Polyverse Weekly Breach Report

breach_report

A snapshot of last week’s reported cybersecurity breaches and vulnerabilities

San Diego Unified School District
The San Diego Unified School District discovered a data breach in October that compromised the personally identifiable information of more than half a million students and staff. The breach occurred in January and was the result of a phishing attack. To read more: https://www.scmagazine.com/home/security-news/san-diego-unified-school-district-data-breach-exposed-500000-students-staff-parents/

City of Saint John
The City of Saint John’s parking ticket payment system fell victim to a data breach that they are still trying to figure out. The city believes the breach was part of the Click2Gov breach that impacted other cities across North America. To read more: https://globalnews.ca/news/4792529/saint-john-parking-ticket-data-breach/

Evercore Investment Bank
Thousands of documents were stolen by hackers in an attack on investment bank, Evercore. One of the bank’s junior administrators fell victim to a phishing attack. To read more: https://www.thetimes.co.uk/edition/business/hackers-steal-thousands-of-files-from-dealmaker-evercore-pdcrhfqqg

BankIslami Pakistan
The Minister for Revenue informed the Pakistani Senate that six million was taken out of international ATMs in a cyberattack last October. There was no evidence of the bank’s data being hacked further. To read more: https://fp.brecorder.com/2018/12/20181222433548/

North Korean defectors
Hackers stole the personal information of around 1,000 North Korean defectors. The data came from one of the 25 defector support centers. The hack occurred after an employee opened a malicious document. To read more: https://www.zdnet.com/article/hackers-steal-personal-info-of-1000-north-korean-defectors/

US newspapers
A cyber attack caused printing disruptions to many major US newspapers including the LA Times, the Chicago Tribune and the Baltimore Sun. The West Coast editions of the Wall Street Journal and New York Times were also hit. The malware, first detected on Friday, appears to have originated outside the US. To read more: https://www.theguardian.com/technology/2018/dec/30/cyber-attack-disrupts-printing-of-major-us-newspapers

Nova
Nova Entertainment informed listeners that their personal information from May 2009 to October 2011 was leaked. The information included names, genders, and dates of birth among other items. The Australian company is urging listeners to change their passwords. To read more: https://tendaily.com.au/news/australia/a181228qon/nova-admits-listener-info-has-been-leaked-in-data-breach-20181228

BevMo
BevMo is warning customers of a data breach that may have exploited credit card numbers and other information from 14,000 people. The hacker was able to plant malicious code onto BevMo’s checkout page. To read more: https://www.columbian.com/news/2018/dec/27/bevmo-warns-of-customer-credit-card-data-breach/

Orange modems
A security researcher found 19,000 Orange Livebox ADSL modems were leaking WiFi credentials. Attackers scan for these modems and exploit a vulnerability first described in 2012. To read more: https://www.zdnet.com/article/over-19000-orange-modems-are-leaking-wifi-credentials/

Reported Vulnerabilities

Balboa Water Group
Researchers demonstrated an attacker controlling hot tubs via a laptop or smartphone. The Balboa Water Group stated it will try to introduce better security systems for owners. To read more: https://www.bbc.com/news/technology-46674706

Electrum wallets
A hacker stole over 200 Bitcoin by hacking the infrastructure of the Electrum Bitcoin wallet. The attack began on December 21st and ceased after GitHub admins took down the hacker’s repository. To read more: https://www.zdnet.com/article/users-report-losing-bitcoin-in-clever-hack-of-electrum-wallets/

Microsoft
Last week Microsoft issued an emergency patch for Internet Explorer to fix a zero-day vulnerability. After installing the patch, some users of Lenovo laptops found they were unable to boot into Windows. To read more: https://betanews.com/2018/12/24/internet-explorer-patch-lenovo-laptops/

CenturyLink
Emergency 911 services in a few states went down after a massive outage occurred at several CenturyLink data centers. CenturyLink said that a mysterious “network element” issue impacted service at 15 data centers. To read more: https://www.zdnet.com/article/centurylink-outage-takes-down-several-911-emergency-services-across-the-us/

Want to learn more?

Sign up below and receive these reports and more, directly in your inbox.

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.