Weekly Cybersecurity Recap March 17

Breakdancing is coming to the world stage while French citizens stage a creative protest with the hashtag "JeChieDansLaSeineLe23Juin.

LinkedIn is the world's largest professional networking service for accountants, policemen, politicians, advertising professionals, business executives, college students, investment bankers, and consultants.

Ponzo schemes continue to grow in complexity and notoriety. These schemes are not transactions or one-time hacks. "Ponzi schemes are fraudulent business operations that promise high returns with little or no risk, claiming investors' money will go towards a legitimate investment.

Financial Business and Consumer Solutions (FBCS) was founded in 1982 as Federal Bond Collection Services and currently has over 100 employees.

Reportedly, in the top 160 most visited websites in the world, Wattpad prides itself as the world's most loved storytelling platform.

Teleperformance began its operations in 1910 in Paris, France, as a customer service management company. The company founded its United States division in 1993, which is situated in Salt Lake City, Utah.

Simmons Bank is a community with scale founded in 1903 in Pine Bluff, Arkansas. It was officially opened in 1922 and has since grown with over $27 billion in assets, over 3,200 associates, and footprints in over 200 locations in six states.

Founded in 1965, Princess Cruises rose to prominence in the late 1970s after being heavily featured on the hit TV show "The Love Boat" and is currently a leading name in the cruise industry.

Norton LifeLock is a global player in consumer cyber safety with a growing portfolio designed to ensure users are confident in their online privacy, security, and identity theft protection.

Lower LLC is a fintech company that specializes in providing a range of mortgage and real estate services to customers. The company simplifies the home buying and refinancing process by leveraging advanced technology to deliver a seamless online experience.

Founded in 1945, Livingston International is a prominent provider of customs brokerage, trade consulting, and freight forwarding services.

Gunster Yoakley & Stewart is a popular Florida-based law firm with decades of experience in counseling businesses in the United States.

Google Cloud is a comprehensive array of cloud computing services offered by Google, enabling individuals and businesses to leverage its robust infrastructure for deploying and scaling applications.

Founded in 1982, Connexin Software, a company that operates under the name Office Practicum, offers pediatric-specific health IT solutions.

CoinMarketCap is a popular price-tracking platform for crypto assets in the fast-growing cryptocurrency space. It was founded in May 2013 and has rapidly grown to be a trusted source for comparing numerous crypto assets.

Coinbase is a popular cryptocurrency exchange platform and one of the largest such companies in the United States. Founded in 2012, Coinbase is reportedly the second-largest cryptocurrency exchange in the world, behind Binance.

Charter Communications, operating under the Spectrum brand, is a leading American telecommunications and mass media company that provides cable television, internet, and telephone services to millions of customers.

Carrington Mortgage Services was founded in 2007 as a subsidiary of Carrington Holding Company LLC, a holding company that provides a wide range of single-family residential real estate services.

Bay Bridge Administrators is a nationally recognized, third-party administrator specializing in providing comprehensive insurance and benefits administration services for independent insurance agents and brokers, public and private employers, and employee/policyholders.

Founded in 1965 and headquartered in Sioux Falls, South Dakota, Advanced Asset Alliance (AAA) Collections is a third-party agency that specializes in debt collections.

When a data breach happens, criminals may instantly expose millions of personal, financial, and medical information. They can then use that compromised data to break into other systems, help commit consumer frauds schemes, or be sold to the highest bidder.

When consumers get online, they enter a vast environment of potential threats. These threats may be after money, information, or network access, and cybersecurity defenses work to prevent these valuables from falling into criminals' hands.

The sun produces enough energy every 90 minutes to power the world for a year. Despite this, in 2020, only around 0.2% of solar's potential power production was utilized.

In early 2023, the FBI made a public service announcement warning that scammers had been targeting owners of timeshares in Mexico; they reported an estimated $39.6 million in losses involving only Mexico timeshares.

Credit and debit cards have become the most prominent form of wealth access in the last decade. Once consumers pulled out thick wallets of cash—they now pull out thin clips of cards—if they bother using a card, not a watch or cellphone.

Inspect your credit card, and you'll likely find interesting—and crucial—elements of the plastic rectangle. The front might display the provider's name, a chip, some digits, or an entire card number; the back might hold much the same, along with a signature, when necessary, and a "valid thru [sic]" date.

Cyber attacks are a growing threat to all industries, nations, and people. They occur with increasing frequency, with the last year reporting 3,205 data compromises and over $12.5 billion in projected losses, according to the Federal Bureau of Investigation (FBI).

