Friday 7th June 2024

Good morning everyone, thank you for joining me for today's installment of Cyber Daily. Today's stories remind us of the ever-present challenges and vulnerabilities across the world.

From a major AT&T outage raising fears of cyber sabotage to the work-from-home trend becoming a hacker's paradise, and a ransomware attack crippling a key Texas hospital, cybersecurity is at the forefront of our minds.

Was AT&T Hacked?

The recent AT&T outage affecting customers across 24 states sparked concerns about a potential cyber attack on US cell phone infrastructure. The outage, which disrupted calls, internet access, and even emergency 911 calls, led to cybersecurity experts warning that “anything is possible” when it comes to threat actors exploiting vulnerabilities.

Despite these concerns, an AT&T spokesperson assured that the outage was due to interoperability issues between carriers, not a cyber attack. However, the incident has heightened awareness about the vulnerability of US telecom networks, especially following a significant data breach last year that exposed the personal information of over 70 million AT&T customers.

Experts remain divided, with some suggesting the outage could still have been a cyber attack while others, like Alex Holden of Hold Security, argue that nation-state actors are unlikely to cause such disruptions due to potential geopolitical repercussions. Nevertheless, the incident underscores the critical need for robust cybersecurity measures to protect essential communication infrastructure.

Home Office = Cyber Office?

As remote work continues post-pandemic, companies face a growing cybersecurity challenge. Executives warn that employees working from home often have outdated security measures on their laptops, making them prime targets for cybercriminals. A recent report from Absolute Security highlighted that nearly half of UK firms experienced ransomware attacks over the past year.

With cyberattacks doubling since the start of COVID-19, the International Monetary Fund (IMF) and cybersecurity firms like McAfee have noted a significant uptick in threats. Employees working remotely are reportedly developing poor cybersecurity habits, such as using personal, less secure emails. This has severe repercussions, from financial losses to damaged reputations.

Experts stress the need for robust cyber resilience strategies to combat these threats. They emphasise that with the rise of AI-driven attacks, companies must stay vigilant and proactive in updating their cybersecurity defenses.

Ascension Seton Recovers from Ransomware Attack

Last month's ransomware attack on Ascension Seton forced the hospital to revert to manual, paper-based systems temporarily. The healthcare provider, a major player in Central Texas, has since restored electronic documentation access. However, the incident underscores the persistent threat of cyberattacks, even for well-protected organisations.

Shelby Staffel, CIO of cybersecurity firm IT GOAT, noted that ransomware attacks have escalated yearly, with over $1 billion paid in ransoms in 2023. In these attacks, hackers encrypt crucial data, demanding payment to release it—a tactic particularly effective against healthcare institutions due to the high value of medical records.

Despite reverting to backups to restore systems, the potential exposure of sensitive data remains a concern. Such data often ends up traded on the dark web, where it becomes a commodity. Staffel advises constant vigilance, regular password changes, and cybersecurity training as key defenses against such threats.

Ascension Seton has not commented on the potential data breach or the specifics of its recovery process.