The Week In Breach News 03/24/2021 - 03/30/2021

by Wally Moore

on March 31, 2021

in Data Breach

The Week In Breach

DTS InfoTech is a hard-working Trusted Advisor for any business that has questions about computers, computer networks, and technology. One way to earn the title of Trusted Advisor is to provide FREE practical education in the technology field for visitors to our website.

Cybersecurity has become a matter of business life and death for computer and technology users of all types.

With your security in mind, we are sharing Data Breach Examples in weekly posts entitled “The Week In Breach” from our friends at ID Agent.

ID Agent provides a comprehensive set of threat intelligence and identity monitoring solutions to private and public sector organizations and millions of individuals impacted by cyber incidents.

Read this short article and learn about cybersecurity and Data Breach examples from the experts in the field.

The life of your business may depend upon it.

by: Kevin Lancaster

This Week in Breach News:

Hobby Lobby’s mistakes pack a high cost, Australia’s Channel 9 News gets knocked off the air by a cyberattack, production at Sierra Wireless gets held up by ransomware, a look at what the FBI IC3 report means for your business plus a new webinar that reviews lessons learned from the global pandemic – and how to be ready for the next disaster.

United States

United States – Hobby Lobby

Exploit: Misconfiguration

Hobby Lobby: Craft Supply Retailer

severity meter

Risk to Business: 1.662= Severe

Hobby Lobby made a blunder that was discovered this week. Researchers came across an Amazon Web Services (AWS) cloud database belonging to the controversial retailer that was misconfigured to be publicly accessible exposing 138GB of sensitive information.

severity meter

Individual Risk : 1.707 = Severe

Exposed data includes customer names, partial payment card details, phone numbers, physical and email addresses along with source code for the company’s app, and employee names and email addresses. This information can be used for spear phishing and identity theft.

Customers Impacted: 300,000

How It Could Affect Your Customers’ Business: Making simple, avoidable blunders like this doesn’t fill your customers with confidence that you’re taking information privacy seriously.

ID Agent to the Rescue: Make sure that everyone on the IT team is up to date on today’s threats and ready for tomorrow’s with the tips and tricks in “The Security Awareness Champion’s Guide". GET THIS FREE BOOK>>

United States – CNA Financial

Exploit: Ransomware

CNA Financial: Insurer

severity meter

Risk to Business: 1.627 = Severe

Major insurer CNA Financial has disclosed that it was the victim of a purported ransomware attack this week, causing significant network disruption. The company’s email systems have been offline and the underwriting and claims units have been stymied, likely due to systems becoming unavailable. CNA said that they were disconnecting systems for safety and working to restore operations.

Individual Impact: No sensitive personal or financial information was announced as impacted in this incident, but the investigation is ongoing.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business: Ransomware is the cause of many expensive disasters and they don’t all involve data. Cybercriminals can also hold your business operations hostage.

ID Agent to the Rescue: Ransomware risks are up by more than 100%. learn how to fight back in “Ransomware 101". GET THIS BOOK>>

United States – California State Controller

Exploit: Phishing

California State Controller: State Government Agency 

severity meter

Risk to Business: 2.412 = Severe

A phishing attack last week gave attackers access to email and files at the California State Controller’s Office (SCO). The agency announced that attackers had access to the email records of an employee in its Unclaimed Property Division after the employee clicked a phishing link and then entered their email ID and password.

cybersecurity news represented by agauge showing severe risk

Individual Risk: 2.309 = Severe

The breach may have led to the exposure of personal and financial data for thousands of state employees. There is also evidence that the account was used to conduct business email compromise scams.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business: Something as simple as one mishandled email can wreak havoc on your business. No matter how busy you are, training has to be a priority to avoid this consequence.

ID Agent to the Rescue: Fight back against phishing with the newly updated BullPhish ID featuring customizable training campaigns. LEARN MORE>>

United States – PDI Group 

Exploit: Ransomware

PDI Group: Defense Contractor 

severity meter

Risk to Business: 2.412 = Severe

US military contractor PDI Group has experienced a ransomware attack, with Babuk Locker claiming responsibility. The gang says that they have 700 GB of data they claim to have stolen from PDI’s internal network and they have made ransom demands after posting a sample to their site. PDI Group manufactures specialty trailers, dollies and other transport tools for multiple military applications.

Individual Impact: No sensitive personal or financial information was announced as impacted in this incident, but the investigation is ongoing.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business: Failing to protect the secrets of your success like blueprints and formulas is a fast path to trouble when your competitors can download them from dark web sources.