Insurance scams are deceptive activities that allow criminals to manipulate insurance systems to obtain an illegitimate claim.

More organizations than ever are moving to online processes, offering convenience and efficiency to their consumers and clients.

In 2020, the world moved online, and the pandemic kicked industry demand into overdrive. Seemingly overnight, entire organizations yielded to the mandates pushed by health professionals, encouraging anyone not already online to make an account or two.

When someone is born on US soil, they are a national citizen; with this distinction, they obtain a list of entitlements and benefits, as well as societal obligations and predetermined consequences for bad behavior.

How far are you willing to go to obtain love? Online threats surround us every time we get on the Internet—all of them are out for more than a lasting emotional connection.

How do you browse the Internet? Using a primary browser, you can turn on "incognito mode," which increases your privacy on singular devices but is also less concealing than other privacy tools like virtual private networks (VPNs).

Many members of the younger generations avoid answering phone calls. On the one hand, this avoidance may be personal, as voice calls can sometimes cause anxiety; however, there is more to these rejections than nervousness.

Facebook (FB) is the most popular social platform worldwide, hosting 2.9 billion monthly active users. The draw to FB comes from its social connectivity, allowing friends and family to stay connected, updated, and in each other's lives, no matter where they are.

Data is among the most valuable information we have. It includes everything about us, our families, friends, and organizations; broadly, "data" encompasses all aspects of information; it can relate to public records, sensitive data, confidential, financial, medical, or any other aspect associated with an individual or company.

Cash App is one of the world's most popular mobile payment platforms, with over 26% of all US adults using its services. The app's popularity comes from its time-saving convenience; users can manage their entire financial portfolio, from instant peer-to-peer transactions to stock and Bitcoin alterations.

There are countless types of cyber attacks on the Internet, from threat actors lurking within vulnerable networks to phishing, social engineering, and brute force incidents.

Snapchat is a mobile-based social media platform owned by Snap Inc. ; it is a global platform, hosting over 734.8 million users, the majority of which are Gen Z. The platform began as a resource for sharing pictures between friends but has evolved to include options for creator content, group conversations, and the sharing of media.

The Publishers Clearing House (PCH) appeared in 1967, promoting magazine subscriptions, merchandise, time-share vacations, and their famous cash prize sweepstakes.

Time theft happens when employees dishonestly use their paid work hours for personal activities or tasks unrelated to work. Time fraud significantly impacts an organization's productivity, business strategy, finances, and employee morale.

MLM (multi-level marketing) business models are believed to have existed since the 1920s - it is estimated that approximately over 1,000 companies in the US currently use this model.

Job scams continue to rise in the United States as of 2024. According to the Federal Trade Commission (FTC), Americans lost about $490 million to job opportunities and employment scams in 2023, with 107,134 reports.

With cyber threats on online payment methods becoming more common in today's digital age, ensuring that payment systems are secure and sensitive information is not hijacked when making payments has become ever more critical.

In today's digital landscape, cryptography plays a vital role in keeping information secure. Encryption is one of the primary techniques used in cryptography to ensure that data transmission online is secure and that sensitive information stays protected from unauthorized access.

Mobile payment application use is rising thanks to their seamless integration with social media platforms, financial institutions, and e-commerce storefronts.

Identity theft and card fraud are the main concerns associated with using debit and credit cards. Like any financial instrument, credit and debit cards are susceptible to certain security threats that can compromise cardholders' information and lead to credit card fraud or debit card fraud.

Airbnb has brought a new paradigm to the hospitality industry. It has become the go-to platform for persons looking to make additional income with their properties and travelers looking for unique accommodation experiences away from home.

Cloud computing has gained traction in recent years due to its ease of scalability, flexibility, and efficiency. It allows businesses to accelerate innovation and spend less in meeting client or consumer demands.

Sensitive personal data is among the most valuable information attached to us; it's so valuable that there are international regulations for its maintenance, storage, and management.

Every day, more people get online - most do it for leisure, but organizations are increasingly moving into the digital environment.

What is there to know about a person? Certainly, their name, but how about their affiliations, philosophical beliefs, or sexual orientation?

Suppose someone left their home, got in their car, and drove to the grocery store. Much like data packets that travel over Internet highways, the car will use various pathways to reach its destination; however, once the car gets to the store, a question remains: what happened between the generating point and the destination?

Ever follow an ad featuring limited-time products to a company's web page only to find they're selling something else entirely?

