By Ashwani Mishra, Editor-Technology, 63SATS
As cybercriminals grow increasingly bold, the global digital landscape faces escalating threats across various sectors.
Recent incidents, such as the Irdai ordering IT audits for insurers amid data leak concerns, the US investigation into a leak of classified Israeli-Iran intelligence, and the Internet Archive suffering its third security breach in October, demonstrate the vulnerability of critical systems. Additionally, Boston Children’s Health Physicians confirmed a September data breach, and Nidec Corporation experienced a ransomware attack leading to data being leaked on the dark web.
These events underscore the ongoing battle between cybercriminals and organizations worldwide. Stay tuned for more such updates.
Irdai Orders IT Audits for Insurers Amid Data Leak Concerns
The Insurance Regulatory and Development Authority of India (Irdai) has directed two insurers to conduct IT system audits after concerns surfaced regarding policyholders’ data leaks, according to the Business Standard.
While Irdai has not named the insurers, it emphasized that it is in close contact with their management to address vulnerabilities. The regulator stressed the seriousness of data breaches and assured that it will work with the companies to safeguard policyholders’ interests. Recently, Star Health Insurance admitted to a data breach, but the identity of the second insurer remains unclear.
Irdai confirmed it is monitoring the situation and engaging with the management of the concerned companies.
US Probes Leak of Classified Israeli-Iran Intel
The United States has launched an investigation into a highly classified intelligence leak detailing Israel’s preparations for potential retaliation against Iran, as confirmed by three sources familiar with the incident, according to a CNN report.
A US official described the leak as “deeply concerning,” confirming that the documents, dated October 15 and 16, were authentic. The information, shared through the Telegram channel “Middle East Spectator,” included details on Israel’s military movements, which were intended only for the US and its “Five Eyes” allies: Australia, Canada, New Zealand, and the UK.
Internet Archive Hit by Third Security Breach in October
The Internet Archive has suffered its third security breach this month, allowing hackers to exploit Zendesk API tokens to access the organization’s support ticket system.
Despite earlier warnings and breaches, the organization had not rotated its Zendesk API tokens, leaving them exposed. Hackers gained access to sensitive support data, including personal identification documents submitted by users. This follows two other attacks in October, significantly impacting the Archive’s infrastructure.
Boston Children’s Health Physicians Confirms September Data Breach
Boston Children’s Health Physicians has confirmed a September data breach that exposed sensitive patient information. The organization, part of the Boston Children’s Hospital network, discovered unusual activity on its systems on September 6 and shut them down by September 10.
The breach compromised data, including Social Security numbers, addresses, health insurance information, and medical records. Patients were notified on October 4 through mailed letters, and a call center has been established to assist those affected.
Nidec Corporation Ransomware Attack Leads to Dark Web Data Leak
Nidec Corporation revealed that hackers responsible for a ransomware attack earlier this year have leaked stolen data on the dark web after their extortion demands were not met.
Although the ransomware did not encrypt files and the incident has been resolved, the leaked data poses a risk of phishing attacks targeting Nidec employees, contractors, and associates.
North Korean IT Workers Turn to Ransom in Intellectual Property Theft
North Korean IT workers, posing as contractors in Western companies, are not only stealing intellectual property but have begun demanding ransoms in exchange for not leaking the stolen data.
According to Secureworks Counter Threat Unit (CTU), these fraudulent workers have been observed exfiltrating proprietary data soon after employment, in tactics resembling those used by the threat group Nickel Tapestry, also known as Famous Chollima and UNC5267.
