The Week in Breach – Protect Your Heart (and Your Data) from Relationship Trouble

Make sure to add us or contact us for the latest news


Protect Your Heart (and Your Data) from Relationship Trouble


No relationship is perfect. Your business relationships can bring you many wonderful benefits – and just like any relationship, there will be a few challenges. Get expert advice on overcoming those challenges in this eBook, including:

  • Examples of third-party and supply chain data breaches
  • A clear walkthrough of how supply chain and third-party risk endanger businesses
  • Solutions that mitigate the chance of disaster from those risks
Get our relationship advice ebook that you need to protect your business from this risk!

Dark Web ID’s Top Threats This Week


 

United States – CallX

https://www.infosecurity-magazine.com/news/telemarketing-biz-exposes-114000/

Exploit: Unsecured Server

CallX: Telemarketing Firm

cybersecurity news represented by agauge showing severe risk

Risk to Business: 1.727 = Severe

An unsecured AWS S3 bucket has been leaking information gathered by CallX, whose analytics services are utilized by a wide array of companies including LendingTree, Liberty Mutual Insurance and Vivint to improve their media buying and inbound marketing. Discovered by researchers, 114,000 files were left publicly accessibly in the leaky bucket. Most of these were audio recordings of phone conversations between CallX clients and their customers, which were being tracked by the firm’s marketing software. An additional 2000 transcripts of text chats were also viewable.

cybersecurity news represented by agauge showing severe risk

Individual Risk: 1.447 = Extreme

Personally identifiable information (PII) contained in these files included full names, home addresses, phone numbers and call details. The leaked data can be used to launch spear phishing attacks and other fraud.

Customers Impacted: Unknown

How it Could Affect Your Business: Information like this makes its way quickly to the bustling data markets and dumps on the dark web, seeding future trouble.

IntegraMSP to the Rescue: Watch for threats from the dark web without lifting a finger using Dark Web ID, 24/7/365 credential monitoring that alerts you to trouble fast. LEARN MORE>>


United States – Qualys

https://www.bleepingcomputer.com/news/security/cybersecurity-firm-qualys-is-the-latest-victim-of-accellion-hacks/

Exploit: Third-Party Breach (Ransomware)

Qualys: Cybersecurity & Cloud Development

cybersecurity news gauge indicating extreme risk

Risk to Business: 1.412 = Extreme

Qualys is the latest victim to have suffered a data breach after a zero-day vulnerability in their Accellion FTA server was exploited to steal hosted files. The Clop ransomware gang posted screenshots of files allegedly belonging to the cybersecurity firm including purchase orders, invoices, tax documents and scan reports.

Individual Impact: No sensitive personal or financial information was announced as part of this incident, but the investigation is ongoing.

Customers Impacted: Unknown

How it Could Affect Your Business It’s especially damaging for a cybersecurity company to fall victim to something like ransomware. Unfortunately, this problem came through a third-party partner, but potential customers may see a cybersecurity firm that can’t protect itself.

IntegraMSP to the Rescue: Contact us, for a complete walkthrough of today’s nastiest cyberattacks and the tricks that cybercriminals use to conduct them. CONTACT US>>


United States – PrismHR

https://www.bleepingcomputer.com/news/security/payroll-giant-prismhr-outage-likely-caused-by-ransomware-attack/

Exploit: Ransomware

PrismHR: Payroll Services

cybersecurity news represented by agauge showing severe risk

Risk to Business: 2.212 = Severe

A suspected ransomware attack has brought trouble to payroll giant Prism HR and its clients. PrismHR’s platform is experiencing a service outage as a result, which has led to smaller accountants, and their clients, to lose access to PrismHR’s customer portals.

Individual Impact: No sensitive personal or financial information was announced as part of this incident, but the investigation is ongoing.

Customers Impacted: Unknown

How it Could Affect Your Business: Ransomware can strike anytime, anywhere and companies of any size are vulnerable. Smart companies take proper precautions like increased security awareness training.

IntegraMSP to the Rescue: Learn the secret to keeping ransomware and phishing away from your business and keeping your data safer . LEARN MORE >>


United States – Microsoft

https://www.nytimes.com/2021/03/06/technology/microsoft-hack-china.html

Exploit: Nation-State Hacking

Microsoft: Software Developer

cybersecurity news gauge indicating extreme risk

Risk to Business: 1.227 = Extreme

Microsoft is reporting a that suspected Chinese nation-state actors have exploited a flaw in Exchange that has given them some access to data or email accounts. The company estimates that 30,000 or so customers were affected. This flaw impacts a broad range of customers, from small businesses to local and state governments and some military contractors. The hackers were able to steal emails and install malware to continue surveillance of their targets. Patches are available and should be installed immediately.

Individual Impact: No sensitive personal or financial information was announced as part of this incident from Microsoft directly, but organizations around the world will be conducting assessments with potentially wide-ranging fallouts.

Customers Impacted: Unknown

How it Could Affect Your Business: This is a tremendous problem for businesses of every size, and something that will be lingering for years for impacted organizations.

IntegraMSP to the Rescue: Stolen information can keep coming back to haunt you, but Dark Web ID can give you a heads up if your credentials turn up in dark web markets. SEE DARK WEB ID AT WORK>>



1 – 1.5 = Extreme Risk

1.51 – 2.49 = Severe Risk

2.5 – 3 = Moderate Risk