Twitch

Exploit: Hacking

Twitch: Streaming Platform

Risk to Business: 1.402 = Extreme

Leading streaming and gaming platform Twitch has been hacked. Source code for the company’s upcoming expansion to its streaming service, an unreleased Steam competitor from Amazon Game Studios, has appeared on message boards as well as data that details the terms and amounts of content creator payouts. An anonymous poster on the 4chan messaging board delivered the data in a 125GB torrent. That poster also claimed that the stream includes the entirety of Twitch and its commit history including the aforementioned creator payouts, twitch.tv, source code for the mobile, desktop and video game console Twitch clients, code related to proprietary SDKs and internal AWS services used by Twitch, data on other Twitch properties like IGDB and CurseForge and, details about the AGS project and information about the platform’s internal security tools.

Individual Impact: No consumer PII or financial data loss was disclosed in this breach as of press time.

Customers Impacted: Unknown

MoneyLion

Exploit: Credential Stuffing

MoneyLion: Financial Services Platform

Risk to Business: 1.712=Severe

That old favorite credential stuffing makes an appearance this week with an attack on the financial services platform MoneyLion. The Utah-based fintech company provides mobile banking services for borrowing, saving, and investing money. MoneyLion informed customers that “an unauthorized outside party appears to have been attempting to gain access to your account on the application using an account password and/or possibly email address that appear to have been potentially compromised in a prior event”. The data breach notice outlined the attacks as taking place over the course of several weeks spanning June and July 2021. The company assured users that no information was stolen.

Individual Impact: No consumer PII or financial data loss was disclosed in this breach as of press time.

Customers Impacted: 8.5 million

Next Level Apparel

Exploit: Phishing

Next Level Apparel: Clothing Manufacturer

Risk to Business: 2.771 = Moderate

Next Level Apparel, a US-based clothing manufacturer, has announced that several of its employee accounts were compromised in a phishing attack. In a press release late last week, the company noted that cybercriminals were able to access the contents of several employee email accounts at various times between February 17, 2021, and April 28, 2021, including viewing customer and employee PII although the company could not confirm that any data was stolen.

Individual Impact: 2.802 = Moderate Next Level Apparel noted that the customer and employee data accessible through the compromised accounts included names accompanied by Social Security numbers, financial/checking account numbers, payment card numbers, driver’s license numbers, and limited medical/health information.

Customers Impacted: Unknown

United Kingdom – Welland Park Academy

Exploit: Malicious Insider (Hacking)

Welland Park Academy: Secondary School

Risk to Business: 2.883 = Moderate

Hell hath no fury like an IT employee scorned, as Welland Park Academy discovered after a fired IT admin entered its environment and wreaked havoc. After his termination, the former employee wiped data on the school’s systems and changed all employee credentials. These actions made it impossible for the school to conduct distance learning. The same malicious individual also took revenge on the next company fired from, creating lockout chaos and wiping data at an unnamed IT company, as well as mucking up the company’s phone systems.

Individual Impact: No consumer PII or financial data exposure was disclosed in this breach as of press time.

Customers Impacted: Unknown

How It Could Affect Your Business? Malicious insider threats are a hazard that very business should remember, because vengeful employees can do serious damage quickly.

United Kingdom – The Telegraph

Exploit: The Telegraph

The Telegraph: News Organization

Risk to Business: 2.122=Severe

UK news giant The Telegraph is in hot water after researchers discovered an unsecured database that exposed an enormous amount of information, an estimated 10 TB of data. Much of the data appears to apply to Apple News customers. The researcher who discovered it noted that at least 1,200 unencrypted contacts were accessible without a password. The Telegraph announced that it quickly secured the database as soon as it was informed of the issue, which impacted less than 0.1% of its subscribers.

Individual Impact: 2.801=Moderate The exposed information includes internal logs, full subscriber names, email addresses, device info, URL requests, IP addresses, authentication tokens and unique reader identifiers, mostly for users who accessed The Telegraph through Apple News.

Customers Impacted: Unknown

How it Could Affect Your Business? It pays to make sure that companies are building a strong security culture to discourage neglectful practices.

Scotland – Weir

Exploit: Ransomware

Weir : Heavy Equipment Manufacturer

Risk to Business: 1.616 = Severe

Scottish heavy equipment company Weir was hit with a ransomware attack. The BBC reports the company was essentially shut down briefly by the incident, which took place sometime in September 2021, forcing the company to delay shipments of mining equipment worth more than £50m in revenue. The company noted in its release that because the attackers did not exfiltrate or encrypt any data, it was confident that no financial or sensitive data had been stolen about employees or customers.

Individual Impact: No employee or customer PII or financial data exposure was disclosed in this breach as of press time.

Customers Impacted: Unknown

How it Could Affect Your Business? Ransomware gangs don’t just want to steal data anymore. They’re also more than happy to shut down production lines to obatain ransoms.

Scotland – BrewDog

Exploit: Misconfiguration

BrewDog: Bar and Restaurant Chain

Risk to Business: 1.615 = Severe

Scottish bar and restaurant chain BrewDog was responsible for exposing the data of 200,000 shareholders and customers, The company, famous for its crowd-ownership model as well as its beer, exposed that data over an 18-month period through a glitch in its mobile app that hard-coded authentication tokens for users into the mobile application instead of being transmitted to it following a successful user authentication event. Interested parties could simply append any customer ID to the end of the API endpoint URL and access sensitive PII (personally identifiable information) for that customer.