In 2023, based on wire fraud statistics nearly a quarter of consumers received suspicious communications, which may have occurred over text, email, phone, or social media.

When we think of "property," the first thing that comes to our mind might be tangible objects—items we've purchased, like cars and homes, or entitlements we've procured, like land, titles, or even honorifics.

What is an Incident Response? After a bank heist, the work begins with specialized teams and plans engaged, allowing for analysis of the event, and from this analysis, the bank can prepare a response to the incident.

Everyone has received a spam text or email at some point. Their hallmarks are widely known; they often include poor or strange grammar, suspicious links, suggested connections with companies or people, or random individuals asking for help in some capacity.

Every year, millions of people get victimized by data breaches. Criminals steal their data from the network environments of organizations, vendors, providers, institutions, and governments; with ever-increasing frequency, cybercriminals are making big moves in the cyber wars—and making billions of dollars. 

What is Artificial Intelligence?   Artificial intelligence (AI) permeates the world around us; much more than simplistic technology, AI describes the abilities that an automated system can influence.

When the pandemic hit in 2020, our world became chaotic overnight. Throughout the nation, individuals were met with layoffs or stringent checks—pushing the financials of families to their breaking points.

Based in Philadelphia, Pennsylvania, CGM is a nationwide cementitious vendor for industries and construction projects. They are a leader in manufacturing, labeling, and distributing custom cement and patching products.

Patients with cardiovascular issues may appear in one of the Chattanooga Heart Institute (CHI) facilities in Tennessee and Georgia.

INTEGRIS Health is the largest non-profit healthcare network in Oklahoma and surrounding regions. The network includes medical and surgical centers, hospitals, emergency rooms, hospice options, addiction recovery programs, and a holistic approach to health and wellness.

This week was particularly active in Cybersecurity—attacks rained upon all states, from the Great Basin of Nevada to the Volcanoes of Hawaii.

Navvis & Company is a comprehensive healthcare network throughout the US, including Hawaii. They offer scalable healthcare services that push patients towards their health and wellness goals while supporting providers' roles to achieve those milestones.

Azura Vascular Care operates a national network of health and wellness centers. They specialize in minimally invasive procedures and strive to treat vascular conditions in comfortable, out-patient settings.

Perry Johnson & Associates (PJ&A) is a medical transcription organization based in Nevada. Since the public learned about PJ&A's breach, we have featured it whenever large healthcare networks have announced data breaches stemming from their incident and when officials present updates.

Connecticut College (CC) is a private campus institution in New London, CT; initially opened as a women's college, the institution today serves a 2k-student population and offers more than 40 degree programs.

U.S. Renal Care (Renal) is a 32-state, 400-location, 26k-patient healthcare provider primarily concerned with kidney disease and longevity; Renal offers in-facility and at-home dialysis solutions.

This week, around 643k data records were announced as lost in the cyber wars. Early on, the public learned of HopSkipDrive's event, which impacted 155k student guardians.

The Bayer Heritage Federal Credit Union has headquarters in West Virginia. Like other unions, they offer various services that assist members in saving and investing no matter their life phase.

Infosys McCamish Systems (IMS) is a subsidiary of Infosys, a global outsourcing organization. IMS is primarily concerned with delivering life insurance and retirement solutions for clients of Infosys.

Verizon is a top-performing communications organization with clients and influence worldwide. They offer various electronic services, including physical technology, Internet services, entertainment programs, communications plans, etc.

Des Moines Orthopaedic Surgeons, P.C. (DMOS) has three clinics throughout Iowa's capital; they offer comprehensive solutions for ortho-care, from joints to extremities and MRI imaging to outpatient surgery.

Bankers Life and Casualty Company (Bankers) is a nationwide retirement solutions provider. Their services assist members in maintaining and stretching their retirement income, paying for health and treatment programs, finding excellent retirement care, and assisting families with final expenses.

HopSkipDrive is an education solution that assists guardians with their unique transportation needs; from planning bus logistics to utilizing live ride-share options, HopSkipDrive is a family's best resource for education transportation.

The Government Employees Insurance Company (GEICO) is a privately owned insurance group with 70 branches in the US. They provide insurance plans for all aspects of life, including auto, motorcycle, travel, pet, homeowner, renter, and jewelry options.

This week started with a cyber event targeting a Californian insurance brokerage, Keenan & Associates; the assailants garnered over 1.5 million records from the attack.

The Identity Theft Resource Center (ITRC) is a non-profit organization that minimizes and mitigates the risks of identity threats.

