more than two billion packets per second and utilized a network of compromised devices, primarily Asus routers, MikroTik systems, DVRs, and web servers located globally, particularly in Russia, Vietnam, the U.S., Brazil, and Spain.
  • Cloudflare autonomously mitigated all attacks, with the peak attack lasting 65 seconds.
  • The previous record for a DDoS attack was held by Microsoft at 3.47 Tbps targeting an Azure customer.

*Source

Community Clinic of Maui says 123,000 affected by May cyberattack

  • The Community Clinic of Maui, also known as Mālama I Ke Ola Health Center, experienced a significant cyberattack in May 2024, impacting over 123,000 individuals.
  • The breach occurred between May 4 and May 7, during which hackers accessed sensitive personal information, including Social Security numbers, passport numbers, financial account details, and medical treatment data.
  • The incident was attributed to the LockBit ransomware group, which claimed responsibility in June.
  • The clinic was forced to take its systems offline for nearly two weeks, leading to limited services upon reopening.
  • The stolen information included names, Social Security numbers, financial account numbers with CVV details, and some biometric data.
  • Despite the breach, Mālama stated there is no evidence that the compromised data has been misused.
  • The clinic notified affected individuals and offered complimentary credit monitoring for those whose Social Security numbers were potentially exposed.

*Source