Posted March 25, 2015
Welcome to the Cyveillance Weekly Cyber Security Trends Report
Since threat intelligence is constantly evolving, we publish this weekly cyber security trends report to keep our customers updated on the latest threats across a variety of industries. You can read an abridged version below. Follow us on Twitter and subscribe to our blog to make sure you don’t miss any of the latest security articles from Cyveillance experts.
Top Cyber Security Incidents
- Hackers may have attacked a leading health insurance provider using the same methods employed in the massive data breach incident disclosed last month by another major health insurer, suggesting that a single group may be behind both breaches. Customer data, including bank account and clinical data going back to 2002, may have been compromised in the attack, affecting 11 million people.
- In Brazil, bad news continued the week after millions marched against government corruption, their anger focused primarily on the President and her Workers Party. On Wednesday her approval rating fell to 13 percent. The number of politicians charged in the Petrobras corruption scandal is now over 50 and includes the Worker’s Party Treasurer and the Presidents of both the Senate and Chamber of Deputies. Compounding her problems is the prospect that the economy could shrink in 2015 for the second consecutive year, the first such contraction that severe since the onset of the Great Depression in 1929 and 1930.
Legal and Regulations
- Senate Democrats are divided over the scope of intellectual property reform in legislation that would curb “patent trolls,” The Hill reports. Among the sticking points is a fee-shifting provision that would require the loser in patent suits to cover legal fees.
- Target has agreed to pay $10 million to settle a class-action lawsuit stemming from a massive data breach that compromised the information of up to 40 million shoppers during the 2013 holiday season. Target will pay affected shoppers up to $10,000 each in damages.
- Facebook, one of the most popular social networks in Russia, reported that content restriction requests from the Russian government increased nearly two-fold during the second half of 2014. In a new installment of their Global Government Requests Report, spanning a period from July 2014 to December 2014, Facebook reported only two government requests for user account data in Russia, and said it did not fulfill any of them. In contrast, Facebook received no government requests for Russian users’ data during the first half of 2014.
- FCC Chairman Tom Wheeler’s new net neutrality rules are now facing yet another investigation by the FCC’s Inspector General David Hunt, who is also looking into whether the Obama administration improperly influenced the agency’s development of the net neutrality rules, according to reports.
- APT Rocket Kitten, who may have ties to Iran has breached the systems of several organizations in Israel and Europe. Rocket Kitten conducted two campaigns: GHOLE malware distribution, and operation “Woolen-GoldFish,” which indicates a state-sponsored campaign. The threat group is “particularly interested in the defense industry, government entities, the IT sector, and academic organizations.” The attack vector reported is spear-phishing.