Security Breach – 24 May 2024

WithSecure EDR is a focused approach to identifying threats on devices, giving better visibility by raising the level of threat intelligence.

24 May Security Breach – 24 May 2024

Posted at 15:55h in Security Breach, TCT News by

Cyber threats are becoming increasingly sophisticated thanks to the advent of advanced technologies like artificial intelligence. That evolution means that traditional security measures are no longer sufficient to combat advanced threats. Endpoint Detection and Response (EDR), sometimes known as Managed Detection and Response (MDR), has become a crucial focus area for businesses, aiding in both robust defense strategies and incident response.

WithSecure EDR solutions offer advanced threat detection, real-time monitoring, and automated response capabilities essential for safeguarding endpoints against sophisticated attacks. EDR solutions are designed to monitor endpoints, such as computers and mobile devices, to detect and respond to cyber threats. They gather and analyse data from endpoints to identify suspicious activities and potential security incidents. Utilising behavioral analysis and threat intelligence, EDR tools can detect anomalies that traditional security measures might overlook.

Recent Breaches

 

Australia – MediSecure – Prescription Platform

Exploit: Ransomware

Risk to Business: Severe: MediSecure, an Australian provider of a digital prescription platform, has disclosed that it has experienced a ransomware attack on May 16. Bad actors gained access to the personal and health information of individuals in its systems. The company did not offer specifics. The company’s website and phone lines were also knocked offline. Officials from the office of the National Cyber Security Coordinator (NCSC) reassured the public that no current e-prescriptions have been impacted or accessed.  

Japan – Nissan – Carmaker

Exploit: Ransomware

Risk to Business: Severe: Nissan North America has announced that they have suffered a ransomware attack that exposed the Social Security numbers of thousands of former and current employees. Cybercriminals compromised data belonging to more than 53,000 current and former workers. Nissan said that a bad actor slipped in through a virtual private network (VPN). The company did not clarify the exact data stolen or any ransom demand.

Talk to a TCT team member today about implementing cyber security plan for your business.

Robert Brown
24/05/2024

Related Articles:
WithSecure Emotional Footprint Award Winner 2024
Using Threat Modelling to Reduce Your Cybersecurity Risk