Weekly Breach Report – February 22nd 2021

Feb 22, 2021By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities

 

SolarWinds

Microsoft analyzed the SolarWinds hack and found more than 1,000 different developer fingerprints on the code. The Register: https://www.theregister.com/2021/02/15/solarwinds_microsoft_fireeye_analysis/

 

Centreon

Hackers have targeted several French companies by exploiting software made by Paris- and Toronto-based Centreon, which specializes in IT-monitoring systems. The Hacker News: https://thehackernews.com/2021/02/hackers-exploit-it-monitoring-tool.html

 

Amber Group

A security lapse by a Jamaican government contractor resulted in the exposure of immigration records and COVID-19 test results for thousands of travelers who visited the island. TechCrunch: https://techcrunch.com/2021/02/17/jamaica-immigration-travelers-data-exposed/

 

Apple M1

Researchers discovered the first malware to run natively on Apple’s new M1 chips. The Hacker News: https://thehackernews.com/2021/02/first-malware-designed-for-apple-m1.html

 

Mac malware

Researchers found previously undetected malware on 30,000 Macs worldwide, and are still trying to understand what it does. The malware also runs natively on Apple’s new M1 chip. ArsTechnica: https://arstechnica.com/information-technology/2021/02/new-malware-found-on-30000-macs-has-security-pros-stumped/

 

Hoffman Construction

This US building contractor announced a data breach that affected employee healthcare records. The Daily Swig: https://portswigger.net/daily-swig/hoffman-construction-shores-up-its-defense-systems-after-employee-healthcare-data-breach

 

French hospitals

Two French hospital groups suffered ransomware attacks, and a third preemptively cut connections with an IT provider to prevent an attack. France24: https://www.france24.com/en/europe/20210216-cyber-attacks-hit-two-french-hospitals-in-one-week

 

California Department of Motor Vehicles

A ransomware attack hit a billing contractor for the California Department of Motor Vehicles, and the DMV is alerting drivers that the breach leaked millions of registration records. SFGate: https://www.sfgate.com/bayarea/article/California-DMV-hit-data-breach-ransomware-attack-15959944.php

 

North Korean hackers

The US Justice Department indicted three men who, working with the North Korean government, hacked Sony Pictures, deployed WannaCry ransomware in 2017, and stole over $200m from victims worldwide. Krebs On Security:https://krebsonsecurity.com/2021/02/u-s-indicts-north-korean-hackers-in-theft-of-200-million/

 

Lakehead University

Lakehead University extended its winter vacation after a cyberattack left students and faculty without access to online services, including its website, email, Zoom, and online learning platforms. Tbnewswatch: https://www.tbnewswatch.com/local-news/lakehead-extends-reading-week-due-to-cyber-attack-3444189

 

Kroger pharmacy 

Kroger announced that its pharmacy customers may have had their personal information stolen in a security breach involving Accellion, a third-party vendor. Fox5: https://www.fox5atlanta.com/news/kroger-pharmacy-experiences-data-breach

 

Cashalo

Online lending platform Cashalo reported a cybersecurity breach in a database that contained customers’ personal information, but the company claims that accounts were not compromised. CNN Philippines: https://cnnphilippines.com/news/2021/2/20/cashalo-data-breach.html

 

Mutuelle Nationale des Hospitaliers

A French health-insurance company experienced a ransomware attack that disrupted company operations. ITIJ: https://www.itij.com/latest/news/french-health-insurer-suffers-cyber-attack

 

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.