InTegriLogic Blog
InTegriLogic has been serving the Tucson area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Planned Parenthood
https://www.washingtonpost.com/nation/2021/12/01/los-angeles-planned-parenthood-hack/Exploit: Ransomware
Planned Parenthood: Healthcare Provider
Risk to Business:Â 1.616= Severe
Bad actors gained access to the personal information of an estimated 400,000 patients of Planned Parenthood in Los Angeles this past October in a probable ransomware attack.  A spokesperson said that someone gained access to Planned Parenthood Los Angeles’ network between October 9 and 17, deployed and exfiltrated an undisclosed number of files. The breach is limited to the Los Angeles affiliate and an investigation is underway.
Risk to Business:Â 1.703= Severe
PPLA told clients that PII and PHI had been exposed including the patient’s name, address, insurance information, date of birth, and clinical information, such as diagnosis, procedure, and/or prescriptions.
How It Could Affect Your Business:Â Medical information is valuable, especially sensitive information like this that can be used for both cybercrime and blackmail, and patients expect that healthcare providers will protect it.
Gale Healthcare Solutions
https://www.zdnet.com/article/sensitive-information-of-30k-florida-healthcare-workers-exposed-in-unprotected-database/Exploit: Misconfiguration
Gale Healthcare Solutions: Healthcare Job Placement
Risk to Business:Â 1.611=Severe
More than 30,000 US healthcare workers’ personal information was recently exposed due to a non-password-protected database owned by Gale Healthcare Solutions, a Florida-based healthcare staffing provider. Files containing the PII of healthcare workers that the company placed were hosted on an unsecured AWS cloud server that was uncovered by security researchers in September. Gale Health Solutions says that the environment has been deactivated and secured. The company also says that there is no evidence there was any further unauthorized access beyond the researcher or that any personal data has been, or will be, misused.
Individual Risk:Â 1.813=Severe
Researchers reported that the files they saw contained a healthcare worker’s face image or ID badge, full name and a number consistent with an SSN. Other personal data about the impacted workers may also have been exposed.
How It Could Affect Your Business:Â This mistake will be expensive and coveted healthcare workers may be inclined to choose a different staffing agency because of this carelessness.
MonoX
https://www.hackread.com/hackers-steal-badger-defi-monox/Exploit: Hacking
MonoX: Cryptocurrency Finance
Risk to Business:Â 1.318=Extreme
The MonoX DEX platform has experienced a breach that did damage to the tune of $31 million. The breach took place after hackers exploited a vulnerability in smart contract software, then exploited the vulnerability to increase the price of MONO through smart contracts and bought assets with MONO tokens. DeFi platform Badger was also reportedly hit by hackers for $120 million last week after they gained access by targeting a protocol on the Ethereum network.
Customers Impacted:Â Unknown
How It Could Affect Your Business:Â In an ultra-competitive sector like crypto, customers will be watching every move a company makes, especially if it could potentially cost them money.
DNA Diagnostics Center
Exploit: RansomwareDNA Diagnostics Center: Healthcare Services
Risk to Business:Â 1.819= Severe
DNA Diagnostics Center said that on August 6, the company discovered that there had been unauthorized access to its network that enabled someone to access and exfiltrate an archived database that contained patient PII collected between 2004 and 2012. The Ohio-based company says that 2,102,436 people had their information exposed. Victims may have been ordered to undergo genetic testing as part of a legal matter.
Individual Risk 1.617= Severe
The company is sending letters to impacted individuals warning them that they may have had their PII and sensitive data such as Social Security number or payment information exposed. Anyone whose personal information was accessed is being offered Experian credit monitoring.
How it Could Affect Your Business:Â Companies that store two kinds of valuable data like this are at high risk for an expensive and damaging ransomware incident that will have lasting financial results.
United Kingdom – BitMart
https://portswigger.net/daily-swig/crypto-exchange-bitmart-reports-150-million-theft-following-hackExploit:Â Hacking
BitMart: Cryptocurrency Exchange
Risk to Business:Â 1.212= Extreme
Cryptocurrency trading platform BitMart has been hacked resulting in the loss of an estimated $150 million in funds. Portswigger reports that Blockchain security firm Peckshield has estimated losses of around $200 million following an attack on the platform on Saturday (December 4), comprising $100 million on the Ethereum blockchain and $96 million on the Binance Smart Chain. BitMart said n a statement that it was temporarily suspending withdrawals until further notice after detecting a large-scale security breach centered on two ‘hot’ wallets. BitMart claims that it has more than nine million customers across more than 180 countries.
