Weekly Cybersecurity Recap July 7
Table of Contents
- By Steven
- Jul 07, 2023
It has been another significant week for data breaches in the United States. TSMC, the largest semiconductor company in the world, was hit by an attack that will impact major companies like Apple and others, and so were a huge number of insurance companies. Jackson NAtional, Talcott Resolution, and USAA were all victims of data breaches. So was UCLA, the massive public university. If you believe your information could be involved in any of these breaches, read on to learn more specific details about each attack below.
UCLA, or the University of California in LA, was the latest victim in the string of MOVEit breaches connected to the C10p ransomware gang. The gang has taken data from dozens of major companies, government organizations, and educational institutions and continues to do harm to organizations. We suspect this breach occurred in May, and we don't yet have details about whether students or faculty lost any personal data in the breach, but we suspect that is the case. If you're connected to UCLA in any way, you should monitor this situation closely and consider taking action to protect your data.
Jackson National Insurance, a major insurance company based in Lansing, Michigan, was another victim in the MOVEit file systems chain of data breaches. The company likely lost a huge number of documents, and customers were likely impacted by this breach, but we don't have specifics yet; other than that, the company filed form 8-k with its investors on June 26, 2023.
Talcott Life Insurance is a large-scale insurance company offering services to millions of Americans each year. The company was another victim in the MOVEit file transfer service attack. The company worked with PBI research, which was breached, and customer data was lost in the attack. Customers of Talcott lost their full names, Social Security Numbers, health information, and home addresses. If your information was lost in this breach, it's up to you to protect yourself. Invest in credit monitoring or identity theft protection services and use that help to safeguard your information against these attackers.
TSMC is the largest semiconductor producer in the world and the supplier for Apple. The company was breached by a Russian cyber gang, and its third-party supplier Kinmax lost a substantial amount of data to the attackers. Fortunately, most of the stolen data was just company test files and other documents meant for preparing software for consumer use, and no personal data was suspected to have been lost.
USAA, a national auto insurance company, was the recent victim of a data breach. Call center employees shared their credentials with attackers, enabling them to get on the company file network. The breach began on December 20, 2022, and lasted until May 18, 2023. Insurance customers were exposed to this breach, and their personal details could have been lost. Thousands of Texas customers weren't informed of the data breach yet, but the company did send a notice out to some of its victims. If you believe your information was lost, you should take immediate steps to protect your identity and watch any accounts that could be exposed.