The constant catch-up game in cybersecurity continued this month, as a new tool to automate threat detection was rolled out just as malicious actors kept security leaders on their toes with ransomware and cryptocurrency theft. Here are five of the biggest cybersecurity news stories from September, includingseveral related to breaches in the healthcare industry.
Google has unveiledan automated threat detectiontool calledChronicle Detect for its Google Cloud platform.Google expects that the product will make it easier fororganizations toupgrade their legacy security systems and detect modern threats to their cloudinfrastructure quickly.Chronicle Detect will automatically map a company’s security log data to data models, users, and threat indicators; it will alsodevelop new detection rules.
A ransomware attack on a German hospital is believed to have caused the firstdeath directly connectedto a cyberattack. Hackers disabled Düsseldorf University Hospital’s IT network by exploiting a VPN vulnerability and left a ransom note on one of the servers.As a result, doctors could notprovide anemergency life-saving treatment to a patient.
70 dating and e-commerce websites were left reeling after a massive breach leaked customers’ personal informationand exposed users’ private conversations.All these websites used marketing software from Mailfire, whose unsecured cloud server was publicly accessible.Tens of thousands of individuals across the globe were affected, and900 GBof datacontaining 320 million records was leaked.
The personal information of about 46,000 veterans was compromisedafter unauthorized users accessed a healthcare-related online application of the Veteran Affairs department.The department has taken the application offline and is reviewing the security profile and system access to prevent any further misuse.
Slovakia-based cryptocurrency exchange Eterbasedisclosed that an unknown hacker had made away with $5.4 million worth of cryptocurrencies from its platform.The exchange said that it detected the hack but was unable to stop it. Trading activity on Eterbaseas well as deposits and withdrawals will remain suspended until an audit of its security systems is completed.The exchange shared only limited details about the hack since law enforcement agencies are conducting an investigation.
What We Learned: September Cybersecurity News
The cybersecurity news stories demonstrate that cybercriminals are quick to exploit any security flaws that they can find. To thwart these attempts, security leadersmuststay abreast ofnew advances in technologyand keep their security apparatus updated. Here are five important actions that can help an organization better protect its critical assets:
Verify the security measures taken by third-party software and services that have access to your data
Protect your cloud infrastructure – don’t leave your cloud database’s security to the cloud vendor
Segment your network and isolate your critical assets so that crucial tasks can be carried out even if there is a security incident
Enforce strict access policies and grant access only on a need-to-know basis
Arm your security arsenal with the freeze and kill switch that allows them to shut down infected systems