It has been revealed that a Precedent Communications employee was behind the massive data breach that hit the Australian Red Cross Blood Service late last year. Precedent was hired to handle website development and database management.
According to new investigation reports into the breach, a backup of a database file containing information relating to approximately 550,000 prospective blood donors was inadvertently saved to a public-facing web server by an employee on September 5, 2016. Reports also uncovered the fact that Precedent did not meet two Australian Privacy Principle requirements.
References: Australian Red Cross Data Breach Caused by Third-Party Error | Aussie Blood Data Breach Highlights Third Party Risk | Red Cross Data Breach That Impacted 550,000 Donors was Caused by ‘Human Error’
The second quarter of 2017 saw sophisticated threat actors unleash a wealth of new and enhanced malicious tools, including three zero-day exploits and two unprecedented attacks: WannaCry and ExPetr.
Researchers highlighted Sofacy and Turla as the attackers behind APT campaigns. The Russian-speaking groups added new ways to bypass detection, crafted new payloads to drop, and identified new zero days and backdoors to help them infect users and maintain persistence on machines.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.