Planet Home Lending (PHL) is a real estate and homeowner agency that assists consumers in finding and financing lasting homes.

Effectively responding to cyber threats is all about speed and information. Defense specialists must react quickly to repel attacks and mitigate damages.

We don't think about it much, but moving data from our devices to various online locations is a complex process. It's just a single click for us but involves countless communications between servers.

Zero-day vulnerabilities have transformed into something of a boogeyman for business owners. They represent a significant threat to sensitive information and assets but are extremely challenging to respond to.

Nowadays, digital transactions and virtual interactions aren't exactly optional. People can't keep their information off the web due to professional reasons, and many processes are exponentially more convenient through an online profile.

A Californian insurance brokerage offering insurance and budgetary solutions for schools, community agencies, and healthcare organizations—Keenan & Associates, has announced a significant data breach.

Security Discovery is a cyber risks analyst and solution provider. They are an industry leader with a significant track record of discovering data breaches overlooked by their competitors.

This week in cybersecurity saw billions of records fall into the hands of criminals. The week began with a report of 132k records compromised from an Indiana healthcare system.

First Financial Security, Inc. (FFS) is a nationwide insurance brokerage agency that assists insurance representatives in training, equipment, and licensing.

Photo by loganrickert licensed under CC BY 2.0 DE Deli Management, Inc. does business as Jason's Deli. It is an organization with over 250 deli shops located in 28 states.

Based in Irvine, California, LoanDepot is a nationwide mortgage lender. Their solutions assist homeowners in purchasing land and obtaining reasonable equity costs.

This week was slow in the cybersecurity breach world; a combined 775k records got exposed stemming from two health centers (Singing River Health and Harris Center for Mental Health and IDD) and a nationwide mortgage lender (Academy Mortgage Corporation); a communications security solution (Egress) released a risk report urging action of business leaders; and Kansas State University suffered widespread disruptions, potentially compromising the sensitive data of their students and faculty.

Kansas State University (K-State) is below Tuttle Creek Lake in northeast Kansas. The university serves 20,000 students, employs a complex faculty of emeritus, postdocs, and graduates, and offers over 50 programs.

Egress Software is a cybersecurity firm specializing in digital communications. They analyze security risks within emails, messaging, documents, file-sharing gateways, and more.

Academy Mortgage Corporation (AMC) is a nationwide mortgage lender and home loan estate professional group. The organization has over 200 branches throughout the US and numerous loan, mortgage, and financing options.

Singing River Health System (SRHS) is a healthcare network located in the tail of Mississippi (and northern Alabama). They provide a comprehensive network of medical services for residents, including cancer, emergency, hospice, pediatrics, and urgent care.

The Harris Center for Mental Health and Intellectual and Developmental Disabilities (IDD) has six regional locations and assists those with behavioral health and developmental needs.

NASCO provides various healthcare solutions to serve Blue Cross and Blue Shield members. They offer a comprehensive portfolio of services and use industry insights to project the needs of their 20 million clients.

This week's featured cyber incidents included a combined 2.3 million, although one event remains under investigation. The week began with an update from the Edmonds School District regarding their January 2023 breach, which exposed 145,844 individuals.

Cooper Aerobics is a health and lifestyle entity concerned with providing comprehensive wellness solutions. As a business organization, their brand includes The Cooper Institute, a Clinic, a Fitness Center, a Spa, a Vitamin line, Wellness Strategies, and a Hotel.

Buying your own home is the American Dream, but it might seem out of reach to those with bad credit. However, the good news is, if your credit is less than perfect, you do still have options and in most cases, can still buy a home.

Any good IT article on computers and network security will address the importance of strong, secure passwords. However, the challenge of good passwords is that most people have a hard time remembering them, so they use simple or obvious ones that pose a security risk.

Senior scams are becoming a major epidemic for two reasons. First, seniors often have a lot of money in the bank from a life of working hard and saving.

The dark web, also known as the "darknet", is a portion of the internet that lies outside the boundaries of traditional search engines.

Your Wi-Fi network is another handy access point that hackers use to infiltrate your computers, steal your identity, and grab your personal details.

Six databases that were owned by Friend Finder Networks, Inc. suffered a massive data breach in 2016, which cost 412 million users their accounts.

In this highly digital age, it is near impossible to erase all information online about yourself, but you can do a lot to remove online information and minimize your risk of identity theft or worse. 

With all our technology and connectedness comes a price, vulnerability. Now more than ever before, our credit and identities are at risk from cybercriminals, thieves, and hackers.