Security Breach – 17 June 2022

Weakest link is your employees

Security Breach – 17 June 2022

Businesses are being inundated with threats to their data security as cybercriminals hunt for fresh stores of data to peddle in the booming dark web data markets. With cybercrime numbers rising every day, it may seem like bad actors are the biggest threat to data security that a company will encounter. But that’s not the case. The biggest threat to data security that a company faces every day is actually a lot closer to home: its employees. Human actions lead to most data security incidents, but companies can mitigate the risk of a data exposure nightmare without breaking the bank.

Employees that have recently left an organisation or who have been terminated are a major data security threat, and they’re highly likely to send themselves data via email on their way out.  An estimated 45% of employees download, save or send work-related files before they leave their job. This happens most frequently in the tech, financial services, business consulting and management sectors. They’ll take everything from client lists to trade secrets. Employees are most likely to steal data like intellectual property within 90 days of their resignation, with 70% of insider intellectual property thefts taking place in that window.

Recent Breaches


Canada – CMC Electronics

Exploit: Ransomware

Risk to Business: Severe: The Canadian Department of National Defense (DND) confirmed earlier this week that a defense contractor, CMC Electronics, has alerted the government that it had experienced a cyberattack, suspected to be ransomware, in May. The company says that there is no indication to date that those responsible for the cyberattack have stolen any sensitive military information. The attack was allegedly carried out by the BlackCat ransomware group.2.

Risk to Exploited Individuals: No information about consumer/employee PII, PHI or financial data exposure was available at press time.

Customers Impacted: Unknown

Japan – Handa Hospital

Exploit: Ransomware

Risk to Business: Severe: Handa Hospital in Tsurugi, Tokushima Prefecture, Japan has announced that it has been the victim of a ransomware attack. Investigators say that the October 2021 cyberattack occurred after a company that was involved in providing an electronic medical record system for the hospital had disabled anti-virus software on the hospital’s computers. Investigators laid out the chain of events and it is a lesson in security woes. Before the cyberattack occurred, the service provider configured the Windows settings of about 200 computers connected to the electronic medical record system to disable functions including anti-virus software and regular Windows updates because they made the electronic medical record system unstable. Investigators also determined that other circumstances contributed to the problem. Windows was never updated on the computers at the hospital and the hospitals’ VPN had never been updated. The investigation ultimately determined that the cybercriminals exploited defects in the hospital’s VPN device and made an unauthorized intrusion to have the ransomware infect the hospital’s system.

Risk to Exploited Individuals: No information about consumer/employee PII, PHI or financial data exposure was available at press time. 

Customers Impacted: Unknown

Talk to a TCT team member today about implementing cyber security and phishing training plan for your staff.

Robert Brown
17/06/2022

Follow us on LinkedIn: 

Related Articles:
Cybercrime remains relentless
Failproof Strategies for Better Cybersecurity