Massive Security and Technology News

Technology 2023 – 2024 Technology vulnerabilities continue to affect businesses and people, with over 1 billion stolen records, data, and documents exposed in various breaches and massive personal, business, and medical data across the United States.

Organizations have fallen prey to attacks and data breaches focused on theft and extortion.

In February, an attack against UnitedHealth-owned prescription processor Change Healthcare caused massive disruption in the U.S. healthcare system.

In May, the Ascension health system was attacked, forcing it to divert emergency care from some hospitals.

Software maker CDK Global also fell victim to a crippling attack that disrupted thousands of car dealerships, their customer data, and buying records.

These attacks have raised questions about whether threat actors intentionally target companies whose patients and customers would be severely affected by the disruptions to put increased pressure on organizations to pay ransoms. However, data still makes its way to the black market.

AT&T notified millions of customers that their data was likely stolen in an April leak that the company disclosed earlier this month. Meanwhile, comprehensive laws protecting customers from hacks keep struggling to pass, as AT&T and its rivals have fought back against and heavily influenced a patchwork of data laws, arguing that the approach has failed to rein in the problem.

Krebs Security has learned that many organizations, including banks and healthcare providers, leak private and sensitive information from their public Salesforce Community websites. The data exposures all stem from a misconfiguration in the Salesforce that allows an unauthenticated user to access records that should only be available after accessing the login. (source - arstechnica.com)

Dropbox stated that a hacker accessed customer information, including emails and usernames, phone numbers and hashed passwords, OAuth tokens, and multi-factor authentication information. (Forbes)

Here's what is known so far: Dropbox, AT&T, Salesforce, UnitedHealth-owned prescription processors, and now Microsoft have experienced serious breaches and technology challenges. Crowdstrike created the largest disaster with broad U.S. massive disruptions, and the country continues with ongoing travel disruptions, including airlines, emergency services, and communications.

?

According to the website 6sense.com, CrowdStrike has more than 3,500 customers, which represents about 1 out of 4 companies buying endpoint security. CrowdStrike CEO George Kurtz later posted a statement to X, formerly Twitter, confirming the update caused the Windows crashes. Linux hosts are not impacted,"

Cool Life Fintech CRM and Secure Data Room remain unaffected by data breaches or technology constraints reliant on infrastructure failures such as CrowdStrike. Cool Life clients are assured of unique databases with security protocols that assure confidence in protecting your company data and documents. ?