On February 16, the NYS Department of Financial Services issued a cybersecurity fraud alert involving public-facing web sites where consumers could request “instant quotes” for car insurance or other products. The alert warned insurers that private information used to prefill requests was being stolen and misused for pandemic unemployment benefits fraud. At the time, they…
Category: Business Sector
NY: Filters Fast Settles Charges Stemming from Failure to Patch Critical Vulnerability Exploited in 2019 Data Breach
In 2019, Filters Fast experienced a data breach when a threat actor exploited a plugin vulnerability in vBulletin. Using SQL injection, the attacker was able to obtain consumers’ cardholder names, billing addresses, expiration dates, validation codes, and primary account numbers for purchases made between June, 2019 and July, 2020. Filters Fast did not detect any…
Trailer maker Utility targeted in “cyber event”
Nate Tabak reports: Utility Trailer Manufacturing, one of the largest U.S. producers of trailers for the trucking industry, was targeted in an apparent ransomware attack that exposed personal information of numerous employees. The California-based company told FreightWaves that it had “suffered a cyber event” that disrupted some systems temporarily. The company disclosed the incident after…
Cybersecurity incident causes disruption and some delays at Ardagh Group
Global packaging group Ardagh is a supplier of recyclable metal and glass packaging for the world’s leading brands. It operates 57 metal and glass production facilities in 12 countries, employs more than 16,000 people with sales of approximately $7 billion. In 2018, Ardagh deployed Vectra Cognito AI solution. Vectra Cognitio AI uses Machine Learning intelligence…
Cyberinsurance giant AXA hit by ransomware attack after saying it would stop covering ransom payments
Graham Cluley sets the stage nicely: Ouch. One week after the French branch of cyberinsurance giant AXA said that it would no longer be writing policies to cover ransomware payments, the company’s operations in Thailand, Malaysia, Hong Kong, and the Phillippines have reportedly been hit… by a ransomware attack. Read more on GrahamCluley.com. Consistent with their…
De: Darkside threat actors attempted to extort Möbelstadt Sommerlad
Möbelstadt Sommerlad is a retail furniture store in Germany. This week, its managing director, Frank Sommerlad, disclosed that they had been the victim of a ransomware attack and extortion attempt. Marc Schäfer reports Sommerlad’s statement (machine translation): “We got away with it with a black eye,” says Frank Sommerlad, managing director of the R. Sommerlad GmbH…