Today, with the ever evolving pace of digitization, security is no longer an option. There still exists the idea of not including Cybersecurity as a part of the Infrastructure, but today the lack of security not only in potential financial losses but also loss of reputation. In the last week, some of biggest names have gotten breached across the BFSI, Automotive & Healthcare industry. Swiss tech multinational and U.S. government contractor ABB has confirmed that some of its systems were impacted by a ransomware attack, previously described by the company as "an IT security incident." Managed Care of North America (MCNA) Dental has published a data breach notification on its website, informing almost 9 million patients that their personal data were compromised. Suzuki Motorcycle India, one of the largest bike manufacturers in the country, was forced to halt production of tens of thousands of vehicles over a data breach. Each of these attacks have been discussed below
ABB reported revenue of $29.4 billion for 2022 and has roughly 105,000 employees that develop industrial control systems (ICS) and SCADA systems for manufacturing and energy suppliers. ABB has determined that an unauthorised third party gained access to certain ABB systems, deployed non-self-propagating ransomware, and exfiltrated certain data," the firm said in a news release. Till date, forensics hasn't gathered any interesting information or relevant findings with respect to the breach. Furthermore, ABB stated that the latest compromise has been controlled, and that previously affected key services and systems are now running normally. All compromised services and systems have now been restored, and new security measures have been put in place to protect the network from future assaults. The ransomware - Black Basta - led to operations disruption, project delays, and a significant impact on its factories. While ABB didn't reveal the name of the attackers, BleepingComputer independently confirmed that the attack was conducted by the Black Basta ransomware gang with the help of an anonymous source familiar with the incident.
Cybernews has reached out to the company about the alleged data breach, with Suzuki Motorcycle India's spokesperson confirming that the enterprise is "aware of the incident." "We are aware of the incident and have promptly reported to the concerned Government department. The matter is currently under investigation, and for security purposes we are unable to provide further details at this point in time," the spokesperson told Cybernews. The company is India's fifth-largest bike and scooter maker, employing over 3,000 staff and boasting an annual production capacity of one million units. While the company could not provide further details concerning the attack, the nature of the incident strongly suggests that a ransomware gang was responsible. Prominent cybergangs employ double-extortion tactics to muscle victims into paying a ransom. Cybercriminals that use this model often publish stolen data bit by bit, expecting victims to succumb to internal and external pressure.
One of the largest government-sponsored (Medicaid and CHIP) dental care and oral health insurance providers in the U.S. Managed Care of North America (MCNA) Dental has published a data breach notification on its website, informing almost 9 million patients that their personal data were compromised. MCNA said it became aware of unauthorized access to its computer systems on March 6th, 2023, with an investigation revealing that the hackers first gained access to MCNA's network on February 26th, 2023. The breached data is believed to have contained Full name, Address, Date of birth, Phone number, Email, Social Security number, Driver's license number, Government-issued ID number, Health insurance (plan information, insurance company, member number, Medicaid-Medicare ID numbers), Care for teeth or braces (visits, dentist name, doctor name, past care, x-rays/photos, medicines, and treatment)Bills and insurance claims. LockBit ransomware gang claimed the cyberattack on MCNA on March 7th, 2023, when the group published the first data samples stolen from the healthcare provider.
Black Basta, Lockbit and many more ransomware groups are hitting the cyber crime world with multi industry attacks and it just keeps getting worse with time. The importance of ensuring cybersecurity awareness has become paramount than ever especially for an enterprise as most of these attacks have stemmed from an enterprise to an individual level.
No comments:
Post a Comment