Major Cyber Attacks Disrupt Services and Expose Data in September 2024
Major Cyber Attacks Disrupt Services and Expose Data in September 2024
Today, we report on a series of alarming cybersecurity incidents that have unfolded, notably impacting service delivery and personal data security. MoneyGram faced a severe cyber-attack that led to significant service disruptions, particularly affecting transactions across the Caribbean and Mexico. Although no specific threat actor has claimed responsibility yet, the ramifications are widespread.
In a separate incident, the Centers for Medicare & Medicaid Services (CMS) revealed a data breach affecting over 3.1 million individuals, tied to the earlier MOVEit ransomware attack. The auto dealership group AutoCanada also reported a ransomware attack attributed to the Hunters International gang, compromising employee data. Additionally, Franklin County in Kansas confirmed a breach exposing sensitive information of nearly 30,000 residents, with no identified threat actor at this time.
Also In Security Today
- CISA Warns of Actively Exploited Vulnerabilities: CISA has flagged critical vulnerabilities such as CVE-2021-22054 in Omnissa Workspace One UEM, as well as severe flaws in Ivanti Cloud Service Applications, which facilitate remote code execution attacks.
- Microsoft's macOS Vulnerability: A serious flaw allowing unauthorized access to data in Microsoft’s macOS applications has been identified, raising concerns about user data protection.
- Lehigh Valley Health Network Settles for $65 Million: Following a data breach involving sensitive patient information leaks, the health network has settled for $65 million, demonstrating the costly aftermath of cybersecurity lapses.
- 23andMe Breach Settlement: The DNA testing company 23andMe has reached a $30 million settlement due to a significant breach, highlighting the financial repercussions of inadequate cybersecurity measures.