Security Breach – 22 Oct 2020

Security Breach – 22 Oct 2020

Too many privileged credentials can lead to disasterToo many privileged credentials can lead to disaster

How many administrator or above credentials are around for your business systems? How many people have access to an administrator password who shouldn’t?

Can you be sure that every former staffer’s access has been removed? How many of your staffers are reusing passwords at work and at home?

Compromised credentials can create big business problems, and privileged credentials are Golden Tickets for cybercriminals.

In a recent analysis, experts determined that as many as a fifth of employees with privileged user credentials don’t need them – a third of the respondents even said that everyone at their level has the same access, whether they need it or not.

Playing fast and loose with privileged access to your systems and data is a disaster waiting to happen.

Bad actors were able to gain access to critical data and systems with stolen access credentials for O365, including administrator credentials. The attackers were then able to conduct a complex malware attack, remotely logging into staffers’ computers.

Sometimes it’s inconvenient to have to track down someone to click a button. But giving out privileged access to everyone is not the answer. Simple secure identity and access management is the solution.

Recent Breaches

 

Australia – Containerchain – Logistics Platform

Exploit: Ransomware

Risk to Small Business: Severe: In yet another attack on freight and transport, Containerchain was hit with a ransomware attack. Systems for its shipping customers were briefly shut down entirely but were restored quickly. The company does not believe that significant data was lost and noted that impacted customers (if any) would be in AU, NZ, SG, and MY. The investigation is ongoing.

Risk to Exploited Individuals:  No personal data was exposed in this incident.

Customers Impacted:  Unknown

Australia – Kleenheat – Energy Company

Exploit: Unsecured Database

Risk to Small Business: Moderate: Australia’s Kleenheat is warning customers that they may have had data exposed in a breach at a third party vendor. The data was collected and stored in 2014, and in a system that is no longer in use at a former data storage partner.

Risk to Exploited Individuals: Moderate: Clients impacted in the breach had what the company characterizes as general information exposed including names, residential addresses, and email addresses.

Customers Impacted:   Unknown

Protect your data and systems by implementing a solid cybersecurity plan. Talk to a TCT team member today and we can show you how.

Robert Brown
22/10/2020

Follow us on LinkedIn:

Related Articles:
Human Error is a Top Cause of Data Breaches
Hackers for hire are here to steal corporate secrets



Log a Job: