Weekly Breach Report – November 23rd

Nov 23, 2020By Shaina Raskin

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities

City of Saint John, Canada

A ransomware cyberattack on the city of Saint John’s internet infrastructure forced online services to shut down. Its services may not be fully operational for several weeks. CBC: https://www.cbc.ca/news/canada/new-brunswick/cyber-security-saint-john-1.5803298

 

London’s Hackney council

Hackers hit a London city council with a cyberattack last month. Many services are still offline and may not return for several months. ZDNet:https://www.zdnet.com/article/cyber-attack-disruption-could-last-for-months-says-council/

 

Industrial automation

A critical vulnerability was discovered in Real-Time Automation’s 499ES EtherNet/IP stack, which is widely used in factory-floor automation. The flaw enables hackers to attack industrial control systems remotely. The Hacker News: https://thehackernews.com/2020/11/researchers-warn-of-critical-flaws.html

 

Delaware Division of Public Health

Health officials in Delaware disclosed that the personal information of thousands of people tested for coronavirus this summer was accidentally shared with an unauthorized individual. WCVB: https://www.wcvb.com/article/covid-19-related-data-breach-affects-thousands-in-delaware/34680051#

 

Cicada group

Researchers discovered a massive campaign funded by the Chinese-government-funded Cicada group. It is targeting companies linked to Japan and the United States. Ars Technica: https://arstechnica.com/information-technology/2020/11/massive-china-state-funded-hack-hits-companies-around-the-word-report-says/

 

WordPress

Researchers discovered a function-injection vulnerability in WordPress sites running Epsilon Framework themes. TechRadar: https://www.techradar.com/news/millions-of-wordpress-sites-hit-in-wide-ranging-attack

 

GO SMS Pro App

An Android messaging app used by more than 100m people has an unpatched security flaw that exposes media transferred between users. The Hacker News: https://thehackernews.com/2020/11/warning-unpatched-bug-in-go-sms-pro-app.html

 

Service NSW

An April 2020 cyberattack on Service NSW, which provides Australia’s New South Wales with government services, compromised the information of 186,000 customers. Service NSW’s legal and investigation costs related to the attack are expected to total AU$7m. ZDNet: https://www.zdnet.com/article/service-nsw-expecting-cyber-attack-to-set-it-back-au7m-in-legal-and-investigation-costs/

 

Americold

A ransomware attack hit U.S. cold-storage company Americold and impacted its business operations. Infosecurity Magazine: https://www.infosecurity-magazine.com/news/americold-operations-downed-by/

 

Port of Kennewick

Hackers are demanding $200,000 in ransom after locking the Port of Kennewick’s computer servers and files in a ransomware attack. Tri-City Herald: https://www.tri-cityherald.com/news/local/crime/article247251569.html

 

Glofox

This Irish gym-management software start-up is investigating reports of a data breach by Shiny Hunters, a well-known hacking group. Irish Times:https://www.irishtimes.com/business/technology/irish-start-up-glofox-investigates-possible-data-breach-1.4414837

 

Manchester United

England’s Manchester United football club announced that it was hit by a cyberattack and is investigating the situation. Evening Express: https://www.eveningexpress.co.uk/sport/manchester-united-victims-of-cyber-attack/

 

Pray.com

Christian faith app Pray.com leaked the private data of 10m people after leaving an AWS S3 bucket publicly accessible on the internet. Threatpost:https://threatpost.com/10m-impacted-pray-com-data-exposure/161459/

Like the report? Sign up below and get it in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.