Mitigate Baron SameEdit (CVE-2021-3156) vulnerability

Weekly Breach Report – Dec. 6th 2021

Dec 6, 2021By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities

 

Phoenix group

Ukrainian police seized computing equipment and hacking tools belonging to the Phoenix cybercrime group. The group used phishing schemes to hack into mobile devices and harvest banking credentials. The Daily Swig: https://portswigger.net/daily-swig/ukrainian-police-expose-international-phone-hacking-gang

 

Kentucky Energy and Environment Cabinet

The Kentucky Energy and Environment Cabinet announced a data breach that exposed unredacted mining permit applications containing personal information. Tristagehomepage.com: https://www.tristatehomepage.com/news/kentucky-news/kentucky-energy-and-environment-cabinet-announces-data-security-breach/

 

Ikea

Ikea confirmed that it is working to mitigate a cyberattack on its systems that compromised its Microsoft Exchange servers. A full investigation into the incident is currently underway. IT Pro: https://www.itpro.co.uk/security/cyber-attacks/361680/ikea-investigates-email-based-cyber-attack

 

Panasonic 

Panasonic confirmed a data breach after hackers gained access to its internal network. The company detected the breach in November, but the breach began in June. TechCrunch: https://techcrunch.com/2021/11/29/panasonic-data-breach/

 

DNA Diagnostics Center

An Ohio-based DNA testing company announced that a security breach impacts over 2.1m people’s data. Bleeping Computer: https://www.bleepingcomputer.com/news/security/dna-testing-firm-discloses-data-breach-affecting-21-million-people/

 

Broward County Public Schools

A South Florida school district suffered a ransomware attack and sent breach notifications to students and staff whose personal information may have been compromised. StateScoop: https://statescoop.com/florida-school-district-acknowledges-data-breach-in-ransomware-incident/

 

New Years Honours recipients

The UK Cabinet Office was fined £500,000 for sharing the postal addresses of over 1,000 New Years Honours recipients online. BBC: https://www.bbc.com/news/uk-politics-59505637

 

Planned Parenthood LA

A hacker gained access to and exfiltrated 400,000 patients’ personal information from Planned Parenthood’s Los Angeles branch. The Washington Post:https://www.washingtonpost.com/nation/2021/12/01/los-angeles-planned-parenthood-hack/

 

Ubiquiti

The US Department of Justice arrested a former developer at Ubiquiti for stealing information, demanding a ransom in exchange for the compromised data, and pretending to be a whistleblower. PCMag: https://www.pcmag.com/news/former-ubiquiti-dev-arrested-for-orchestrating-data-breach-trying-to-extort

 

Delta-Montrose Electric Association

Delta-Montrose Electric Association discovered a cyberattack that caused several days of downtime for the company’s internal network. An investigation into the attack is still ongoing. NBC 11 News: https://www.nbc11news.com/2021/12/02/update-delta-montrose-electric-association-cyber-attack/

 

T-Mobile Poland

The Polish unit of T-Mobile announced that it experienced a DDoS cyberattack but said its network and critical systems were not compromised. Reuters:https://www.reuters.com/business/media-telecom/polish-t-mobile-unit-faces-cyber-attack-systems-not-compromised-2021-12-03/

 

Babam network access broker

Brian Krebs looks at the cybercriminal broker Babam that sells remote access credentials to ransomware groups. Krebs on Security: https://krebsonsecurity.com/2021/12/who-is-the-network-access-broker-babam/

 

Conseil des ecoles publiques de l’Est de l’Ontario

An Ontario French-public school board issued a statement announcing a data breach and that some files were stolen and held for ransom. Seaway News: https://www.cornwallseawaynews.com/2021/12/04/ransomware-attack-hits-french-public-school-board/

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.