InvestorsHub Logo
Boards
News
Market Data
Markets
Discover
Discover
Subscribe Login/Register
S&P 500
5,127.79
(
1.26%
)
US TECH 100
17,446.00
(
2.17%
)
Dow Jones
38,675.68
(
1.18%
)
Brent Oil
82.77
(
0.00%
)
Bitcoin
64,123.67
(
0.36%
)
Post# of 248798
Next 10
Reply Private New
Public Reply Private Reply New Post
Keep Last Read
Keep Next 10 Report Keyboard Shortcuts
Next 10 Prev Next

Genz2

Send PM Follow Ignore
Followers 5
Posts 2562
Boards Moderated 0
Alias Born 09/06/2006

Genz2

Re: None

Wednesday, 08/12/2020 10:51:24 AM

Wednesday, August 12, 2020 10:51:24 AM

Post# of 248798
SANS Institute Phishing Attack Leads to Theft of 28,000 Records

https://www.infosecurity-magazine.com/news/sans-phishing-attack/

The SANS Institute has revealed that hundreds of emails from an internal account were forwarded to an unknown third party, compromising 28,000 records of personally identifiable information (PII).

The global cybersecurity training and certifications organization said in a statement that the incident came to light on August 6 after a regular review of email configuration identified a “suspicious forwarding rule.”

“This rule was found to have forwarded a number of emails from a specific individual's e-mail account to an unknown external email address,” it continued.

“The forwarded emails included files that contained some subset of email, first name, last name, work title, company name, industry, address, and country of residence. SANS quickly stopped any further release of information from the account.”

In total, 513 emails were forwarded to the external address, exposing nearly 30,000 records of PII. A malicious Office 365 add-on was apparently installed on the victim’s machine as part of the attack.

“We have identified a single phishing e-mail as the vector of the attack,” SANS explained. “As a result of the e-mail, a single employee's email account was impacted. Aside from the affected user, we currently believe that no other accounts or systems at SANS were compromised.”

The firm said its digital forensics team is currently investigating whether any other information was compromised, and to identify any opportunities to build resilience into its defenses and improvements into its incident response for the future.

No passwords or financial information was taken in the attack, and all affected individuals have now been notified, SANS said.

Refreshingly, the organization added that it may run an online session on the incident once the investigation is completed, “if there is information that we think would be useful to the community.”

Infosecurity has reached out to SANS for more information on the incident and will update the story if we hear back.
=================================================================
Wave protects against phishing and the SANS Institute could have avoided this incident by using Wave solutions!!!
==================================================================
https://www.wavesys.com/

https://www.wavesys.com/contact-information












Public Reply Private Reply New Post
Keep Last Read
Keep Last Read Next 10 Report Keyboard Shortcuts
Next 10 Prev Next

Join the InvestorsHub Community

Register for free to join our community of investors and share your ideas. You will also get access to streaming quotes, interactive charts, trades, portfolio, live options flow and more tools.

Sign Up