Customers Impacted:Â Unknown
How it Could Affect Your Business: Crypto platforms have been squarely in cybercriminals’ sights in the last few months and consumers are watching to see which ones are able to avoid trouble.
Japan – Panasonic
https://www.securitymagazine.com/articles/96615-panasonic-discloses-data-breach
Exploit: HackingPanasonic: Electronics Manufacturer
Risk to Business:Â 1.919 = Severe
Panasonic has confirmed that it’s had a security breach after unauthorized users accessed its network on November 11. The company says that an internal investigation revealed that some data on a file server had been accessed by intruders. No information was given about what data was accessed or how much. Panasonic says that it is working with an outside firm to get to the bottom of the matter and expressed its apologies for the incident.
Customers Impacted:Â Unknown
How it Could Affect Your Business:Â Large companies are treasure troves for data-hungry cybercriminals looking for a quick, low-risk score to turn over for fast profit.
Australia – CS Energy
https://www.itpro.co.uk/security/ransomware/361687/cs-energy-ransomware-attackExploit:Â Ransomware
CS Energy: Energy Company
Risk to Business:Â 1.723 = Severe
CS Energy confirmed it experienced a ransomware attack on November 27. The company said the incident was limited to its corporate network and did not impact operations at its Callide and Kogan Creek power stations. CS Energy’s CEO said that the company contained the ransomware attack by segregating the corporate network from other internal networks and enacting business continuity processes. CS Energy is owned by the Queensland government.
Customers Impacted:Â Unknown
How it Could Affect Your Business:Â Utility companies and other critical infrastructure businesses are tempting targets for cybercriminals because their essential nature makes the owners more likely to pay a ransom.
Planned Parenthood
https://www.washingtonpost.com/nation/2021/12/01/los-angeles-planned-parenthood-hack/Exploit: Ransomware
Planned Parenthood: Healthcare Provider
Risk to Business:Â 1.616= Severe
Bad actors gained access to the personal information of an estimated 400,000 patients of Planned Parenthood in Los Angeles this past October in a probable ransomware attack.  A spokesperson said that someone gained access to Planned Parenthood Los Angeles’ network between October 9 and 17, deployed and exfiltrated an undisclosed number of files. The breach is limited to the Los Angeles affiliate and an investigation is underway.
Risk to Business:Â 1.703= Severe
PPLA told clients that PII and PHI had been exposed including the patient’s name, address, insurance information, date of birth, and clinical information, such as diagnosis, procedure, and/or prescriptions.
How It Could Affect Your Business:Â Medical information is valuable, especially sensitive information like this that can be used for both cybercrime and blackmail, and patients expect that healthcare providers will protect it.
Gale Healthcare Solutions
https://www.zdnet.com/article/sensitive-information-of-30k-florida-healthcare-workers-exposed-in-unprotected-database/Exploit: Misconfiguration
Gale Healthcare Solutions: Healthcare Job Placement
Risk to Business:Â 1.611=Severe
More than 30,000 US healthcare workers’ personal information was recently exposed due to a non-password-protected database owned by Gale Healthcare Solutions, a Florida-based healthcare staffing provider. Files containing the PII of healthcare workers that the company placed were hosted on an unsecured AWS cloud server that was uncovered by security researchers in September. Gale Health Solutions says that the environment has been deactivated and secured. The company also says that there is no evidence there was any further unauthorized access beyond the researcher or that any personal data has been, or will be, misused.
Individual Risk:Â 1.813=Severe
Researchers reported that the files they saw contained a healthcare worker’s face image or ID badge, full name and a number consistent with an SSN. Other personal data about the impacted workers may also have been exposed.
How It Could Affect Your Business:Â This mistake will be expensive and coveted healthcare workers may be inclined to choose a different staffing agency because of this carelessness.
MonoX
https://www.hackread.com/hackers-steal-badger-defi-monox/Exploit: Hacking
MonoX: Cryptocurrency Finance
Risk to Business:Â 1.318=Extreme
The MonoX DEX platform has experienced a breach that did damage to the tune of $31 million. The breach took place after hackers exploited a vulnerability in smart contract software, then exploited the vulnerability to increase the price of MONO through smart contracts and bought assets with MONO tokens. DeFi platform Badger was also reportedly hit by hackers for $120 million last week after they gained access by targeting a protocol on the Ethereum network.
Customers Impacted:Â Unknown
How It Could Affect Your Business:Â In an ultra-competitive sector like crypto, customers will be watching every move a company makes, especially if it could potentially cost them money.
