Verizon Enterprise Solutions, which helps Fortune 500 companies respond to data breaches and is known for its Data Breach Investigations Report, has been hit by its own data breach. Cybersecurity expert Brian Krebs was the first to notice a black-market forum selling the contact information for approximately 1.5 million of Verizon Enterprise Solutions’ customers. The criminal responsible was selling the entire package for $100,000 or in batches of 100,000 contacts for $10,000.
Krebs reached out to Verizon, who confirmed the breach and said, “the company recently identified a security flaw in its site that permitted hackers to steal customer contact information, and it is in the process of alerting affected customers.”
References: Verizon’s Data Breach Fighter Gets Hit With, Well, a Data Breach | Data breach authority Verizon Enterprise breached; 1.5 million customers impacted | Crooks Steal, Sell Verizon Enterprise Customer Data
Researchers from Trend Micro discovered a new variant of ransomware, dubbed Petya. It is delivered to victims via an email phishing scam, locks the user out of their computer, and forces them to pay 0.99 Bitcoin (over $400) ransom to decrypt the computer. The victims, mostly Human Resources employees, receive an email from applicants seeking a position at their company. The email contains a hyperlink to a Dropbox storage location that supposedly contains a resume; however, visiting the location loads a Trojan onto the victim’s computer, which in turn downloads the Petya ransomware. Once installed, Petya replaces the Master Boot Record, rendering the OS inoperable and then continues to encrypt the Master File Table, causing the computer to not know where files are located, or even if they exist.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.