Weekly Cybersecurity Recap October 27
Table of Contents
- By Steven
- Oct 27, 2023
This week, many institutions were targeted for attacks, impacting thousands differently. In the northeast of the US, New York’s gambling scene suffered an attack, downing casinos across the state. In the South, hackers attacked Florida’s Akumin clinics, exposing patient data. In Pennsylvania, the City of Philadelphia suffered from leaking the information of city email owners. The prestigious University of Michigan was also attacked, potentially leaking the information of everyone associated with the institution. Meanwhile, at least five states have public filings following the breach of Revival Animal Health’s website host CommerceV3. Find out more about each attack below and take action immediately if you receive a breach notice in the mail.
On October 17th, numerous casinos within New York state suffered a cyber attack. The investigation is still ongoing but could impact gamblers in the region. The New York State Gaming Commission has stated they have no evidence of data misuse; however, if the attackers accessed consumer information during the event, it could set up consumers for financial and identity fraud. If you suspect the threat actors might use your data, freeze your accounts, and obtain new credentials.
On October 11th, North Florida’s radiology and oncology clinic experienced a downed system, resulting in a ransomware event. The attack may have compromised patient information, but the investigation is ongoing. It is reasonable for patients to protect themselves by hiring credit, financial, and medical monitoring services. Those believed to be impacted by the hack should receive notice in the coming days.
City of Philadelphia
On October 20th, the City of Philadelphia announced they located a breach within their email “environment.” Residents of Philly may have information at risk following the attack, which may have happened as early as March 2023. However, the privacy notice outlining the event describes the breach between May and July. Some at-risk data may include the content of city emails, including medical information, financial credentials, and demographic details. Those with Philly emails must consider monitoring services to protect themselves from potential damage.
Revival Animal Health
Between November 2021 and December 2022, assailants attacked Revival’s website host CommerceV3; the cybersecurity event likely exposed customer information, specifically for those placing orders online. Experts estimate that the threat actors may have gained consumer payment information, including card numbers, CVVs, and expiration dates. If you placed an order during the above period, monitor your financials for suspicious activity.
University of Michigan
The last significant breach this week came from UM; its attack may have impacted everyone associated with the campus, including students, applicants, employees, donors, contractors, and alums. Research participants and School of Dentistry patients may have also had information leaked by the breach. Although the investigation is ongoing, stolen information may include various information depending on the individual’s relationship with the institution. Some parties may have had their SSNs, financials, payment options, and medical details exposed. UM is sending letters to those believed to have had information impacted by the breach; however, you don’t have to wait to take preventative steps to protect yourself.