ID Agent to the Rescue: Dark web danger is growing for businesses as millions of records landing in dark web markets create new vulnerabilities. PROTECT YOUR BUSINESS>>


Canada – Sierra Wireless

Exploit: Ransomware

Sierra Wireless: Electronics Manufacturing 

severity meter

Risk to Business: 1.302 = Extreme

Canadian electronics giant Sierra Wireless has halted production at its manufacturing sites across the world after a ransomware attack crippled its IT systems. The disruption has kept staff from accessing internal documents and systems related to manufacturing and planning. Investigation and remediation are ongoing.

Individual Impact: No sensitive personal or financial information was announced as compromised in this incident, but the investigation is ongoing.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business: Ransomware can cause catastrophic delays in production, crippling factories. Preventing it from hitting systems is just as important as protecting data.

ID Agent to the Rescue: Stopping ransomware starts with stopping phishing. In “The Phish Files", you’ll learn strategies to spot and stop phishing attacks fast. READ THIS BOOK>>


United Kingdom

United Kingdom – Fat Face

Exploit: Malware

Fat Face: Clothing Retailer

severity meter

Risk to Business: 1.802 = Severe

Retail boutique Fat Face has disclosed that it experienced a data breach in January. According to the shop a third party accessed data, probably through malware, and obtained some employee and customer information. The incident is still under review.

severity meter

Risk to Business: 1.802 = Severe

The organization says that some employee and customer information was exposed, including names, addresses, email addresses and the last four digits of credit card numbers, plus the expiration dates. Customers should be alert for fraud attempts.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business: Failure to keep sensitive data secure is even more costly when your industry or location means you’ll incur regulatory penalties on top of everything else.

ID Agent to the Rescue: Make sure that you’re covering all of the bases with our Cybersecurity Risk Protection Checklist. GET THE CHECKLIST>>

United Kingdom – University of Northampton (UON)

Exploit: Hacking

University of Northampton (UON): Institution of Higher Learning

severity meter

Risk to Business: 2.055 = Severe

Communications and some learning tools were knocked offline at UON after a cyberattack shut down essential systems. No data is reported stolen, and authorities have been informed. Officials say that service is beating slowly but steadily restored.

Individual Impact: No sensitive personal or financial information was announced as compromised in this incident, but the investigation is ongoing.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business: It’s no longer acceptable to just survive a cyberattack by shutting down systems Clients expert businesses to keep on trucking no matter what.

ID Agent to the Rescue: Is your organization ready to repel cyberattacks and keep on going? You are if you’re cyber resilient. Learn how to transform your business in “The Road to Cyber Resilience” today. GET THIS BOOK>>

The Netherlands – RDC

Exploit: Hacking

RDC: Maintenance & Garage Services

severity meter

Risk to Business: 1.861 = Severe

The personal and vehicle details of millions of Dutch car owners were posted for sale on a well-known cybercrime forum, snatched from automotive services company RDC. The threat actor behind the forum ad claims to be in possession of an RDC database with 7.3 million entries. 2.3 million of those records also come complete with email addresses and other PII.

cybersecurity news represented by agauge showing severe risk

Risk to Business: 1.703 = Severe

Both business clients and private car owners were impacted with data including names, home addresses, email addresses, telephone numbers, dates of birth, but also vehicle registration numbers, car makes & models, and license plates exposed.

Customers Impacted: 7.3 million

How it Could Affect Your Customers’ Business: Every time your company does business with another company, your information is at risk and their failure to keep your information safe can come back to haunt you when you least expect it.

ID Agent to the Rescue: Mitigate the risk of doing business in today’s interconnected world with the expert advice in our ebook “Breaking Up with Third-Party and Supply Chain Risk“. DOWNLOAD IT>>

Champions guide

Get the tips, tricks and cheat codes that you feed to beat cybercriminals at their own game! DOWNLOAD THIS BOOK>>


Australia – Channel Nine

Exploit: Hacking

Channel Nine: Television Network

severity meter

Risk to Business: 1.422= Extreme

In an especially audacious attack, hackers disrupted broadcast operations at Channel Nine, preventing the station from transmitting its popular Sunday morning news program, which runs from 7:00 am to 1:00 pm out of studios in Sidney as well as its 5 pm evening news broadcast. The 6 pm broadcast was facilitated by studios in Melbourne. The company acted quickly to restore operations.

Individual Impact: No sensitive personal or financial information was declared as compromised immediately but the investigation is ongoing and more details may emerge.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business: Hackers are bold and dangerous. One security failure can have big consequences for operations, causing delays and dissatisfaction for clients.

