Security Breach Update
8 August 2019

New malware strain are targeting Windows usersNew Malware Strain Targets Windows Users

A new malware strain, SystemBC, targets Windows computers with a multifaceted attack that can wreak havoc on their users.

In addition to infecting computers with the primary strain of malware, SystemBC contains an on-demand proxy component that allows other malware strains to integrate with infected computers. Bad actors can use this arrangement to install trojans, ransomware, and other malware on users’ computers.

This iterative approach to malware illustrates the ever-changing cybersecurity landscape that threatens every organisation.

With the cost of a data breach growing each year, companies have every incentive to protect their IT infrastructure. Although the challenges are immense, partnering with qualified professionals can ensure that your business is always ready to combat the latest threats.

 Recent Breaches

United States – Los Angeles Police Department

Exploit: Unauthorized database access.

Risk to Small Business: Severe:  A hacker gained access to the department’s database housing information on thousands of recruits, compromising sensitive personal information for thousands of potential officers in the process. While the department is taking steps to protect their network going forward, they neither knew they were breached nor accounted for their officers’ data security before the incident occurred. Consequently, their officers’ personal information is available to untold bad actors.

Risk to Exploited Individuals: Severe:  When hackers contacted the department, they revealed that the personal information included names, partial social security numbers, dates of birth, email addresses, and application credentials. The breach extends to officers, trainees, recruits, and applicants.

Customers Impacted: 20,000.

France – Sephora – Paris-based multinational chain of personal care and beauty stores.

Exploit: Unauthorized database access.

Risk to Small Business: Severe:  Data breaches have ongoing consequences for businesses and their customers and mitigating the damage for all parties is a top priority after a breach is discovered. In this case, Sephora needs to protect their customers from additional cybercrime, which includes providing credit or identity monitoring services to proactively spot malicious activity. At the same time, detecting their customers’ data on the Dark Web can mitigate a threat by giving people a chance to respond before another attack occurs.

Risk to Exploited Individuals: Severe:  The breach exposed customers’ names, dates of birth, gender, email addresses, encrypted passwords, and other cosmetic-related information. While the company believes that the information hasn’t been misused, personally identifiable information can quickly make its way to the Dark Web where it can be used for everything from fraud to account takeovers. Therefore, those impacted by the breach should change their account passwords, especially those that are the same as their Sephora account, and they should monitor their accounts for suspicious or unusual activity.

Customers Impacted:  Unknown.  

Being proactive in developing a cybersecurity plan can be the difference in successfully defending a breach or losing millions to a harmful attack.

Protect your data, privacy and reputation, talk to a TCT sales team member today.

Robert Brown
08/08/2019

Follow us on LinkedIn:

Related Articles:
Australians lost $6 million to Scams in 2019 so far
Three Billion Phishing Emails are Sent Every Day

Written by