Healthcare
Healthcare Organisation Exposes Patient, Staff Information after Phishing Attacks
29 January - 4 February 2019
A healthcare organisation based in California, US, suffered two phishing attacks in November 2018 and January 2019 and exposed an unknown number of medical records and employee data.

A healthcare organisation based in California, US, suffered two phishing attacks in November 2018 and January 2019 and exposed an unknown number of medical records and employee data. Three web email accounts were compromised in the attacks, which contained information such as patient and staff personally identifiable information, medical conditions, health insurance policy number and billing details. The healthcare organisation previously suffered a breach at its website where 9,000 medical records were stolen.
References:
[1] Phishing Attack on Verity Health Breaches Patient Data
References:
[1] Phishing Attack on Verity Health Breaches Patient Data
More Weekly Cyber Newsanalysis and insights

Trojan Infects Computers at 9 Universities, 60 Internet Café
A trojan known as XinGe (鑫哥) has infected at least 75,000 computers at nine universities and over 60 Internet cafes in China.

Managing Insecure Magento Extensions
Insecure third-party extensions in Magento e-commerce platform have been identified as the main source of Magento hacks for the last three months, affecting several thousand stores.

Employee Data Exposed in Airbus Cyber Incident
Aircraft manufacturer, Airbus, is investigating a cyber incident and data breach at its commercial aircraft business after intruders gained access to employees' personal information.

OceanLotus Targets APAC Countries with New Downloader
OceanLotus (APT 32) has been targeting private sectors across multiple industries and foreign governments to install a custom downloader known as KerrDown.

Bank Leaves Database Unsecured without Password
India's largest bank, State Bank of India (SBI), has leaked the financial records belonging to millions of customers after failing to secure a Mongo database with a password.

Weekly Comments
On 1 Feb 2019, major DNS software and service providers have ceased implementing DNS resolver workarounds for systems that are non-compliance with the Extension to DNS (EDNS) protocol.
Ensign Consulting
Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.
Ensign Systems Integration
Architecting and implementing cybersecurity solutions that bolster defences
Ensign Managed Security Services
Managing your security operations for advanced threat detection, continuous monitoring, and triage services
Ensign Labs
Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence