Welcome to this week’s edition of Cyberhebdo, your press review dedicated to recent cybersecurity news. Over the past week, the global digital landscape has witnessed a series of cyberattacks, once again highlighting the need for vigilance and increased IT security measures. We have identified no less than 14 significant cyberattacks, covering a wide geographic spectrum.
We remind you that our press review focuses on significant cyberattacks and does not cover DDoS attacks or website defacements.
20/06/2024 – Scam (Civil Society of Multimedia Authors) (FROM)
Scam suffered a ransomware cyberattack despite its prevention efforts. The organization filed a complaint, informed the CNIL, and is working with a cybersecurity expert company to analyze and restore the data. The initial analyses are encouraging, and the company assures that the rights of its members are preserved. (source)
21/06/2024 – DG Real Estate Management (DGIM) (IT GAVE)
DG Immobilien Management (DGIM), a subsidiary of DZ-Bank, was the victim of a cyberattack which may have led to the leak of personal data of tens of thousands of real estate investors. Compromised data could include sensitive information such as addresses, dates of birth, account numbers and identity documents. Authorities and experts were alerted and a task force was set up to investigate the incident and protect customer data. (source)
22/06/2024 – Agata (POL)
The Agata retail chain has been the victim of a cyberattack, prompting a security audit to determine if customer data such as names, addresses, phone numbers and email addresses have been compromised. Customers are advised to be vigilant for suspicious calls or emails that may be intended to steal information or scam. The investigation is ongoing to determine the extent of the attack. (source)
22/06/2024 – National Health Laboratory Service (NHLS) (SOLD)
The National Health Laboratory Service (NHLS) was the victim of a ransomware cyberattack, which left its systems and infrastructure inaccessible. Preliminary investigations indicate that patient data is secure and has not been compromised. NHLS systems are currently inaccessible and laboratories are operating in manual mode, with analysis results communicated by telephone. (source)
23/06/2024 – The morning paper (ISL)
A cyberattack targeted Icelandic newspaper Morgunblaðið and its radio station K100, causing major disruptions. The publisher, Árvakur, restricted access to its platforms from outside Iceland. The hackers stole and encrypted data from Árvakur’s intranet. Cert-IS intervened by blocking foreign traffic. The attack is attributed to the hacking group Akira, which has previously hit other Icelandic entities. (source)
24/06/2024 – Acadian Ambulance (USA)
Acadian Ambulance, an ambulance company, was the victim of a cyberattack that disrupted its computer systems. Despite this, dispatch systems are still operational and there has been no impact on patient care. The company has hired an IT security firm to investigate the breach of its systems, but it is refusing to comment on whether any patient information was compromised. (source)
24/06/2024 – Fleury-les-Aubrais (FROM)
The town hall of Fleury-les-Aubrais has been the victim of a major cyberattack, forcing the IT Department to cut off all access to the servers to prevent the attack from spreading. The town hall’s services are therefore currently unavailable, including telephones, emails and internet access. The town’s teams are working with an external service provider to identify the source of the attack and restore services, but it is possible that the disruptions could last several days. (source)
24/06/2024 – Sicoob (BRA)
Brazilian cooperative Sicoob confirmed that it was the victim of a cyberattack on June 24, but assured that sensitive data was secure and operations continued normally. The institution activated its security protocols to investigate the incident and informed the relevant authorities. It is suspected that the attack could be ransomware, but Sicoob has not confirmed this information. (source)
25/06/2024 – Shoe Zone (GBR)
Shoe retail chain Shoe Zone has been the victim of a cyber attack but has taken immediate action to stop unauthorised access to its systems and data. The company has engaged specialist consultants to investigate the incident and has notified the relevant authorities, including the Information Commissioner’s Office and the Information Security Centre. The Shoe Zone e-commerce site remains operational and the business continues to operate as normal. (source)
25/06/2024 – Cowichan Valley School District (CAN)
The Cowichan Valley School District in British Columbia was the victim of a cyberattack that took down its internet services and website. The incident is currently under investigation. Details on the nature and scale of the attack are not yet available. (source)
27/06/2024 – Federated Co-operatives Limited (CAN)
A cyberattack has shut down several Co-op locations, including gas stations and stores, after internal and customer systems were impacted. The company has engaged third-party experts to investigate the incident and has shut down some of its systems as a precaution. The attack is the latest in a series of recent cybersecurity incidents that have impacted businesses and government organizations in British Columbia and Western Canada. (source)
27/06/2024 – KBC Zagreb (HRV)
The University Hospital Zagreb (KBC Zagreb) suffered a cyber attack in the morning, forcing all systems to be shut down for additional checks. About 100 experts are working to resolve the issue, but patient safety has not been compromised. Hospital operations are disrupted, including the need to manually write down test results and redirect some patients. (source)
Press review carried out in part with ChatGPT. The explanations can be read here.
