[Security News] Data breach from industry of manufacturers and healthcare
May 22, 2024
1. Nissan North America data breach impacts over 53,000 employees
Nissan North America (Nissan) suffered a data breach last year when a threat actor targeted the company’s external VPN and shut down systems to receive a ransom. Nissan disclosed that the threat actor targeted its external VPN and then shut down certain company systems before asking for a ransom. The company notes that none of its systems were encrypted during the attack.
Sources: Bleeping Computer, Security Seek, CBS News
2. Healthcare firm WebTPA data breach impacted 2.5 million individuals
WebTPA, a third-party administrator that provides healthcare management and administrative services, disclosed a data breach. WebTPA discovered suspicious activity on its network on December 28, 2023 and launched an investigation with the help of third-party cybersecurity experts. The investigation revealed that an unauthorized actor may have obtained personal information between April 18 and April 23, 2023. Exposed information may include name, contact information, date of birth, date of death, Social Security number, and insurance information.
Sources: Security Affairs, SC Media, Security Week, Health IT Security
3. MediSecure e-script firm hit by ‘large-scale’ ransomware data breach
Electronic prescription provider MediSecure in Australia has shut down its website and phone lines following a ransomware attack believed to originate from a third-party vendor. The incident has impacted personal and health information of individuals but the extent remains unclear at this time. Operating since 2009, MediSecure provides digital tools to healthcare professionals to manage and dispense medications to patients.
Sources: Bleeping Computer, Securit Affairs, Cyber Daily
4. Ransomware attack on Singing River Health System impacted 895,000 people
The City of Helsinki suffered a data breach that impacted tens of thousands of students, guardians, and personnel. The data breach impacted the City’s Education Division’s computer network and exposed tens of millions of files, most of them containing ordinary personal information, but the City believes that the opportunity for abuse of this information is minor. The City of Helsinki reported the incident to the police and the investigation is still ongoing to determine the extent and impact of the incident.
Sources: Security Affairs, Security Week, CISO Series
5. Richland hit by data breach involving city, 911 emergency services
The city of Richland confirmed that its computer servers were breached through the Benton County Emergency Services system on May 15, compromising personal information for area residents. The city of Richland has about 63,000 residents, but the emergency services system includes 911 emergency dispatch services throughout Benton and Franklin counties, with a population of about 312,000. It was not immediately clear Friday morning if the breach extended beyond Richland.
Sources: AOL, Tri-City Herald, Gov Tech
Check out Penta Security’s product lines:
Web Application Firewall: WAPPLES
Database Encryption: D’Amo
Identity and Access Management: iSIGN+
Car, Energy, Factory, City Solutions: Penta IoT Security
Click here for inquiries regarding the partner system of Penta Security
Check out the product lines of Cloudbric by Penta Security:
Cloud-based Fully Managed WAAP: Cloudbric WAF+
Agent based Zero Trust Network Access Solution: Cloudbric PAS
Agentless Zero Trust Network Access Solution: Cloudbric RAS
Blockchain: Blockchain Security Solution
Click here for inquiries regarding the partner system of Cloudbric