New Termite Ransomware Group Linked to Blue Yonder Hack

Ransomware Hits 61K Avery Customers, Data Compromised

January 16, 2025January 18, 2025

Avery Products Corporation Suffers Major Ransomware Attack: Customer Data Compromised

Avery Products Corporation, a leading U.S. multinational specializing in labeling and packaging solutions, recently experienced a significant ransomware attack that led to the theft of sensitive information from over 61,000 customers. According to reports from BleepingComputer, the breach occurred early last month and has raised serious concerns about the security of customer data.

The investigation revealed that Avery’s website had been infiltrated by a credit card skimmer, which facilitated the unauthorized collection of personal information. Data compromised includes customers’ names, billing and shipping addresses, phone numbers, email addresses, payment card details, and purchase amounts entered on the site between July 18 and December 9. Avery has since filed a data breach notification with the Office of the Maine Attorney General.

Understanding the Implications of the Ransomware Attack

Ransomware attacks are increasingly common, targeting businesses of all sizes. Here are key takeaways from the Avery incident:

Scope of the Breach: Information from 61,193 customers was stolen, indicating a significant impact on consumer trust.
Types of Data Compromised: The attack exposed sensitive data, including credit card information and personal identification details.
Potential Fraud Risks: Avery noted that while they cannot confirm if fraudulent charges are directly linked to the breach, they have received reports from customers about fraudulent charges and phishing attempts.

Avery’s Response to the Data Breach

In response to the breach, Avery Products Corporation is taking steps to protect its customers. The company has:

Provided Credit Monitoring Services: Affected customers will receive one year of complimentary credit monitoring services to help mitigate the risks associated with identity theft.
Informed Customers: Avery has communicated with customers about the breach and the measures being taken to address the situation.

For further reading on how businesses can protect themselves against ransomware attacks, visit the Cybersecurity & Infrastructure Security Agency.

What Affected Customers Should Do

If you believe you may be impacted by this breach, consider taking the following actions:

Monitor Financial Statements: Regularly check your bank and credit card statements for any unauthorized transactions.
Change Passwords: Update passwords for online accounts, especially if you used the same credentials on Avery’s website.
Utilize Credit Monitoring: Take advantage of the credit monitoring services offered by Avery to help identify potential identity theft early.

Conclusion

The ransomware attack on Avery Products Corporation serves as a reminder of the vulnerabilities that exist in online transactions. As businesses continue to rely on digital platforms, customers must remain vigilant about their personal information.

We invite readers to share their thoughts on this incident or read related articles about cybersecurity trends and best practices in the comments below.

DeepSeek Launch Sparks White House Push for AI Leadership

New York Bans DeepSeek on Government Devices

February 11, 2025February 11, 2025

New York Governor Kathy Hochul has banned the Chinese AI platform DeepSeek from all state-issued devices due to concerns over foreign surveillance. This follows a similar ban in Texas, reflecting a national trend aimed at enhancing public safety and protecting citizens from potential espionage and cyber threats. Hochul emphasized the importance of data privacy and security in today’s digital age. New York’s Chief Information Officer and Chief Cyber Officer support the ban as part of a broader strategy to combat cyber risks. The move signals a growing reevaluation among states regarding foreign technology companies’ involvement in sensitive areas.

Fake DocuSign Docs Target Corporations in Phishing Scam

December 21, 2024December 21, 2024

A recent mobile phishing campaign targeting corporate executives has surfaced, utilizing a sophisticated DocuSign impersonation scheme to steal credentials. Identified by ZimperiumLabs, this trend underscores the growing sophistication of mobile phishing, known as “mishing.” Attackers send seemingly harmless documents for review, employing advanced techniques like CAPTCHA challenges and malicious links in PDFs. Experts recommend enhancing mobile security through Mobile Device Management (MDM), regular software updates, multi-factor authentication (MFA), password managers, and cybersecurity training. Employee vigilance in recognizing and reporting phishing attempts is crucial for protection against these evolving threats. Organizations must adopt proactive measures to mitigate risks.

Cariad Exposes Data of Nearly 800K Electric Cars

December 30, 2024December 30, 2024

Volkswagen’s software subsidiary, Cariad, has suffered a significant data leak affecting nearly 800,000 electric vehicles, with sensitive geo-location data for 460,000 vehicles exposed. The breach, caused by a misconfigured Amazon cloud storage, primarily impacts vehicles registered in Germany. The European hacker group Chaos Computer Club (CCC) discovered the leak and alerted the media. Cariad responded by assuring customers that hackers could not access the vehicles themselves. This incident highlights the urgent need for enhanced data security measures in the automotive industry as vehicles become more connected, emphasizing regular audits and advanced encryption practices.

2025 Forecast: AI Threats Rise, Quantum Risks Increase, SaaS Woes

January 1, 2025January 1, 2025

As we approach 2025, the cybersecurity landscape is evolving significantly due to advancements in artificial intelligence (AI) and quantum computing. AI is expected to enhance threats like phishing and ransomware, with cybercriminals utilizing it for more personalized attacks and developing adaptive ransomware. Additionally, quantum computing poses risks to encryption, making sensitive data vulnerable and increasing cyber espionage. Insider threats will also rise, necessitating the adoption of zero trust strategies. However, AI can aid cybersecurity efforts through automated threat detection and streamlined incident response. Organizations must stay informed and proactive to navigate these challenges effectively.

Thousands of Abandoned Backdoors Exposed

January 9, 2025January 9, 2025

In a major cybersecurity breakthrough, over 4,000 live web backdoors, including tools like China Chopper, c99shell, and r57shell, have been identified and dismantled following the registration of expired domains, according to BleepingComputer. WatchTowr Labs found that these backdoors compromised government organizations in China, Bangladesh, and Nigeria, as well as universities in China, South Korea, and Thailand. The Shadowserver Foundation has taken ownership of the associated domains to neutralize the threats. This incident underscores the vulnerabilities in cybersecurity and the need for robust protective measures, especially regarding expired domains and advanced persistent threats.

Turla Uses Other Cybercrime Tools in Ukraine Attacks

Pro-Ukraine Hackers Hit Key Russian Procurement Site

January 15, 2025January 15, 2025

Roseltorg, Russia’s leading electronic trading platform, experienced significant outages due to a cyberattack claimed by the pro-Ukrainian group Yellow Drift. Initially misattributed to maintenance, the attack reportedly resulted in a loss of 550 terabytes of data. While Roseltorg has assured users that all affected data and infrastructure have been restored, trading systems are still being reactivated. This incident, along with attacks on other Russian entities, highlights the escalating cyber warfare between Russia and Ukraine, emphasizing the need for enhanced cybersecurity measures to protect critical infrastructure against growing threats.