Weekly News Roundup October 20-25, 2019


Posted on by Kacy Zurkus

While scammer emails reportedly are sent out in droves on Mondays, there’s no rhyme or reason to the cadence of cyberattacks—other than the fact that they are ongoing. Though hospitals and municipalities have been frequent victims of ransomware attacks, news that Billtrust, an online B2B payments provider, was hit with ransomware raised concerns about the downline impact these attacks can have.

SC Magazine reported, “The incident ‘shows that cyberattacks, including ransomware, extend beyond the perimeter of the single company and affect organizations,’ said Elad Shapira, head of research at Panorays. ‘In this case, the ransomware attack on Billtrust basically caused a denial-of-service attack on at least one of their customers.”

Additionally, a database owned by travel reservation platform Autoclerk reportedly leaked some highly sensitive data of government and military personnel. And that’s not all that happened this week! Here’s a look at other cybersecurity headlines you might have missed.

Oct. 25: In the aftermath of the Capital One breach, GovInfoSecurity reported Senators wrote a letter urging the FTC to investigate Amazon, claiming, "Amazon knew, or should have known, that AWS was vulnerable to SSRF attacks.”

Oct. 25: Federal health officials have issued a fine of more than $2 million to Jackson Health Systems in Miami, Florida, after it was found in breach of HIPPA laws that protect patient medical records.

Oct. 24: A university student in Vietnam is reportedly the author of more than 42 Android apps containing adware dubbed Ashas by ESET researchers. 

Oct. 23: E-skimming, a method of attack in which hackers inject malicious code into a website’s payment processing platform, has grown so prevalent that the FBI warned government agencies and SMBs to beware that they are potential targets.

Oct. 22: In an effort to enhance its cloud security offerings, Trend Micro announced that it will spend $70 million to acquire Cloud Conformity, an Australian startup.

Oct. 21: Threatpost reported, The Turla APT group has been spotted co-opting two cyberweapons from an Iranian APT (APT 34, according to one set of researchers), known as the Nautilus and Neuron implants, and deploying them against targets in the Middle East. The group also infiltrated the global operational infrastructure used by the Iranian APT.”

Oct. 21: One of England’s largest housing associations, Newcastle-based Home Group, warned thousands of customers that their data may have been compromised in a data breach.  

Oct. 21: A mobile phone fraud scam dubbed “SIM-jacking” allows hackers to transfer a user’s phone number to a SIM card and steal money from the user’s bank account.

Oct. 21: SafeBreach disclosed a vulnerability in all editions of Avast Anitvirus and AVG Antivirus. Avast confirmed the vulnerability and released version 19.8 for AVG and Avast, according to the disclosure.

Oct. 20: San Bernadino’s unified school district was downed after being hit with a ransomware attack. The district tweeted that the “attack has directly impacted the @SB_CitySchools computer network and has locked access to District files.”


Contributors
Kacy Zurkus

Senior Content Manager, RSA Conference

RSAC Insights

Blogs posted to the RSAConference.com website are intended for educational purposes only and do not replace independent professional judgment. Statements of fact and opinions expressed are those of the blog author individually and, unless expressly stated to the contrary, are not the opinion or position of RSA Conference™, or any other co-sponsors. RSA Conference does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented in this blog.


Share With Your Community

Related Blogs