Security Breach – 2 May 2019

Security Breach – 2 May 2019

RansomwareOnly 5 months into 2019 and Cyber-attacks are soaring through the roof.

It’s no surprise that cyber criminals are always looking for new vulnerabilities to take advantage of, and we are now becoming inundated, and even accepting, of breaches making daily news headlines. However, their swift increase in the first quarter of 2019 is shocking even by today’s standards.

According to recent report by Malwarebytes, cyber threats are up 235% year-over-year, primarily the result of a surge in ransomware and trojans.

However, bad actors aren’t just increasing the frequency of their attacks. They are changing their focus. The study found that cyber criminals are targeting SMBs because they have less money and resources to spend on cyber defence.

Most prominently, cyber criminals are relying on ransomware. Corporate ransomware attacks are up 195% from the last quarter, and they have grown at an astonishing 500% since April 2018.

It’s no secret that today’s threat landscape is always evolving, and protecting small businesses requires a continual revaluation of your organization’s most prominent vulnerabilities.

Recent Breaches

United States – Cleveland Hopkins International Airport.

Exploit: Ransomware attack

Risk to Small Business: Severe: A ransomware attack on the airport disabled information screens that provide information about incoming arrivals, imminent departures, and baggage claim status. At the same time, other network components including email, electronic payroll, and record keeping services were also affected. These disruptions occurred for many days, and the FBI is investigating the source of the attack.

Risk to Exploited Individuals: Moderate:  There is no indication that any personal information was compromised in this attack, but users with information stored on this network should be mindful of its vulnerabilities while monitoring for possible misuse of stored information.

Customers Impacted: Unknown.

Switzerland – Aebi Schmidt – A manufacturing company that produces vehicles for airport maintenance and road cleaning

Exploit: Ransomware attack

Risk to Small Business: Severe:  A company-wide ransomware attack paralysed the organization’s global operations, sending their manufacturing systems and email network offline. Major workflows were disrupted for 24 hours, including other ancillary systems that were shut down as a precaution. The company regained operations by launching a backup recovery process that restored the network and limited the attack’s damage.

Risk to Exploited Individuals: Moderate: While the company’s business operations were significantly restricted, there is no evidence that any personal information was compromised or put at risk.

Customers Impacted:  Unknown.

Philippines – GetGo – The rewards platform of Cebu Pacific, a Philippines-based airline

Exploit: Unauthorized server access

Risk to Small Business: Severe:  A tweet by a prominent hacking group alerted GetGo that its servers were breached. In response, the company shut down its servers and contained the incident. Although the Twitter post promised a significant data breach, no stolen data has been publicly posted. Nevertheless, the business may have to deal with customer attrition and an erosion of brand equity.

Risk to Exploited Individuals: Severe: The company claims that credit card information was not stored on the affected server, but it’s still unclear if any other personal information was compromised. In the meantime, GetGo users should monitor their accounts for potential misuse.

Customers Impacted:  To be determined.

Being proactive in developing a cybersecurity plan can be the difference in successfully defending a breach or losing millions to a harmful attack.

Protect your data, privacy and reputation, talk to a TCT sales team member today.

Robert Brown

Follow us on LinkedIn:

Related Articles:
Small businesses willing to pay Ransom for Data
Small businesses struggle with Cybersecurity