Regina Mihindukulasuriya reports on some eyebrow-raising claims.
Last week, Bengaluru-based cybersecurity firm CloudSEK claimed it had found patient data from Sree Saran Medical Centre (SSMC) in Tirupati being sold on the dark web. This week, the company has itself become the victim of a cyber attack.
Over 6-7 December, CloudSEK updated its blog about the cyber incident it had experienced. “We are investigating a targeted cyber attack on CloudSEK,” the company said on 6 December.
Read more at The Print.
It is not clear why they suspect “a notorious cyber security company that is into dark web monitoring.” It seems that a laptop sent out for repair was returned with malware on it and the infostealer uploaded an employee’s credentials to the dark web, where they were purchased and then used to access the firm’s JIRA account. But why the firm believes another cybersecurity firm was involved in this — and which firm they suspect — is not explained.