The constant catch-up game in cybersecurity continued this month, as a new tool to automate threat detection was rolled out just as malicious actors kept security leaders on their toes with ransomware and cryptocurrency theft. Here are five of the biggest cybersecurity news stories from September, including several related to breaches in the healthcare industry.
Google has unveiled an automated threat detection tool called Chronicle Detect for its Google Cloud platform. Google expects that the product will make it easier for organizations to upgrade their legacy security systems and detect modern threats to their cloud infrastructure quickly. Chronicle Detect will automatically map a company’s security log data to data models, users, and threat indicators; it will also develop new detection rules.
A ransomware attack on a German hospital is believed to have caused the first death directly connected to a cyberattack. Hackers disabled Düsseldorf University Hospital’s IT network by exploiting a VPN vulnerability and left a ransom note on one of the servers. As a result, doctors could not provide an emergency life-saving treatment to a patient.
70 dating and e-commerce websites were left reeling after a massive breach leaked customers’ personal information and exposed users’ private conversations. All these websites used marketing software from Mailfire, whose unsecured cloud server was publicly accessible. Tens of thousands of individuals across the globe were affected, and 900 GB of data containing 320 million records was leaked.
The personal information of about 46,000 veterans was compromised after unauthorized users accessed a healthcare-related online application of the Veteran Affairs department. The department has taken the application offline and is reviewing the security profile and system access to prevent any further misuse.
Slovakia-based cryptocurrency exchange Eterbase disclosed that an unknown hacker had made away with $5.4 million worth of cryptocurrencies from its platform. The exchange said that it detected the hack but was unable to stop it. Trading activity on Eterbase as well as deposits and withdrawals will remain suspended until an audit of its security systems is completed. The exchange shared only limited details about the hack since law enforcement agencies are conducting an investigation.
What We Learned: September Cybersecurity News
The cybersecurity news stories demonstrate that cybercriminals are quick to exploit any security flaws that they can find. To thwart these attempts, security leaders must stay abreast of new advances in technology and keep their security apparatus updated. Here are five important actions that can help an organization better protect its critical assets:
- Verify the security measures taken by third-party software and services that have access to your data
- Protect your cloud infrastructure – don’t leave your cloud database’s security to the cloud vendor
- Segment your network and isolate your critical assets so that crucial tasks can be carried out even if there is a security incident
- Enforce strict access policies and grant access only on a need-to-know basis
- Arm your security arsenal with the freeze and kill switch that allows them to shut down infected systems
Get more security pointers by checking out these on-demand and upcoming webinars.