Can you believe we're already entering the 2nd half of 2023?
Between dealing with a growing list of MOVEit vulnerabilities, getting ready for the mid-year bind date, and attending industry events such as the Gartner Summit and Airmic, we know it's easy to lose track of everything that’s happened. So without further ado, let's dive right in and catch you up on the latest trends and headlines!
- "Moneyballing" Cyber Resilience. Want to be more strategic when managing cyber risk? Do you need help clarifying what that looks like? Discover how to apply the Moneyball pattern to cybersecurity and turn tactics into Cyber Resilience strategies.
- Understanding Your Cloud Exposure. As organizations move to the cloud, finding insurance coverage that adequately protects against modern cyber risks is becoming increasingly challenging. Learn how the combined powers of Resilience and Amazon Web Services (AWS) can enhance the resiliency of your cyber risk strategy.
- CVE-2023-27997 A Fortinet Heap buffer overflow in SSL-VPN pre-authentication vulnerability where Fortinet saw limited exploitations and urged users to upgrade their appliance to the newest firmware. (Source)
- CVE-2023-34362 MOVEit vulnerability exploited by the Cl0p ransomware group, who started announcing possible victims of their data exfiltration this week. (Source)
- CVE-2023-34414 A Thunderbird vulnerability affecting Thunderbird package, versions <0:102.12.0-1.0.1.el7_9 (Source)
- Sandbox escape flaws discovered in vm2 library. The flaws are tracked as CVE-2023-32314, CVE-2023-30547, CVE-2023-29017, and CVE-2023-32313. (Source)
- Critical and high-severity issues were addressed in Adobe Patch Tuesday. (Source)(Source)(Source)
Recent leaks and data incidents
- Columbus Regional Healthcare System targeted by Daixin ransomware. Daixin ransomware claims to have targeted the North Carolina non-profit on May 18th, 2023, encrypting their servers after exfiltrating 70GB of data and deleting backups. The actors allege that negotiations occurred in which the hospital claimed they could not get cyber insurance to pay out quickly and that they could not afford the ransom. The attackers have since leaked more than 250,000 files. The file lists previewed by DataBreaches[.]net contained accounting and billing records. Preliminary inspections did not uncover any patient databases. However, some patient data was included in other types of files. (Source)
- Forsyth County hit by suspected ransomware attack. On June 9th, 2023, Georgia County disclosed that it recently discovered and stopped a suspected ransomware attack on its network. An unauthorized party accessed some of the networks during the attack. An investigation determined that certain files were removed from a server. (Source)
- JamaicaEye website hit by a cyberattack. On June 11th, 2023, the Jamaican Ministry of National Security confirmed that a ‘cyber-incident’ impacted access to the website of the National Closed-Circuit Television Surveillance Programme, dubbed ‘JamaicaEye.’ There was reportedly no compromise to video footage or evidence recorded by the cameras. (Source)
- Generations Federal Credit Union discloses data breach. The Texas financial institution revealed that an unauthorized party accessed consumers’ names, Social Security numbers, addresses, government-issued identification numbers, and more. Affected individuals were sent data breach letters on June 12th, 2023. (Source)
Highlights in Cyber Insurance:
Highlights in Cybersecurity:
Did we miss any important stories? Please share your knowledge with us in the comments.
How can we make this newsletter better? We'd love to hear your suggestions.
Found this helpful? Encourage your network to sign up for monthly updates.
Realtor Associate @ Next Trend Realty LLC | HAR REALTOR, IRS Tax Preparer
1yThanks for the updates on, The Threatonomics Newsletter.