Tag Archive for: affects

When will the Royal Mail cyber attack be fixed? What we know about how hack affects international deliveries

/in


Royal Mail has confirmed that a cyber attack is to blame for ongoing disruption to postal services.

The attack is believed to have already left more than half a million letters and parcels stuck in limbo, according to reports last week.

The attack is suspected to have come from a Russian-linked ransomware gang called Lockbit, though this is yet to be confirmed.

Here’s how the attack is affecting postal services, and when Royal Mail says it will be fixed.

How is the cyber attack affecting post?

Royal Mail is continuing to ask customers not to post items overseas while it investigates the cyber attack.

The company said it was experiencing “severe disruption” to its international export services and is temporarily unable to dispatch items abroad.

A Royal Mail distribution centre in Northern Ireland revealed its printers began “spurting” out copies of a ransom note on Tuesday, saying “your data are stolen and encrypted”.

In a statement issued on Monday, Royal Mail said: “To support faster recovery when our service is restored and to prevent a build-up of export items in our network, we’re asking customers not to post international items until further notice.”

“Items that have already been dispatched may be subject to delays.”

The company has been hit by disruption in recent months, with postal workers staging walkouts in a long-running dispute over jobs, pay, pensions and conditions.

It has caused havoc for businesses who rely on the delivery services, with major retailers such as Moonpig, Card Factory and Asos partially blaming the strikes for a drop in sales towards the end of 2022.

When will the cyber attack be fixed?

Simon Thompson, chief executive of Royal Mail, told a parliamentary select committee on Tuesday: “We’ve confirmed that we’ve had a cyber attack.”

He was unable to provide a date for when the issue will be resolved, telling MPs: “The team have been working on workarounds so that we can get the service up and running again.”

He added there would be “more news to share” soon.

Mr Thompson said he could not discuss any details of the attack, saying it would be “detrimental” to the ongoing investigation.

More from News

Will there be more Royal…

Source…

Pediatric EMR Vendor Hack Affects 2.2 Million

/in


Cloud Security
,
HIPAA/HITECH
,
Security Operations

Incident Spotlights Multiple Common But Serious Data and Vendor Concerns

Marianne Kolbasuk McGee (HealthInfoSec) •
December 2, 2022    

Pediatric EMR Vendor Hack Affects 2.2 Million
Connexin Software, vendor of Office Practicum pediatric EMR software, says a hacked offline data set affected millions. (Photo source: Connexin Software Inc.)

A hacking incident at a cloud-based electronic health records and practice management software vendor affects dozens of the company’s pediatric practice clients and more than 2.2 million of their patients and other individuals.

See Also: Live Webinar | How To Meet Your Zero Trust Goals Through Advanced Endpoint Strategies

Pennsylvania-based Connexin Software Inc., which does business as Office Practicum, reported the hack to the U.S. Department of Health and Human Services on Nov. 11 and said it involved a network server.

Connexin in its breach notification statement lists about 120 pediatric practices affected by the incident.

In the statement, Connexin says that on Aug. 26, it detected “a data anomaly” on its internal network. A forensics investigation determined that an unauthorized third party had gained access to an internal computer network, removing some data contained in an “offline” patient data set used for data conversion and troubleshooting.

Connexin’s “live” electronic medical record system was not accessed, and the incident also did not affect any pediatric practice groups’ systems, databases or medical records systems, the statement says.

In any case, the range of patient data potentially compromised in the incident is wide. Connexin says patient…

Source…

Revolut security breach affects 50,000 customers

/in


Hackers accessed the personal data of 50,000 Revolut customers this month, and a phishing campaign imitating the company soon followed, though the company did not confirm whether the events were linked.

As first reported by Bleeping Computer, Lithuania’s State Data Protection Inspector said in a Sept. 16 disclosure about the breach that the exposed data may have included names, addresses, emails, postal addresses and telephone numbers.

Revolut, a challenger bank headquartered in London, primarily serves European customers but has started expanding its U.S. presence. Revolut has a banking license in Lithuania, where the government frequently publishes information about data breaches affecting its citizens.

Revolut told the Lithuanian inspector that hackers did not get payment card numbers. The company told customers they could use their accounts normally, and a company spokeswoman said “no funds have been accessed or stolen” and that “customers’ money is safe — as it always has been.”

The spokeswoman said Revolut has “nearly half a million” customers in the U.S. but did not say how many Americans the data breach affected. The Lithuanian inspector said the breach impacted 50,150 people, including 20,687 people in the European Economic Area and 379 in Lithuania.

Revolut told customers on Sept. 15 about the breach, which reportedly happened on Sept. 11.

Lithuania’s inspector said Revolut had “taken prompt action to eliminate the attacker’s access to the company’s customer data and stop the incident.” The company also said it had reached out to customers affected by the breach and that customers who had not received an email were not affected.

“We take incidents such as these incredibly seriously, and we would like to sincerely apologize to any customers who have been affected by this incident as the safety of our customers and their data is our top priority at Revolut,” the spokeswoman said.

The Lithuanian inspector said social engineering was behind the breach and that the company was still investigating.

Researchers at University College London noted after news of the breach broke that Revolut customers had started receiving phony text messages telling them their new debit card was on the…

Source…

This serious firmware flaw affects a whole load of Lenovo laptops

/in


Three serious security vulnerabilities has been discovered, and patched, across a whole slew of Lenovo laptops. 

Cybersecurity experts from ESET uncovered the issue in the ReadyBootDxe driver used by some Lenovo notebooks, as well as two buffer overflow issues found in the SystemLoadDefaultDxe driver, potentially allowing threat actors to hijack the startup routine of Windows installations.

Source…