Bitglass Security Spotlight: Tesla, Lazarus Group, & Exactis

This post was originally published here by Jacob Serpa .

Here are the top cybersecurity stories of recent weeks: 

  • US discovers new malware from Lazarus Group 
  • Employee sabotage at Tesla last month
  • Med Associates breach exposes 270,000
  • Exactis breach eclipses that of Equifax

US discovers new malware from Lazarus Group

Lazarus Group, otherwise known as Hidden Cobra, was uncovered to have released new malware. The threats come in the form of executable Microsoft Word files that run malicious macros and take command of users’ devices. Obviously, these threats must be detected immediately or extensive damage can be done to individuals and organizations. 

Employee sabotage at Tesla last month

In June, a disgruntled employee that was not considered for a promotion sabotaged production at Tesla. The individual is reported to have altered code under a plethora of usernames in order to steal data, send it to unknown parties, and even start a factory fire. Being able to detect insider threats in a timely fashion is of critical importance to any enterprise.

Med Associates breach exposes 270,000

Med Associates, a healthcare billing organization, was recently discovered to have been breachedProtected health information (PHI) of 270,000 individuals was found to have been accessed by unauthorized parties. Exposed PHI included birth dates, home addresses, insurance identification numbers, and more. 

Exactis breach eclipses that of Equifax

In 2017, over 143 million Americans had their data exposed in the highly publicized Equifax data breach. Unfortunately, a recent breach at Exactis managed to exceed this number. Due to a careless oversight that left data on a server unsecured, the personal information of over 340 million individuals was made publicly available. 

To learn about cloud access security brokers (CASBs), advanced security tools built for the cloud, download the Definitive Guide to CASBs below. 

Photo:CompTIA IT Certifications

Ad
Join over 500,000 cybersecurity professionals in our LinkedIn group "Information Security Community"!

No posts to display