The Week in Breach – Phishing nets more than $2M from the Republican Party

Make sure to add us or contact us for the latest news

The Week in Breach: Featured –Wisconsin Republican Party says hackers stole $2.3 million

Hackers have stolen $2.3 million from the Wisconsin Republican Party’s account that was being used to help reelect President Donald Trump in the key battleground state, the party’s chairman told The Associated Press on Thursday.

The party noticed the suspicious activity on Oct. 22 and contacted the FBI on Friday, said Republican Party Chairman Andrew Hitt.

Hitt said the FBI is investigating. FBI spokesman Brett Banner said that, per policy, “the FBI is not permitted to confirm or deny an investigation.” The Wisconsin Department of Justice, which has a center focused on cyber crime able to assist if requested, has not been asked to investigate, said spokeswoman Rebecca Ballweg.

Campaign officials in Wisconsin learned about the alleged hack from media reports and were furious that state officials had not briefed them on how it might impact operations, according to a Trump campaign official who requested anonymity because the person was not authorized to discuss internal conversations. READ MORE HERE

The Week in Breach News – United States


United States –  Steelcase

https://www.fox17online.com/news/steelcase-experiences-cyberattack

Exploit: Ransomware

Steelcase: Furniture Manufacturer

cybersecurity news represented by agauge showing severe risk

Risk to Business: 2.311 = Severe

Furniture manufacturing giant Steelcase was hit with a nasty ransomware attack that forced a brief shutdown of all systems. The company was able to quickly contain the suspected Ryuk ransomware incident and says that no data was stolen. Recovery operations were fast and everything is back online.

Customers Impacted: Unknown

Individual Risk: No personal or consumer information was reported as impacted in this incident.

How it Could Affect Your Business: These days, ransomware attacks aren’t just a threat to data – they’re being used to shut down production lines, impact infrastructure, and cause havoc.

IntegraMSP to the Rescue: Ransomware is generally the poisoned fruit of a phishing email. Protect your business from ransomware with BullPhish ID, phishing resistance training that’s both effective and cost-effective. LEARN MORE>>


United States – Wisconsin Republican Party

https://apnews.com/article/wisconsin-republican-party-hackers-stole-641a8174e51077703888e2fa89070e12

Exploit: Phishing

Wisconsin Republican Party: Political Organization

cybersecurity news gauge indicating extreme risk

Risk to Business: 1.337 = Extreme

The Wisconsin Republican Party had a suspected phishing incident that couldn’t have come at a worse time. An estimated $2.3 million was stolen by cybercriminals from the party’s reelection fund after at least one staffer interacted with a phishing email, impacting operations just as the races were coming down to the wire. The FBI and local officials are investigating the incident.

Individual Risk: No personal or consumer information was reported as impacted in this incident.

Customers Impacted: Unknown

How it Could Affect Your Business Phishing is about more than just credential compromise. Today’s most dangerous attack is used to do everything from steal money to deploy malware.

IntegraMSP to the Rescue: BullPhish ID has simple remote management tools and preloaded plug-and-play phishing simulation kits that make conducting phishing resistance training a snap anytime, anywhere. LEARN MORE>>


United States – Ledger

https://cryptobriefing.com/bitcoin-wallet-provider-ledger-compromised-again-malicious-phishing-attack/

Exploit: Unsecured Database

Ledger: Cryptocurrency Storage Platform

cybersecurity news represented by agauge showing severe risk

Risk to Business: 1.667 = Severe

Once again, Ledger is hot water for a cyberattack. This time, Ledger users received a phishing email that directed them to log in at a new address, allowing cybercriminals to steal both the victim’s login credentials and cryptocurrency. This is the company’s second incident this year, and information from that July 2020 incident is suspected to have played a part in this attack.

Customers Impacted: Unknown

Individual Risk: No personal or consumer information was reported as impacted in this incident.

How it Could Affect Your Business: Cyberattacks can have cascading consequences, with information stolen in cyberattacks coming back to haunt businesses months or years later. Data like login credentials can live on in Dark Web data dumps to haunt you later.

