Happy Friday! Let’s dive into this week’s cybersecurity news recap before we start the weekend…
North Carolina headquartered supermarket chain Food Lion has had to take some of their systems offline following a cyberattack that occurred late last week. Stores are still open, but pharmacies and e-commerce operations have been affected. The grocery store’s parent company, Ahold Delhaize, is currently investigating the incident and assessing the full extent of the attack.
(–Source: Yahoo! News
Read More: Cybercriminals target Food Lion )
Newpark Resources, a Texas-based oilfield supplier, detected a ransomware attack late last month involving an unauthorized third-party gaining access to some internal information systems. Access is limited and network disruptions have occurred following the attack and an internal investigation with external support has been launched. Manufacturing and field operations continue to function with the utilization of established downtime procedures as the investigation continues.
(–Source Cyber Daily AU
Read More: US oilfield service provider disrupted by ransomware attack – Cyber Daily )
Amazon employees’ personal data has been leaked following a data breach that exposed email addresses, phone numbers, and building locations. The incident occurred at one of Amazon’s property management vendors, impacting several of that company’s customers, including Amazon, MetLife, HP, and more.
This information was able to be accessed due to a major security vulnerability in the MOVEit file transfer system. This vulnerability was identified last year.
Amazon assured that its systems are still secure and the only Amazon-related information that was included in this leak includes employee work contact information. No social security numbers, government IDs, or other sensitive data were included in the leaked information.
(–Source: The Verge on MSN
Read More: Amazon confirms employee data breach, but says it’s limited to contact info )
Millions of customers of Hot Topic, Box Lunch, and Torrid have had their personal information leaked in a massive data breach. Originally, a threat actor who goes by “Satanic” claimed to have stolen 350 million user records, but an analysis from Atlas Privacy indicates that the breach impacts closer to 54 million customers.
The information exposed in this leak includes names, addresses, phone numbers, birth dates, and partial credit card information only encrypted with a weak cipher. In Satanic’s original post, the stolen data was up for sale for $20,000 and a $100,000 ransom was requested from Hot Topic for the threat actor to take down the information.
Hot Topic has not confirmed the occurrence of this breach, and it seems like investigations are still ongoing.
(–Source: How-To Geek on Yahoo! Tech
Read More: Major Hot Topic Data Breach Affects 57 Million Customers )
A data breach affecting the law firm Thompson Coburn LLP and its client, Presbyterian Healthcare Services which occurred earlier this year and compromised the information of over 300,000 people is now the focus of a class action lawsuit that accuses both parties of not properly securing sensitive data.
This data breach exposed names, social security numbers, birth dates, medical records, account details, prescription and health insurance information of patients.
(–Source: Forbes
Read More: 300,000 Patients Impacted By Law Firm Data Breach )