Sunday, April 1, 2018

Saturday Security Spotlight: Walmart, Leaks, and Slingshot

This post was originally published here by  Jacob Serpa .

Here are the top cybersecurity stories of recent weeks:

  • Walmart partner’s S3 misconfiguration exposes data of 1.3 million customers
  • Misconfigured servers leak healthcare data
  • Malicious cryptomining impacting businesses
  • Slingshot malware begins its assault
  • UK government increasing its use of AWS

Walmart partner’s S3 misconfiguration exposes data of 1.3 million customers

Walmart partner MBM Company, also known as Limogés Jewelry, discovered that it had a misconfigured AWS S3 bucket that left the information of 1.3 million customers exposed to the public. Vulnerable data included names, addresses, email addresses, passwords, and phone numbers. AWS misconfigurations continue to plague enterprise security. 

Misconfigured servers leak healthcare data

Server misconfigurations have recently been detected in two separate healthcare organizations. In the case of BJC HealthCare, the information of 33,000 patients was found to be publicly available for eight months. For St. Peter’s Surgery & Endoscopy Center, a breach believed to have occurred in January compromised the data of over 134,000 individuals. 

Malicious cryptomining impacting businesses

Malicious cryptomining, when malware hijacks computer systems so that they mine cryptocurrency for hackers, has continued its rise. This is creating numerous problems for businesses abroad. Not only does this increase organizations’ energy bills, but it is also pulling resources away from performing the work that they were designed for, harming productivity. 

Slingshot malware begins its assault

Slingshot, a new, highly sophisticated piece of malware, is running amok. The threat is believed to originate from a nation-state seeking to gather information via cyberattacks. Through a multi-faceted style of infection (which includes targeting MikroTik routers), Slingshot is able to spy on PCs. 

UK government increasing its use of AWS

The UK government is continuing to spend more money on Amazon Web Services. This is raising concerns among small UK businesses who fear that they may soon be rendered redundant by Amazon’s growing presence. 

Each day gives rise to new cybersecurity threats. For the cloud-first firm, automated, proactive security solutions are a must. To learn about Bitglass, the Next-Gen CASB, download the Zero-Day Solution Brief below

Photo:ESA

The post Saturday Security Spotlight: Walmart, Leaks, and Slingshot appeared first on Cybersecurity Insiders.


April 01, 2018 at 08:35PM

0 comments:

Post a Comment