ID Agent to the Rescue: Look at the evolution of cybercrime in 2020 to see where we think it’s headed in 2021. GET THE GLOBAL YEAR IN BREACH 2021 NOW>>


Inspect your defenses to find vulnerabilities before the bad guys do with our Cybersecurity Risk Protection Checklist. GET IT>>

Guide to risk scores

1 – 1.5 = Extreme Risk

1.51 – 2.49 = Severe Risk

2.5 – 3 = Moderate Risk

Risk scores for The Week in Breach are calculated using a formula that considers a wide range of factors related to the assessed breach.

Added intelligence

Go Inside the Ink to Get the Inside Scoop on Cybercrime

Are you up to date on the latest news that can impact your business and your customers? Here’s a recap:

Phish Files

Learn the Secret of How Cybercriminals Trick You Into Falling for Phishing Messages!

Read Phish Files Now>>


Don’t Forget to Download The Global Year in Breach 2021 & Our Cybersecurity Risk Protection Checklist

Change comes fast, as we all learned in 2020. Are you ready for what’s next? Read our annual exploration of the breach-related cybercrime landscape to learn more about the patterns and trends that you’ll see in the future. In “The Global Year in Breach 2021” you’ll find:

  • 5 growth areas to keep on your radar
  • How the dark web economy contributed to a cybercrime explosion
  • The risks of the future
  • And so much more!

Download “The Global Year in Breach 2021” and take a deep dive with us. GET THIS BOOK>>


Sit Down with Experts to Explore Mind Games: Protecting Your Business From Social Engineering Attacks 

Social engineering is the driver of today’s most devastating phishing disasters – 98% of cyberattacks in 2020 used social engineering as their main component. Join Jamie Woodruff, Europe’s top ethical hacker and ID Agent for a fascinating webinar where you’ll learn:

  • What tricks cybercriminals favor the most
  • How social engineering can catch even wary employees
  • What you can do to secure businesses against this rising threat

Enjoy the webinar “Mind Games: Protecting Your Business From Social Engineering Attacks” now. SEE THIS WEBINAR>> 

Social engineering attacks

Don’t let supply chain and third-party risk rain on your parade in 2021! Learn how to protect your business (and your profits) in the eBook “Breaking Up with Supply Chain & Third-Party Risk“! GET IT NOW>>

Featured briefing

Cybercrime Numbers Reach New Heights in a Chaotic Threat Atmosphere

The release of the US Federal Bureau of Investigation (FBI) IC3 Internet Crime Report always brings clarity to determining what threats businesses really have to contend with. This year is no different. It also reinforces a conclusion that cybersecurity researchers around the world have been touting – 2020 was a banner year for cybercrime.

The first notable data point is a shocker. The FBI received 791,790 cybercrime complaints in 2020 that resulted in a loss of over $4.2 billion and that’s 300,000 more than 2019. A 69% increase in reported cybercrime is a massive jump that confirms the extraordinary cybercrime risks that every company has to contend with. It also lends credence to the recommendation that companies need to update and upgrade their defenses fast because threat is growing exponentially with no sign of slowing down in 2021.

COVID-19 related scams represented a huge new pool of threats. IC3 reported that it notched 28,500 complaints related to COVID-19 last year. The majority of those scams involved identity theft and fraud, especially around stimulus, grant and loan programs. While that threat will diminish as we move into the post-pandemic era, COVID-19 related cybercrime will still be a problem for businesses as cybercriminals perpetrate phishing scams themed around vaccination and assistance payments in the near future.


See how automated, affordable phishing defense with Graphus can save your business a fortune! GET THE EBOOK>>

Business email compromise (BEC) schemes continued to be the costliest cybercrime reported to IC3 consisting of 19,369 complaints with an adjusted loss of approximately $1.8 billion. Phishing slotted in at number two from 241,342 complaints, with adjusted losses of over $54 million. The number of ransomware incidents reported to the FBI also continues to climb, with 2,474 incidents reported in 2020. IC3 was careful to note that it doesn’t receive reports of all scams in a given year.

The report also draws attention to one prominent BEC scam. IC3 noted the rise of cryptocurrency-enabled BEC scams, adding new danger to an old problem. In this scenario, identity theft is used to commit fraud and access cash as usual, but the stolen funds are immediately converted to cryptocurrency, making them much harder to find. In more personal variations on this scheme that can sometimes target executives, initial victims were enticed into providing a form of ID to a bad actor that was then used to establish a bank account to receive stolen BEC funds and then transferred to a cryptocurrency account.