DNA Diagnostics Center
Exploit: RansomwareDNA Diagnostics Center: Healthcare Services
Risk to Business:Â 1.819= Severe
DNA Diagnostics Center said that on August 6, the company discovered that there had been unauthorized access to its network that enabled someone to access and exfiltrate an archived database that contained patient PII collected between 2004 and 2012. The Ohio-based company says that 2,102,436 people had their information exposed. Victims may have been ordered to undergo genetic testing as part of a legal matter.
Individual Risk 1.617= Severe
The company is sending letters to impacted individuals warning them that they may have had their PII and sensitive data such as Social Security number or payment information exposed. Anyone whose personal information was accessed is being offered Experian credit monitoring.
How it Could Affect Your Business:Â Companies that store two kinds of valuable data like this are at high risk for an expensive and damaging ransomware incident that will have lasting financial results.
United Kingdom – BitMart
https://portswigger.net/daily-swig/crypto-exchange-bitmart-reports-150-million-theft-following-hackExploit:Â Hacking
BitMart: Cryptocurrency Exchange
Risk to Business:Â 1.212= Extreme
Cryptocurrency trading platform BitMart has been hacked resulting in the loss of an estimated $150 million in funds. Portswigger reports that Blockchain security firm Peckshield has estimated losses of around $200 million following an attack on the platform on Saturday (December 4), comprising $100 million on the Ethereum blockchain and $96 million on the Binance Smart Chain. BitMart said n a statement that it was temporarily suspending withdrawals until further notice after detecting a large-scale security breach centered on two ‘hot’ wallets. BitMart claims that it has more than nine million customers across more than 180 countries.
Customers Impacted:Â Unknown
How it Could Affect Your Business: Crypto platforms have been squarely in cybercriminals’ sights in the last few months and consumers are watching to see which ones are able to avoid trouble.
Japan – Panasonic
https://www.securitymagazine.com/articles/96615-panasonic-discloses-data-breach
Exploit: HackingPanasonic: Electronics Manufacturer
Risk to Business:Â 1.919 = Severe
Panasonic has confirmed that it’s had a security breach after unauthorized users accessed its network on November 11. The company says that an internal investigation revealed that some data on a file server had been accessed by intruders. No information was given about what data was accessed or how much. Panasonic says that it is working with an outside firm to get to the bottom of the matter and expressed its apologies for the incident.
Customers Impacted:Â Unknown
How it Could Affect Your Business:Â Large companies are treasure troves for data-hungry cybercriminals looking for a quick, low-risk score to turn over for fast profit.
Australia – CS Energy
https://www.itpro.co.uk/security/ransomware/361687/cs-energy-ransomware-attackExploit:Â Ransomware
CS Energy: Energy Company
Risk to Business:Â 1.723 = Severe
CS Energy confirmed it experienced a ransomware attack on November 27. The company said the incident was limited to its corporate network and did not impact operations at its Callide and Kogan Creek power stations. CS Energy’s CEO said that the company contained the ransomware attack by segregating the corporate network from other internal networks and enacting business continuity processes. CS Energy is owned by the Queensland government.
Customers Impacted:Â Unknown
How it Could Affect Your Business:Â Utility companies and other critical infrastructure businesses are tempting targets for cybercriminals because their essential nature makes the owners more likely to pay a ransom.
After the ups and downs of the last year and a half, the business world is making its way into 2022 with renewed optimism. Business executives are contemplating strategies to start the year with a strong quarter by adapting to the new normal. Do you have the best technology infrastructure to help you kick off the new year with a bang? If not, it's time to consider a technology refresh.
Every company wants to grow, but if you treat your technological infrastructure as an afterthought, you may be severely limiting your company's potential.
Remember that your IT infrastructure is a critical component of your business. An up-to-date and high-quality IT infrastructure is an asset that enables you to do business without falling prey to cyberthreats and helps you achieve your goals.
A technology refresh enables a company to analyze the current state of its IT infrastructure and weigh the merits of trying something better. For a company's long-term success, it's best to review the present IT infrastructure — hardware, software and other technology solutions — and determine what additional solutions are available that would better suit its needs.
The following are the top four reasons to refresh your technology infrastructure:
Some of the threats that small and midsized business’ (SMBs) IT infrastructure must defend against are:
Never take compliance lightly since failure to comply can result in:
In addition, some cyberattacks specifically target backups. As a result, it is critical to review and refresh your backup solution regularly.
A timely technology refresh could act as an energy boost for your company, enabling it to be more resilient. Begin your IT infrastructure refresh journey with a partner like us. Knowing that the process is in expert hands gives you peace of mind and allows you to focus on building your business. Get in touch with us today.
