Nearly 4 months after experiencing system outages that forced customers to cancel online orders, officials for Burton Snowboards have begun notifying customers that may have had their sensitive information compromised by a data breach. Additionally, the company has pushed out a mandatory password reset for all customers who have an online account in case the threat actors behind the incident decide to use them maliciously.
Ransomware exposes patient data for millions
Over 2.4 million patients of Enzo Biochem, a biotechnology company, have been notified that their medical records have been compromised because of a ransomware attack that targeted their internal systems. While the company quickly isolated the affected system from the rest of their network, the stored data may have been exfiltrated by the attackers, though they maintained normal operations throughout the incident.
Nova Scotian government compromised in MOVEit attack
Following the Clop ransomware group’s zero-day attack on the MOVEit file transfer service, officials for the Nova Scotia government have revealed that the personal and banking information for over 100,000 citizens had been compromised. The affected individuals were all current or former employees for several state-run services and organizations, though the overall extent of this incident is still under investigation, and the total number may increase. Unfortunately for Nova Scotia, their IT staff were not aware of the available patch for this vulnerability until it was too late to deploy it across all their systems.
Play ransomware targets Globalcaja bank
Late last week, the threat actors behind Play ransomware published data to their leak site that was claimed to belong to Globalcaja, a major Spanish bank. Officials for the bank have confirmed that they had fallen victim to a ransomware attack but identified it quickly and were able to reduce the overall impact of the incident and allowing customers to continue using ATMs and online banking services. Play ransomware has not revealed the amount of data that was stolen, but has posted a leak date of June 11th, which is the presumed deadline for ransom payment.
Harvard Pilgrim Health Care breach affects 2.5 million patients
After suffering a ransomware attack back in April, Harvard Pilgrim Health Care (HPHC) has issued a statement to inform the 2.5 million affected patients that their sensitive medical records and personally identifiable information (PII) had been stolen. The investigation has revealed that threat actors behind an unknown ransomware group were able to maintain unrestricted access to HPHC’s internal systems for over 2 weeks before detection and could have exfiltrated data from the last 10 years.