Don’t miss our Q2 Product Update Webinar on April 6 at 11 am EST! Much-requested fresh features debut soon including BullPhish ID updates! Plus, meet RocketCyber. RESERVE YOUR VIRTUAL SEAT>>

A few other notable data points from the report:

  • The top 5 victimized countries outside the US were the UK, Canada, India, Greece and Australia
  • The top 4 US states in numbers of cybercrime victims were California, Texas, New York and Illinois
  • Social media scams hit 35,439 victims for $155,323,073
  • 2,794 corporate data breaches were reported
  • California had the highest total crime victim losses at $621,452,320
  • Cybercrime targeting people over 60 has become so common that IC3 will be releasing a new, separate report focusing on Elder Fraud in 2021

These numbers can be useful for showing clients and prospects the danger that cybercrime poses to every business. Along with the incredible data that we’ve collected in The Global Year in Breach 2021, this is the kind of data that starts conversations.

One of the most important conversations to start is the need for secure identity and access management. Over 40% of businesses need to improve in this area. With the world economy stagnant, clients may be wary of spending money on new security solutions. So they’re going to be more receptive to a solution that solves multiple problems at once, providing excellent value at an affordable price: Passly.

It’s the perfect choice for mitigating a lot of risk without a lot of budget, with a combination of features that it can take 3 or more solutions to get in one powerful package including:

  • Multifactor authentication (MFA). See the nuts and bolts of the benefits in the special report in our blog, but one fact to remember is that MFA stops 99% of password-based cybercrime on its own.
  • Single sign-on (SSO). It’s a clutch player when time is of the essence as you defend against a cyberattack by making it easy to ferret out the point of origin of intrusions and quarantine problems fast.
  • Automated password resets. IT teams spend up to 50% of their time resetting passwords. Stop spending valuable payroll hours (and dollars) on that and automate it.

We’re here to help you find the perfect combination of solutions to protect your clients and your business from cybercrime through the ID Agent Digital Risk Protection Platform and IT Complete. Book a meeting with one of our solutions experts now and let’s explore the possibilities. BOOK IT>>

Password danger can be created by IoT Cybersecurity risk too & healthcare ransomware attacks

Would you trust a flimsy lock for your front door? Add a stronger lock between cybercriminals and your business when you learn to Build Better Passwords. GET IT>>

Huge Cybercrime Numbers Provide Food for Thought

The recent release of the FBI’s annual IC3 Internet Crime Report draws attention to the surge in cybercrime that businesses have seen in the last year – more than 80% of businesses reported seeing an increase in cyberattacks in 2020. That means that it’s a smart move to put in a little time to review your cybersecurity suite now and add extra protection against some nasty threats if needed.

2020’s increase in cybercrime was hefty across the board, including an enormous increase in phishing of more than 600%. Phishing is responsible for Internet Crime Complaint Center (IC3)’s top reported scam of 2020: business email compromise. The FBI notched 19,369 business email compromise scams in 2020 with a painful adjusted loss of approximately $1.8 billion.

Ransomware defense should also be high on your priority list. This menace isn’t slowing down, and just one incident can devastate your business. Two in five small or medium businesses were hit with ransomware in 2020. IC3 reports that it received 2,474 complaints identified as ransomware with adjusted losses of over $29.1 million.

The FBI received 791,790 cybercrime complaints in 2020 that resulted in a loss of over $4.2 billion and that’s 300,000 more than 2019. That’s an astounding 69% increase in reported cybercrime – and most cybercrime goes unreported.

Make sure that your business doesn’t end up in next year’s report by taking the time to review your protection and bolster it where you can. If your budget is a limitation, look for multifunctional solutions that can check off many security boxes at once like Passly. It’s packed with value including multifactor authentication which stops 99% of password-related cybercrime.

Cybercrime is continuing its upward trend in 2021. Take the time to review your security coverage now and make smart updates that protect your business from the rising tide of cybercrime.

Combat insider threats and more in our security awareness champion's guide represented by an image of the book cover and some potions, scrolls and treasure to elicit the book's fantasy game style as you study holiday phishing scams and cyberpunk 2077 malware

If Cybersecurity is Like a Game, Shouldn’t You Play to Win? Here’s How to Do It.


DTS is very good at cybersecurity solutions for small businesses.

Seriously, we are, and we can prove it. We like being heroes!

We also know how intimidating technology can be, we make a living helping business owners and managers just like you who have questions about all things technology, and that includes cybersecurity.

Most small businesses do not have the technical resources or time to understand all this geek stuff. If this describes you, let us help you.

If you would like more information about cybersecurity as a service give us a call, we’re always happy to chat, and the call is free, every time you call!

Return to the Learning Center

Dedicated to your success,

Wally Moore

Business Development Manager

dts|infotech . . . secure computer networks that work