Security Breach Update
2 April 2020

Social isolation puts company data at risk

As the COVID-19 pandemic continues to cause chaos for businesses, we wanted to highlight a cybersecurity vulnerability that is especially relevant as many people work from home and practice social distancing.

According to a study by the Better Business Bureau, the FINRA Investor Education Foundation, and the Stanford Centre on Longevity, people are more likely to fall for a scam when they are socially isolated.

Cybercriminals are already taking advantage of our new digital environment sending a flurry of phishing and other fraudulent messages meant to compromise personal and company data, and isolated employees are more vulnerable than usual to these attack methodologies.

Therefore, in addition to preparing employees for this troubling trend, make an effort to reach out to employees, co-workers, and family members to make personal connections during this challenging time.

Recent Breaches

Australia – Henning Harders – Freight forwarding and logistics firm

Exploit: Ransomware

Risk to Small Business: Moderate: Henning Harders was the victim of a ransomware attack that restricted its operations between March 15 and March 18. However, the company, which refused to pay the ransom demand, is having continual cybersecurity trouble. Hackers have begun posting the company’s stolen data on the Dark Web and using the information to send spear phishing emails to employees. While the company is touting its restored operations, it’s clear that it will have to deal with a lingering data security issue that will not be resolved quickly.

Risk to Exploited Individuals: Moderate: Henning Harders was the victim of a ransomware attack that restricted its operations between March 15 and March 18. However, the company, which refused to pay the ransom demand, is having continual cybersecurity trouble. Hackers have begun posting the company’s stolen data on the Dark Web and using the information to send spear phishing emails to employees. While the company is touting its restored operations, it’s clear that it will have to deal with a lingering data security issue that will not be resolved quickly.
Customers Impacted: Unknown

European Union – Norwegian Cruise Line – Third largest Cruise tourism provider

Exploit: Phishing scam

Risk to Small Business: Severe: A Norwegian Cruise Line employee was reeled in by a phishing scam that compromised the personal details of thousands of independent travel agents. The information was then posted on Dark Web forums, making it widely accessible to bad actors. The company, already reeling from the COVID-19 crisis, has now damaged its relationship with partners that are critical to its recovery.

Risk to Exploited Individuals: Moderate: The data breach includes plain text passwords and email addresses for thousands of travel agents. While many are associated with TUI and Virgin Holidays, it also covers independent agents and those working with other organizations. Those impacted by the breach should immediately reset their login credentials while also monitoring their accounts for unusual or suspicious activity.

Customers Impacted: 27,000

Being proactive in developing a cybersecurity plan can be the difference in successfully defending a breach or losing millions to a harmful attack.

Protect your data, privacy and reputation, talk to a TCT sales team member today.

Robert Brown
2/04/2020

Follow us on LinkedIn:

Related Articles:
World Backup Day 2020
How to Avoid Data Breaches While Working From Home

Written by