[Security News] National security-related telecom company’s cyber incidents and other data breaches
July 18, 2024
1. Nearly all AT&T cell customers’ call and text records exposed in a massive breach
The call and text message records from mid-to-late 2022 of tens of millions of AT&T cellphone customers and many non-AT&T customers were exposed in a massive data breach, the telecom company revealed on 12th July. The company told CNN that this was an entirely new incident that had “no connection in any way” to another incident disclosed in March. Importantly, the stolen data did not include the contents of calls and text messages nor the time of those communications. AT&T said that contents of the calls or texts, personal information such as Social Security numbers, dates of birth, or customer names were not exposed in this incident, however the company acknowledged that publicly available tools can often link names with specific phone numbers.The FBI said AT&T reached out shortly after learning about the hack, but the agency wanted to review the data for potential national security or public safety risks. This appears to be the first cyber incident in which the Justice Department has asked a company to delay filing a disclosure with the SEC because of potential national security or public safety concerns.
Source : CNN, Security Week, Times, The Hacker News
2. Fujitsu confirms customer data exposed in March cyberattack
Fujitsu Japan has confirmed suffering a cyberattack in which sensitive data, including that of its customers, was leaked. It wasn’t ransomware, the company further explained, since the malware wormed its way around and used “sophisticated techniques” to evade detection, which is not a feature of ransomware attacks. In a statement on 9th July, the company says that it has concluded the investigation into the incident and confirms that data was stolen by malware that pivoted from a single point of compromise to 49 computers. The company isolated the 49 infected computers immediately after the discovery of the attack and the malware was contained to the Japan-based network environment. Additionally, none of the affected devices were used for cloud management, and Fujitsu has determined that “the damage has not spread outside the company, including to customer environments”.
Sources: Bleeping Computer, Tech Radar, Cyber Security News, Cyber Daily
3. Rite Aid confirms data breach after June ransomware attack
Pharmacy giant Rite Aid confirmed a data breach after suffering a cyberattack in June, which was claimed by the RansomHub ransomware operation. Even though Rite Aid has yet to share who was behind the June attack, the RansomHub group posted Rite Aid on its dark blog on Friday, July 12th, claiming to have exfiltrated 10GB of sensitive data, around 45 million records of people’s personal information, from the retail giant’s networks. This information includes name, address, dl_id number, dob, riteaid rewards number.
Source : Cyber Security News, Security Affairs, The Cyber Express, Bleeping Computer
4. Nokia Faces Data Breach Allegations: 7,622 Employee Records Reportedly Compromised
Nokia Corporation reportedly fell victim to a data breach. According to reports on BreachForums, a threat actor identified as 888 disclosed that over 7,622 records containing personally identifiable information (PII) of Nokia employees were compromised. This breach, allegedly stemming from a third-party incident, exposed sensitive details such as employees’ first and last names, job titles, company names, email addresses, phone numbers, and other pertinent information. The exact breach method remains unclear, but initial analyses suggest that the hackers may have exploited vulnerabilities in Nokia’s network infrastructure. Nokia has yet to release an official statement regarding the breach. However, sources within the company indicate that an internal investigation is underway.
Sources : The Cyber Express, Hack Read, Cyber Security News
Check out Penta Security’s product lines:
Web Application Firewall: WAPPLES
Database Encryption: D’Amo
Identity and Access Management: iSIGN+
Car, Energy, Factory, City Solutions: Penta IoT Security
Click here for inquiries regarding the partner system of Penta Security
Check out the product lines of Cloudbric by Penta Security:
Cloud-based Fully Managed WAAP: Cloudbric WAF+
Agent based Zero Trust Network Access Solution: Cloudbric PAS
Agentless Zero Trust Network Access Solution: Cloudbric RAS
Blockchain: Blockchain Security Solution
Click here for inquiries regarding the partner system of Cloudbric