The City of Helsinki is investigating a data breach in its education division, which it discovered in late April 2024, impacting tens of thousands of students, guardians, and personnel.
Though information about the attack was circulated on May 2, 2024, the city's authorities shared more details in a press conference earlier today.
According to the details disclosed today, an unauthorized actor gained access to a network drive after exploiting a vulnerability in a remote access server.
While the officials did not state what remote access product was targeted, they shared that a security patch for the vulnerability was available at the time of the attack but had not been installed.
The accessed drive contained tens of millions of files, most devoid of personally identifiable information.
Still, some included usernames, email addresses, personal IDs, and physical addresses.
The exposed drive contained information about fees, childhood education and care, children's status, welfare requests, medical certificates, and other highly sensitive information.
Due to the large size of the exposed data, investigating what has been compromised is expected to take some time.
By the time of writing this, no ransomware groups have assumed responsibility for the attack, so the perpetrators remain unknown.
University System of Georgia: 800K exposed in 2023 MOVEit attack.
Collection agency FBCS warns data breach impacts 1.9 million people.
DPRK hacking groups breach South Korean defense contractors.
Frontier Communications shuts down systems after cyberattack.
Cisco Duo warns third-party data breach exposed SMS MFA logs.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Mon, 13 May 2024 15:20:06 +0000