IntegraMSP to the Rescue: Dark Web ID helps keep credentials safe with 24/7/365 human and machine monitoring using real-time data analysis. to find compromised credentials and alert you fast.  LEARN MORE>>


United States – Fragomen, Del Rey, Bernsen & Loewy

https://techcrunch.com/2020/10/26/fragomen-data-breach-google-employees/

Exploit: Unauthorized Database Access

Fragomen, Del Rey, Bernsen & Loewy: Law Firm

cybersecurity news represented by a gauge indicating moderate risk

 

Risk to Business: 2.801 = Moderate

Data theft at a top law firm that provides employment verification screening services for companies like Google exposed a small amount of sensitive data. An unauthorized intrusion into a database exposed the employment verification information for some current and past Google employees.

cybersecurity news represented by a gauge indicating moderate risk

 

Individual Risk 2.992 = Moderate

The firm has not disclosed exactly what data was stolen although an employment verification or I-9 file can contain very sensitive information. The firm has also not indicated how many employees were affected although they’ve stated that it is a “limited number”

Customers Impacted: Unknown

How it Could Affect Your Business: When you’re storing sensitive data, that information needs extra protection in order to really serve your clients.

IntegraMSP to the Rescue: Secure identity and access management with Passly helps prevent intrusions by requiring multifactor authentication to let anyone access information. LEARN MORE>>


United States – Nitro Software Inc.

https://securityaffairs.co/wordpress/110025/data-breach/nitro-pdf-data-breach.html

Exploit: Unauthorized Database Access

Nitro Software Inc.: Software Developer

cybersecurity news represented by a gauge indicating moderate risk

 

Risk to Business: 2.071 = Severe

A massive data breach at Nitro, home of Nitro PDF, may have an impact on some major players. Nito serves clients including Google, Apple, Microsoft, Chase, and Citibank. The software maker announced that an unauthorized third party gained limited access to a company database. The stolen information has already made its debut on the Dark Web, including about 1TB of documents.

Individual Risk: No personal or consumer information was reported as impacted in this incident.

Customers Impacted: Unknown

How it Could Affect Your Business: A data breach at a third-party service provider for your business is just as dangerous as a data breach at your company and smart companies take precautions against supply chain risk.

IntegraMSP to the Rescue: Stolen data damage businesses by giving cybercriminals huge troves of passwords to mine. Keep your company’s credentials secure with Dark Web ID’s Channel-leading credential monitoring. LEARN MORE>>


United States – Gaming Partners International

https://www.forbes.com/sites/leemathews/2020/10/31/ransomware-gang-claims-international-casino-equipment–supplier-as-latest-victim/?sh=7529ed2c68b2

Exploit: Ransomware

Gaming Partners International: Casino Equipment Provider

cybersecurity news represented by agauge showing severe risk

 

Risk to Business: 2.211 = Severe

REvil ransomware caused havoc at one of the world’s leading casino suppliers, shutting down systems for several days. The hackers also extracted more than 500 gigabytes of data during the breach. Among the files were casino contracts, banking information and technical documents. The company was quickly able to restore operations.

Individual Risk: No personal or consumer information was reported as impacted in this incident.

Customers Impacted: Unknown

How it Could Affect Your Business: Every time your employees interact with a phishing email, your business is at risk for ransomware. Security awareness training prevents up to 70% of cybersecurity incidents.

IntegraMSP to the Rescue: Phishing resistance training is one of the most important ways that businesses can protect their systems and data, as long as it’s refreshed at least every 4 months. You’ll never run short of fresh, updated training material with BullPhish ID. LEARN MORE>>

The Week in Breach Risk Levels


1 – 1.5 = Extreme Risk
1.51 – 2.49 = Severe Risk
2.5 – 3 = Moderate Risk

Risk scores for The Week in Breach are calculated using a formula that considers a wide range of factors related to the assessed breach.