TikTok | In-depth analysis of Ransomware
CyberInsights #60
TikTok breached?
After see-sawing for a while, there are now reports that the TikTok breach is real.
With the kind of screenshots shared on Twitter, it seems obvious that there is a massive breach and it is data of TikTok users.
TikTok however, denies the breach. They released a statement that they do not see a breach and the data available on the screenshot is from public scraping.
Take Action:
For a change, this is the interesting part.
If you have not been breached, but there is a public campaign to malign your image by claiming that you have been breached, what do you do?
In your Cyber Crisis Management Plan (CCMP), define a scenario of data not breached, but publicised. Identify channels of communication and actions to be taken to respond to the scenario. Read this article on Forbes to get started on building an effective communication plan.
What if you are not breached, but it was possible to correlate a lot of data by scraping the web?
In that case, or even without that case, conduct an OSINT exercise of your organisation. Find out what data is publicly available and scrape-able. Find a way to fix the publicly available data.
Ransomware attack on Irish health service
This happened in May of 2021.
No, I am not trying to rehash old stuff and give it to you. I am not a daily soap.
I came across this tweet by Kevin Beaumont.
He has shared a link to a redacted report released by PwC after the breach. The report is what is interesting. You can download the pdf here.
There is a detailed timelines of the progress of the attack vector. Also, there is section on learnings. As usual, it starts with asking boards to understand technology dependency and risks. :)
Take Action:
Read the report. Understand the learnings. Go through the key recommendations.
Use it to build your ransomware resilience.
Enjoyed reading? Receive this in your email every week.