Healthcare
Health Promotion Board’s HealthHub Portal Hacked, US Centers For Medicare & Medicaid Services Suffers Breach
16 - 23 October 2018
The Health Promotion Board’s (HPB) HealthHub portal had been hacked over four days between September and October. The attack was discovered after a user suspected that her account had been accessed without her authorisation.

The Health Promotion Board’s (HPB) HealthHub portal had been hacked over four days between September and October. The attack was discovered after a user suspected that her account had been accessed without her authorisation. The attack, which involved attempted logins using more than 27,000 unique IDs and emails, had successfully compromised 72 HealthHub accounts. HPB said that the email addresses were likely obtained from external sources, and no evidence of a breach in the Health Hub system was found. HPB has notified the affected account holders of the attack.
Additionally, the US Centers for Medicare & Medicaid Services (CMS) suffered a data breach that exposed the files of approximately 75,000 individuals. Hackers had compromised the Federally Facilitated Exchange’s Direct Enrolment pathway, which is used by agents and brokers to help customers enrol in health insurance. It remains unclear what data had been exposed. Meanwhile, the authorities have deactivated the hackers’ accounts and disabled the Direct Enrolment pathway.
References:
[1] Multiple unauthorised log-in attempts detected on HealthHub portal: HPB
[2] U.S. CMS says 75,000 individuals' files accessed in data breach
Additionally, the US Centers for Medicare & Medicaid Services (CMS) suffered a data breach that exposed the files of approximately 75,000 individuals. Hackers had compromised the Federally Facilitated Exchange’s Direct Enrolment pathway, which is used by agents and brokers to help customers enrol in health insurance. It remains unclear what data had been exposed. Meanwhile, the authorities have deactivated the hackers’ accounts and disabled the Direct Enrolment pathway.
References:
[1] Multiple unauthorised log-in attempts detected on HealthHub portal: HPB
[2] U.S. CMS says 75,000 individuals' files accessed in data breach
More Weekly Cyber Newsanalysis and insights

Weekly Comments
This week, we received several reports about router vulnerabilities.

Durham University’s Employee Data Compromised In Portal Hack, Louisiana State University Suffers Phishing Attack
The Durham University’s employee data had been compromised after its benefits portal, which is supplied by food services and facilities management firm Sodexo, was hacked.

Ghost Squad Hackers Claim Responsibility For YouTube Outage
A group of hacktivists dubbed the Ghost Squad Hackers has claimed responsibility for a Distributed Denial of Service (DDoS) attack that took YouTube offline last week.

Researchers Find Firmware Vulnerabilities In Marine Diesel Engine Controllers
Researchers found four several authentication and encryption firmware vulnerabilities in marine diesel engine controllers and their Android applications by Norwegian marine supplier Auto-Maskin.

Operation Oceansalt Targets Koreans Using New Recon Implant, Italy Navy Targeted By Phishing Attacks That Deliver QuasarRAT
Researchers discovered an espionage campaign dubbed Operation Oceansalt that targets Koreans using an unknown data reconnaissance implant, which appears to be a reuse of code from the Seasalt implant previously linked to Chinese hacker group Comment Crew.

Hackers Deface Website For Saudi Investment Conference, Apple Apologises For Hacked Accounts in China
Hackers defaced the Future Investment Initiative website and left messages that criticised the Saudi regime over the alleged killing of journalist Jamal Khashoggi, the war in Yemen, and financing terrorism.
Healthcare
Health Promotion Board’s HealthHub Portal Hacked, US Centers For Medicare & Medicaid Services Suffers Breach
16 - 23 October 2018
The Health Promotion Board’s (HPB) HealthHub portal had been hacked over four days between September and October. The attack was discovered after a user suspected that her account had been accessed without her authorisation.

The Health Promotion Board’s (HPB) HealthHub portal had been hacked over four days between September and October. The attack was discovered after a user suspected that her account had been accessed without her authorisation. The attack, which involved attempted logins using more than 27,000 unique IDs and emails, had successfully compromised 72 HealthHub accounts. HPB said that the email addresses were likely obtained from external sources, and no evidence of a breach in the Health Hub system was found. HPB has notified the affected account holders of the attack.
Additionally, the US Centers for Medicare & Medicaid Services (CMS) suffered a data breach that exposed the files of approximately 75,000 individuals. Hackers had compromised the Federally Facilitated Exchange’s Direct Enrolment pathway, which is used by agents and brokers to help customers enrol in health insurance. It remains unclear what data had been exposed. Meanwhile, the authorities have deactivated the hackers’ accounts and disabled the Direct Enrolment pathway.
References:
[1] Multiple unauthorised log-in attempts detected on HealthHub portal: HPB
[2] U.S. CMS says 75,000 individuals' files accessed in data breach
Additionally, the US Centers for Medicare & Medicaid Services (CMS) suffered a data breach that exposed the files of approximately 75,000 individuals. Hackers had compromised the Federally Facilitated Exchange’s Direct Enrolment pathway, which is used by agents and brokers to help customers enrol in health insurance. It remains unclear what data had been exposed. Meanwhile, the authorities have deactivated the hackers’ accounts and disabled the Direct Enrolment pathway.
References:
[1] Multiple unauthorised log-in attempts detected on HealthHub portal: HPB
[2] U.S. CMS says 75,000 individuals' files accessed in data breach
More Weekly Cyber Newsanalysis and insights

Weekly Comments
This week, we received several reports about router vulnerabilities.

Durham University’s Employee Data Compromised In Portal Hack, Louisiana State University Suffers Phishing Attack
The Durham University’s employee data had been compromised after its benefits portal, which is supplied by food services and facilities management firm Sodexo, was hacked.

Ghost Squad Hackers Claim Responsibility For YouTube Outage
A group of hacktivists dubbed the Ghost Squad Hackers has claimed responsibility for a Distributed Denial of Service (DDoS) attack that took YouTube offline last week.

Researchers Find Firmware Vulnerabilities In Marine Diesel Engine Controllers
Researchers found four several authentication and encryption firmware vulnerabilities in marine diesel engine controllers and their Android applications by Norwegian marine supplier Auto-Maskin.

Operation Oceansalt Targets Koreans Using New Recon Implant, Italy Navy Targeted By Phishing Attacks That Deliver QuasarRAT
Researchers discovered an espionage campaign dubbed Operation Oceansalt that targets Koreans using an unknown data reconnaissance implant, which appears to be a reuse of code from the Seasalt implant previously linked to Chinese hacker group Comment Crew.

Hackers Deface Website For Saudi Investment Conference, Apple Apologises For Hacked Accounts in China
Hackers defaced the Future Investment Initiative website and left messages that criticised the Saudi regime over the alleged killing of journalist Jamal Khashoggi, the war in Yemen, and financing terrorism.