Tag Archive for: services

Toyota Financial Services ransom attack exposes customer banking info

/in


Toyota Financial Services (TFS) says personal details, including bank account information, were compromised in last month’s ransomware attack claimed by the Medusa ransomware gang.

The European branch of the Japanese automaker’s vehicle financing and leasing subsidiary sent a notice, to affected individuals informing them of the exposure.

On December 5th, TFS has also announced the breach on its website and that “unauthorized persons had gained access to personal data.”

“As announced on November 16th, Toyota Financial Services Europe & Africa has detected unauthorized activity on systems at a limited number of locations, including Toyota Kreditbank GmbH in Germany,” the post stated, translated from German.


TFS handles auto loans, leases, and other financial services to Toyota customers in every continent.

Toyota Deutschland GmbH is an affiliated company held by Toyota Motor Europe (TME) in Brussels, Belgium and located in Köln (Cologne).

The breach notification letter, also sent in German,
 explains that certain TKG files were accessed during the attack.

Toyota Financial Services breach notice

At this time, TFS can confirm the compromised information of those affected includes first and last names, as well as their residential postal code.

Other contract information that may have been exposed includes “contract amount, possible dunning status, and your IBAN (International Bank Account Number),” the letter stated.

“We regret any inconvenience this may have caused to customers and business partners,” TFS wrote.

“It’s not clear how the attackers initially gained access to Toyota’s systems, but with unauthorized access being detected, this could indicate stolen credentials were involved,” said CEO of My1Login Mike Newman.

Data frequently reveals that phishing and credential theft are two of the most common attack vectors used to deploy ransomware, Newman explained.

Newman said the incident is yet another example of “how criminals hold all the power when it comes to ransomware,” adding that for groups like Medusa, the money-making opportunities are endless.

“It doesn’t matter if the organization pays the ransom demand, attackers always have the upper hand as they can still…

Source…

UK and allies expose Russian intelligence services for cyber campaign of attempted political interference – National Cyber Security Centre

/in



UK and allies expose Russian intelligence services for cyber campaign of attempted political interference  National Cyber Security Centre

Source…

Huber Heights services temporarily restored, FBI investigating ransomware attack

/in


In Huber Heights, most of the city’s services are running on temporary platforms and independent of one another. IT techs are still working to get tax and utility billing online.

Residents can pay city bills online or pay them in person. All late fees are suspended through the end of this month.

On Sunday, November 12, 2023, the city decalred a ‘state of emergency’ after an IT tech alerted city leaders about a ransomware attack. It shut down Huber Heights’ city network.

City Manager Richard Dzik confirmed that it was an intentional attack. However, authorities are still uncertain if any residents’ personal data was stolen. The FBI is investigating the incident.

A year ago, Dzik, helped another city navigate a cyber attack when he served as the safety service director for Mount Vernon.

“It was a third party vendor. They have this tool where they can log into your computer, look at your screen and fix things,” Dzik explained. “The hackers accessed that tool and used it to put the ransomware on.  It took about a month to get back to normal and two months to figure out what happened.”

This week, IT techs will install the latest anti-virus software on the servers. Then they’ll wipe clean all city computers and devices to bring Huber Heights’ network back online.

Meanwhile, city employees are keeping things running on new laptops with Verizon cellular hotspots.

“It’s not the way we prefer to do [business]. In two weeks we should be back on our normal operational schedule.” Dzik also says neighboring cities are offering their IT staff to help.

Source…

Managed Security Services Provider (MSSP) Market News: 15 November 2023

/in


Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.

  • The Content: Written for MSSPs and MSPs; threat hunters; security operations center as a service (SOCaaS); managed detection and response (MDR) and eXtended detection and response (XDR) providers; and those who partner with such companies.
  • Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
  • Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].

Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News

1. Security Partnership: Cloud Range, a cyber range-as-a-service solution provider, is partnering with Washington Technology Solutions (WaTech) to engage in incident response training to enhance the state of Washington’s cyber readiness and prepare practitioners to detect and remediate threats. WaTech operates the state’s core technology services, providing strategic and comprehensive information security to protect state networks from increasing cyber threats while serving state agencies, county, city and tribal governments, and public-benefit nonprofits.

2. Zero Trust Security Certification: The Cloud Security Alliance (CSA), an organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment, is offering the Certificate of Competence in Zero Trust (CCZT). CSA created the CCZT to help security professionals build knowledge to drive the definition, implementation and management of zero trust.

3. Leadership Move: Adlumin, a managed detection and response (MDR) provider, has hired Jessvin Thomas as its first chief product officer. With more than two decades of cybersecurity experience at organizations, including Barracuda Networks, Optiv and Blackstone Group, Thomas will lead Adlumin’s product and services teams to continue developing innovative offerings that solve critical security needs.

4. New Security Center Debuts: Living Security, a specialist in human risk management, has launched the Human Risk Operations Center (HROC), fueled by Living Security’s Unify Platform….

Source…