🚨 Data Breach Monday Before Patch Tuesday, Akira Ransomware targets Sonicwall, Russia & China

On today’s CyberHub Podcast, host James Azar delivered a packed session focused on recent cyber incidents, the looming Patch Tuesday updates, and growing cyber threats across industries.

👀 SHOW Supporters:

Today’s Episode is supported by our friends at Nudge Security free 14-day trial to all CyberHub Podcast community members at https://www.nudgesecurity.com/cyberhub

Here's a breakdown of the key topics discussed:

1. Wisconsin Physicians of Service Insurers (WPS) Data Breach: WPS notified 950,000 Medicare beneficiaries that their personal information was stolen due to the 2022 MoveIt hack. Initially, WPS’s investigation didn’t uncover any exfiltrated data, but a second investigation using third-party expertise discovered that sensitive information had indeed been compromised. This incident highlights how poor data management can hinder timely breach detection.

2. Slim CD Breach: Payment gateway provider Slim CD disclosed a breach affecting 1.7 million individuals. Hackers accessed the company’s network for almost a year, stealing names, addresses, and credit card information. Despite PCI-DSS regulations requiring proper encryption, Slim CD's compliance appears questionable.

3. SonicWall Vulnerability and Akira Ransomware: The Akira ransomware group has begun exploiting a SonicWall zero-day vulnerability in firewall models, prompting CISA to add the flaw to its Known Exploited Vulnerabilities (KEV) catalog. Organizations using SonicWall devices are urged to patch immediately to mitigate the threat.

4. China-Linked Cyber Espionage on Taiwanese Drone Manufacturers: Trend Micro exposed a Chinese-linked group, "Tidrone," targeting military satellite and drone industries in Taiwan. This group focuses on disabling system protections and stealing valuable data, including that related to drone technology—an increasingly vital element in modern warfare.

5. Poland Foils Russian Cyber Attacks: Polish security forces reported thwarting over 1,000 daily cyberattacks, primarily linked to Russian and Belarusian groups. These attacks are believed to be retaliation for Poland’s support of Ukraine amid the ongoing conflict with Russia.

Action Item for Cybersecurity Professionals

Ensure comprehensive data management: One of the podcast’s key takeaways is the importance of strong data inventory and management. Poor data management can lead to breaches going unnoticed, as in the WPS case.

IT and cybersecurity professionals should implement robust data inventory solutions, ensuring that all critical information is well-documented and monitored. Properly managing where data resides and who accesses it can prevent breaches from spiraling out of control.

Stay tuned for tomorrow’s episode, which will commemorate the anniversary of 9/11 alongside a continuation of the latest cybersecurity developments.

✅ Story Links: 

https://www.securityweek.com/wisconsin-insurer-discloses-data-breach-impacting-950000-individuals/

https://www.bleepingcomputer.com/news/security/payment-gateway-data-breach-affects-17-million-credit-card-owners/

https://www.cybersecuritydive.com/news/moveit-wisconsin-medicare/726441/

https://www.darkreading.com/ics-ot-security/akira-ransomware-actors-exploit-sonicwall-bug-for-rce

https://www.securityweek.com/china-linked-hackers-target-drone-makers-in-taiwan/

https://www.darkreading.com/ics-ot-security/feds-warn-russian-actors-targeting-critical-infrastructure

https://www.darkreading.com/ics-ot-security/cisa-flags-ics-bugs-in-baxter-mitsubishi-products

https://www.securityweek.com/new-rambo-attack-allows-air-gapped-data-theft-via-ram-radio-signals/

https://www.securityweek.com/polands-cybersecurity-experts-foil-russian-and-belarussian-attacks/

🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1  

✅ Important Links to Follow: 

👉Substack:

CISO Talk by James Azar

The latest on Cybersecurity, Privacy, Technology & Geo-Politics and all from a practitioner and intel point of view

👉Listen here: https://linktr.ee/cyberhubpodcast   

✅ Stay Connected With Us.

👉Facebook: https://www.facebook.com/CyberHubpodcast/ 

👉LinkedIn: https://www.linkedin.com/company/cyberhubpodcast/ 

👉Twitter (X): https://twitter.com/cyberhubpodcast 

👉Instagram: https://www.instagram.com/cyberhubpodcast 

✅ For Business Inquiries:  info@cyberhubpodcast.com

=============================

✅ About The CyberHub Podcast.

The Hub of the Infosec Community. 

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure. 

Tune in to our podcast Monday through Thursday at 9AM EST for the latest news.