Individual Impact: 1.701 = Severe Potentially exposed customer/shareholder details include, the customer’s name, date of birth, email address, gender, all previously used delivery addresses, telephone number, number of shares held, shareholder number, bar discount amount, bar discount ID, number of referrals and types of beer previously purchased

Customers Impacted: Unknown

How it Could Affect Your Business? Having this data exposed through a blunder will hurt the reputation of a company that relies on customers as investors to stay in business.

Hong Kong – Fimmick Limited

Exploit: Ransomware

Fimmick Limited: Marketing Company

Risk to Business: 1.631 = Severe

Hong Kong marketing firm Fimmick has been hit with a ransomware attack that is purportedly the work of REvil. Cybersecurity researchers caught wind of the incident after REvil claimed to have burglarized Fimmick’s databases, snatching data that pertained to Fimmick’s work with a number of major brands. Sample data provided on REvil’s website as proof of the hack included data pertaining to the company’s work with Cetaphil, Coca-Cola and Kate Spade.

Individual Impact:No consumer PII or financial data exposure was disclosed in this breach as of press time, although the sample points to employee information exposure.

Customers Impacted: Unknown

How it Could Affect Your Business? Companies that provide services like this are especially tasty targets for ransomware gangs because even if they don’t pay the ransom their data on other businesses opens new doors.

So, what's the deal with IT security anyway? Does it really matter? We're here wit seven reasons why it does. Let's jump in!

Data compromises have been rising in recent years. In fact, in 2021, 118.6 million people were impacted by these data breaches and leaks in the first half of 2021. One way that you can protect your business and information is with IT security. 

Do you want to learn more about managed IT services and why they are important? Keep reading these seven benefits of utilizing IT professionals for your business. 

1. Helps With Backup & Disaster Recovery

One reason why you need to utilize IT services for your company is that they can help with backup and disaster recovery. If something were to go wrong with your hard drive or computer and your data is not completely backed up, you can lose years of work, 

While you can do backups on your own, an IT company will do this regularly for you to be sure that you will always have access to your data. 

If a disaster does happen, they will have ways to recover this data, rather than losing the data forever. 

2. Updates Technology

Technology is a large part of any business, regardless of its size. However, some types of technology may not be completely reliable. With IT services, you can make updates to your technology that will make it more secure and predictable. 

Out of date technology is one of the biggest risks that can lead to data breaches and cybercrime. There are always new types of viruses and malware, so it is important to have the technology that can combat these. 

By hiring an IT company, they will check your software, make updates to your technology, and more. 

3. Reduces Risk of Data Breaches

Next, managed IT services can help reduce the risk of data breaches within your company. 

Not only will your information be protected, but having IT teams work for your company can also provide you with peace of mind when it comes to confidential information. You will know that you are doing your best to protect your customers and business information. 

Finally, reducing the risk of data breaches means that you can prevent unauthorized access to sensitive information. Your IT team can apply security controls to this information that will protect it from harm. 

To prevent data breaches or other data attacks, it is vital that you utilize IT services. This will make your business look more credible and will provide peace of mind for your customers or clients. 

4. Lowers Business Downtime

Not only will your IT services prevent problems from happening for your business, but they will also reduce your company's downtime when problems do occur. 

If you were to lose a lot of important data for your business, it would significantly drop the productivity of your company. While you are trying to recover and clean up from these attacks, you will not be able to focus on running your business. 

However, an IT team will take care of this for you in the event of a cyber attack. They will be able to take care of the problem more efficiently, meaning you will have less downtime and will have more time to focus on other aspects of your company. 

5. Saves Your Business Money

Another reason why you need managed IT services for your business is that they can save you money. Cybercrimes and data leaks can cost millions of dollars to organizations. 

Because cybercrime is increasing, you want to be sure your business is financially protected if you are the victim of a data attack. By paying an IT team to protect your business, you will save more money in the long run if your business is a victim of cybercrime. 

Whether you have access to financial information, health records, trade secrets, or even intellectual property, losing this information can significantly impact the finances of your company. 

6. Protects You and Your Business

IT services can also protect both you and your businesses. Because viruses on your computers can spread so easily, they can cause serious problems for your business. 

They may corrupt files, damage your systems, and more. 

To keep you and your business protected, IT services can encrypt your data, educate your employees, monitor online activities, and more. If you want to be sure that your business will be able to withstand any cyber attacks, it is vital that you utilize IT services. 

7. Increase in Data Attacks

Finally, you need to improve your IT security because there are increasingly more data attacks. Because there have been great improvements to technology, there are more people who use technology and are connected to networks. 

This increase of users makes it easy for people to commit cybercrime. Every business is at risk for data attacks, so it is best to be prepared for these emergency situations in advance. 

Find the Best Managed IT Security Professionals Today

Data leaks are increasingly common for businesses. Whether you are the victim of a cybercrime or some type of hacker, it is important that you hire an IT company to protect your business in the event of a data breach. 

Not only will this provide you with peace of mind when it comes to confidential information, but it can save you money, help you with data recovery, and more. 

Are you looking for the best managed IT security team in Houston and Dallas? ADVANTEX IT Services can help! We offer predictability with your technology, even in the midst of uncertainty. 

Contact our team to learn more about our IT security services and to get help with your managed IT services today. 

© Copyright 2020 - Advantex - All Rights Reserved | Sitemap