Every company wants to grow, but if you treat your technological infrastructure as an afterthought, you may be severely limiting your company's potential.
Remember that your IT infrastructure is a critical component of your business. An up-to-date and high-quality IT infrastructure is an asset that enables you to do business without falling prey to cyberthreats and helps you achieve your goals.
A technology refresh enables a company to analyze the current state of its IT infrastructure and weigh the merits of trying something better. For a company's long-term success, it's best to review the present IT infrastructure — hardware, software and other technology solutions — and determine what additional solutions are available that would better suit its needs.
Reasons Worth Considering Before Refreshing Your IT Infrastructure
The following are the top four reasons to refresh your technology infrastructure:
Increased Security
The threat landscape is constantly evolving. We know this because of the projected increase in the cybersecurity market size from around 217 billion in 2021 to about 240 billion in 2022.1 If you want to keep cybercriminals out of your business, you must understand where your technology and security measures fall short, leaving you vulnerable.Some of the threats that small and midsized business’ (SMBs) IT infrastructure must defend against are:
- Targeted ransomware attacks
- Phishing attacks
- Insider threats
- DDoS attacks
Assurance That You’re Meeting Compliance Requirements
Regardless of your industry, you're probably subject to compliance regulations that your company must follow. If you use outdated technology that no longer receives software patches and is no longer supported, you may jeopardize your compliance status. Finding these gaps in your infrastructure as early as possible allows you to close them, thereby avoiding reputational damage and getting into hot water with regulators.Never take compliance lightly since failure to comply can result in:
- Hefty penalties
- Uninvited audits
- Criminal charges
- Denial of insurance claims
- Forced closure or even imprisonment
Reliable Backup
If you don't have a backup solution, you should find one that will work for your business because you could lose all your critical data in the blink of an eye. If you currently have a backup solution, you should check on it regularly to ensure that it is still functional. If it isn’t working, and your organization wants to access your backups, you’ll be in a tough spot.In addition, some cyberattacks specifically target backups. As a result, it is critical to review and refresh your backup solution regularly.
Stay Competitive Using Artificial Intelligence (AI) and Other Emerging Technologies
According to Gartner, 33% of technology and service provider organizations intend to invest $1 million or more in AI over the next two years. AI and other emerging technologies are rapidly altering the landscape of every industry. If you want to stay ahead of your competitors, you must use the most up-to-date technology that is appropriate for your industry and goals. This could explain why around 60% of SMBs have invested in emerging technologies.2Collaborate for Success
A timely technology refresh could act as an energy boost for your company, enabling it to be more resilient. Begin your IT infrastructure refresh journey with a partner like us. Knowing that the process is in expert hands gives you peace of mind and allows you to focus on building your business. Get in touch with us today.
Sources:
- Statista
- Adobe Digital Trends Report
After the ups and downs of the last year and a half, the business world is making its way into 2022 with renewed optimism. Business executives are contemplating strategies to start the year with a strong quarter by adapting to the new normal. Do you have the best technology infrastructure to help you kick off the new year with a bang? If not, it's time to consider a technology refresh.
Every company wants to grow, but if you treat your technological infrastructure as an afterthought, you may be severely limiting your company's potential.
Remember that your IT infrastructure is a critical component of your business. An up-to-date and high-quality IT infrastructure is an asset that enables you to do business without falling prey to cyberthreats and helps you achieve your goals.
A technology refresh enables a company to analyze the current state of its IT infrastructure and weigh the merits of trying something better. For a company's long-term success, it's best to review the present IT infrastructure — hardware, software and other technology solutions — and determine what additional solutions are available that would better suit its needs.
Reasons Worth Considering Before Refreshing Your IT Infrastructure
The following are the top four reasons to refresh your technology infrastructure:
Increased Security
The threat landscape is constantly evolving. We know this because of the projected increase in the cybersecurity market size from around 217 billion in 2021 to about 240 billion in 2022.1 If you want to keep cybercriminals out of your business, you must understand where your technology and security measures fall short, leaving you vulnerable.
Some of the threats that small and midsized business’ (SMBs) IT infrastructure must defend against are:
- Targeted ransomware attacks
- Phishing attacks
- Insider threats
- DDoS attacks
Assurance That You’re Meeting Compliance Requirements
Regardless of your industry, you're probably subject to compliance regulations that your company must follow. If you use outdated technology that no longer receives software patches and is no longer supported, you may jeopardize your compliance status. Finding these gaps in your infrastructure as early as possible allows you to close them, thereby avoiding reputational damage and getting into hot water with regulators.
