Network Monitor, LiveAction, Announces Ransomware Incident
Table of Contents
- By Steven
- Nov 03, 2023
LiveAction Incorporated is a software company specializing in analytics, network monitoring, and application management tools. They’ve reported a revenue of over $5 million and provide services to companies in various industries; technical manufacturers, hospitals, biotechnology, and transportation professionals all use LiveAction services. Earlier this year, LiveAction suffered a ransomware attack where hackers took significant consumer information. Those with information in the breach must immediately take preventative steps to guard their data from misuse.
How Did the Attack Occur?
The filing submitted to the Maine Attorney General’s office states the attack was an “external system breach” or hacking. Their incident notice further clarifies that the hacking was part of a sophisticated ransomware attack. Unauthorized actors accessed some of LiveAction’s computer systems and disabled them before the system could respond. The administrators gained control quickly, but not before the actors stole some file data.
What Information Was Viewed or Stolen?
There is no indication of if the stolen data belonged to employees, clients, or consumers of LiveAction. The Maine breach filing suggests more than 500 individuals have leaked information, but the final number may be higher. The notice lists identity-centered personal information like birthdays and SSNs; they also list dates of birth, driver’s licenses, medical treatment data, health insurance data, and financial details. The actors may not have all the data associated with someone—but even one of these credentials could put your data at risk.
How Did LiveAction Admit to the Breach?
According to the Maine filing, the breach occurred as early as April 13th, 2023. However, the consumer notice indicates the breach was discovered on or around May 22nd, as LiveAction experienced a service disruption. They immediately launched continuity plans and engaged cybersecurity professionals in an investigation. LiveAction launched network protections and protocols following their investigation. These defenses limit the likelihood of a future cyberattack. On or around October 23rd, LiveAction began notifying potentially impacted parties; it may take up to two weeks to receive a corresponding letter.
What Will Become of the Stolen Information?
What happens with the information depends on LiveAction’s cybersecurity response and the threat actor. Even if LiveAction pays the ransom for the compromised data, the hacker could still release or sell the information later. There is no way to guarantee the confidentiality of the stolen details; subsequently, individuals must take proactive steps to change and secure their data.
What Should Affected Parties Do in the Aftermath of the Breach?
The LiveAction consumer notice suggests various cybersecurity services, including credit, identity, and fraud monitoring. Don’t wait for the notice to appear in the mail, however. If you see suspicious activity within your accounts, take action immediately. Change as many passwords and account credentials as possible and implement strong password managers and multi-factor authentication settings. Also, avoid giving personal information online when asked, and never enter details into shady websites. All who receive a notice must be wary of their accounts and prepare for when the hackers will misuse the credentials, not if.