Never take compliance lightly since failure to comply can result in:
- Hefty penalties
- Uninvited audits
- Criminal charges
- Denial of insurance claims
- Forced closure or even imprisonment
Reliable Backup
If you don't have a backup solution, you should find one that will work for your business because you could lose all your critical data in the blink of an eye. If you currently have a backup solution, you should check on it regularly to ensure that it is still functional. If it isn’t working, and your organization wants to access your backups, you’ll be in a tough spot.
In addition, some cyberattacks specifically target backups. As a result, it is critical to review and refresh your backup solution regularly.
Stay Competitive Using Artificial Intelligence (AI) and Other Emerging Technologies
According to Gartner, 33% of technology and service provider organizations intend to invest $1 million or more in AI over the next two years. AI and other emerging technologies are rapidly altering the landscape of every industry. If you want to stay ahead of your competitors, you must use the most up-to-date technology that is appropriate for your industry and goals. This could explain why around 60% of SMBs have invested in emerging technologies.2Collaborate for Success
A timely technology refresh could act as an energy boost for your company, enabling it to be more resilient. Begin your IT infrastructure refresh journey with a partner like us. Knowing that the process is in expert hands gives you peace of mind and allows you to focus on building your business. Get in touch with us today.
Sources:
- Statista
- Adobe Digital Trends Report
When was the last time you conducted a comprehensive technology audit? If it's been a while or hasn't happened at all, you're probably vulnerable to a cyberattack. Cybercrime shows no signs of slowing down and is expected to cost the world $10.5 trillion per year by 2025.*
Â
Are you confident that your organization is secure with the current remote and hybrid work environments? This is where a technology audit can give you peace of mind. An IT audit is a thorough analysis and assessment of an organization's IT infrastructure, policies and procedures.
Here are some reasons why a technology audit is essential to organizational resilience and overall success:
Comprehensive technology audits have three key benefits:
A properly planned auditing process creates a map of your IT environment that helps you understand how everything connects and which areas expose you to threats. This allows you to focus your remediation efforts where they are needed the most.
Consider this: What if one of your top executives was secretly selling all your intellectual property ideas to your main competitor? That could sink your company or significantly reduce your profit potential. Unmapped and unaccounted-for technology landscapes can lead to similar outcomes.
To avoid this, regularly monitor, update, patch and clean up the proverbial dust in your infrastructure. You might soon discover that someone intentionally or unintentionally downloaded a piece of malicious code that's spreading like wildfire across your network, waiting for the perfect moment to demand a ransom or continue spying and stealing your best ideas.
An audit can also help you prioritize your goals based on what's most pressing, exposing vulnerabilities or what’s causing productivity loss.
Armed with a thorough understanding of your technology's strengths, weaknesses, opportunities and threats, you can begin planning years in advance and share the vision with team members to keep them motivated.
Are you ready to start planning your technology audit? Contact us for a free assessment.
Â
Are you confident that your organization is secure with the current remote and hybrid work environments? This is where a technology audit can give you peace of mind. An IT audit is a thorough analysis and assessment of an organization's IT infrastructure, policies and procedures.
Importance of Technology Audits
Here are some reasons why a technology audit is essential to organizational resilience and overall success:
- Detects security vulnerabilities
- Ensures that the organization is up to date on security measures
- Establishes the foundation for the organization's new security policies
- Prepares the organization to respond quickly and effectively in the event of a cyberattack
- Helps maintain compliance with various security regulations
Benefits of Technology Audits
Comprehensive technology audits have three key benefits:
No Surprises
A properly planned auditing process creates a map of your IT environment that helps you understand how everything connects and which areas expose you to threats. This allows you to focus your remediation efforts where they are needed the most.
Consider this: What if one of your top executives was secretly selling all your intellectual property ideas to your main competitor? That could sink your company or significantly reduce your profit potential. Unmapped and unaccounted-for technology landscapes can lead to similar outcomes.
To avoid this, regularly monitor, update, patch and clean up the proverbial dust in your infrastructure. You might soon discover that someone intentionally or unintentionally downloaded a piece of malicious code that's spreading like wildfire across your network, waiting for the perfect moment to demand a ransom or continue spying and stealing your best ideas.
Data-Driven Decision Making
An audit can also help you prioritize your goals based on what's most pressing, exposing vulnerabilities or what’s causing productivity loss.
A Vision for the Future
Armed with a thorough understanding of your technology's strengths, weaknesses, opportunities and threats, you can begin planning years in advance and share the vision with team members to keep them motivated.
Are you ready to start planning your technology audit? Contact us for a free assessment.