"Your Information Technology Leader"

Client Portal Payment Portal


InTegriLogic Blog

InTegriLogic has been serving the Tucson area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

The Week in Breach News: 05/01/24 – 05/07/24


This week: Dive into big breaches at Kaiser Permanente and JP Morgan, and see two hacktivist attacks in Belarus.


Kaiser Permanente


Exploit: Misconfiguration

Kaiser Permanente: Health System

cybersecurity news gauge indicating extreme risk


Risk to Business: 1.741 = Extreme

Kaiser Foundation Health Plan, which operates as Kaiser Permanente, is informing 13.4 million members that their personal data may have been exposed. The healthcare provider said that the incident took place in mid-April. In a statement, Kaiser Permanente said that it determined that online technologies previously installed on its website and mobile applications may have transmitted patients’ personal information to third-party vendors Google, Microsoft Bing and X (Twitter) when members and patients accessed its websites or mobile applications. The company said that patients’ usernames, passwords, Social Security numbers and payment information were not impacted. The incident has been noted on the Department of Health and Human Services’ breach notification portal.

How It Could Affect Your Business: Unexpected privacy issues can crop up when technologies evolve, and businesses need to keep an eye on that potential problem.


The City of Wichita (KS)


Exploit: Ransomware

The City of Wichita (KS): Municipal Government

cybersecurity news gauge indicating extreme risk


Risk to Business: 1.356 = Extreme

City officials in Wichita, Kansas admitted that the city fell victim to a ransomware attack over the weekend that led to the shutdown of some of the city’s technology systems. Attackers hit the city government last Sunday, resulting in data encryption. To limit the spread of the attack, city workers shut down some systems including the water bill payment website and other online city services. The city said that systems will be restored gradually but did not offer a timeline for recovery.

How It Could Affect Your Business: Governments and government agencies of all sizes are prime targets for cyber trouble and must plan accordingly.


JP Morgan


Exploit: Misconfiguration

JP Morgan: Financial Services Company

cybersecurity news gauge indicating extreme risk


Risk to Business: 1.221 = Extreme

JP Morgan is informing 451,000 retirement plan participants that their personal data has been exposed. The exposed information includes names, addresses, Social Security numbers, and details regarding payment and deductions. Some clients had their bank routing and account numbers compromised. The breach was discovered on Feb. 26, 2024. JP Morgan said that the data was exposed due to a flaw in software provided by an unnamed vendor. The financial services giant said that three unauthorized system users linked to J.P. Morgan customers or their agents had gained access to plan participant data ranging from August 26, 2021, and February 23, 2024. The flaw has since been corrected.

How It Could Affect Your Business: Third-party data security issues can be just as problematic and expensive for a company to clean up as an internal data security issue.




Exploit: Hacking

Dropbox: Technology Company

cybersecurity news represented by agauge showing severe risk


Risk to Business: 1.803 = Severe

Dropbox has admitted that hackers gained access to its company systems on April 24, 2024. The company said it discovered that hackers initially gained access to the production environment of Dropbox Sign. The bad actors were able to access information related to users of Dropbox Sign, including account settings, names and emails. For some users, phone numbers, hashed passwords and authentication information like API keys, OAuth tokens and multi-factor authentication methods were also exposed. Dropbox said that there is no evidence that the threat actor accessed the contents of users’ accounts, such as their agreements or templates, or their payment information. Dropbox was quick to reassure users that this incident was limited to Dropbox Sign users.

How It Could Affect Your Business: Bad actors will seek out any opening to exploit, making penetration testing a must-have to close gaps.


Belarus – The State Security Committee of the Republic of Belarus


Exploit: Hacking (Hacktivism)

The State Security Committee of the Republic of Belarus: Government Agency

cybersecurity news represented by agauge showing severe risk


Risk to Business: 1.712 = Severe

The website for The State Security Committee of the Republic of Belarus, sometimes called Belarus’ KGB, has been knocked out. The hacktivist group the Belarusian Cyber-Partisans has claimed responsibility for the attack. The agency has not confirmed or denied the attack, instead claiming that the website outage is due to “the process of development”. The Cyber-Partisans group is a hacktivist collective that is part of the broader opposition movement in Belarus working to topple the regime of President Aleksandr Lukashenko, who has held that office since 1994.

How it Could Affect Your Business: Hacktivists are a dangerous foe whose capabilities should never be underestimated.


Belarus – Grodno Azot


Exploit: Hacking (Hacktivism)

Grodno Azot: Fertilizer Manufacturer

cybersecurity news represented by agauge showing severe risk


Risk to Business: 2.376 = Severe

The Belarusian Cyber-Partisans hacktivist collective has claimed responsibility for a cyberattack on fertilizer maker Grodno Azot. The group says that they successfully hacked into the company and gained access to myriad systems. They say they gained control over security systems and surveillance cameras at a manufacturing plant, encrypted hundreds of computers and internal emails and wiped out the company’s backups of databases and servers. The hackers are demanding that the government release political prisoners in exchange for the return of the data.  

How it Could Affect Your Business: Nation-state threat actors and hacktivists often concentrate on key points in a country’s infrastructure or supply chain.


Australia – Monash Health 


Exploit: Supply Chain Cyberattack

Monash Health: Health System

cybersecurity news represented by agauge showing severe risk


Risk to Business: 1.866 = Severe

Monash Health has disclosed that it has experienced a data breach following a data security incident at secure document management firm ZircoDATA. That company fell victim to a ransomware attack by the Black BASTA ransomware group in February 2024. Monash Health said in a statement that its investigation had revealed that the information involved relates to a selection of archived data from the family violence and sexual assault support units at Monash Medical Centre, the Queen Victoria Hospital and Southern Health, limited to the period from 1970 to 1993. Monash Health was quick to reassure the public that its own systems are secure.

How it Could Affect Your Business: Healthcare providers often hold very sensitive data that can be used for nefarious purposes like blackmail if it falls into the wrong hands.


Australia – Firstmac


Exploit: Ransomware

Firstmac: Mortgage Lender

cybersecurity news represented by agauge showing severe risk


Risk to Business: 1.602 = Severe

Lender Firstmac has confirmed that it has fallen victim to a ransomware attack. The fledgling EMBARGO cybercrime group has claimed responsibility. The hackers claim to have snatched more than 500 gigabytes of data, including databases, source code and sensitive customer data. Customers were informed that they may have had data exposed including name, tax file number, date of birth and contact information.

How it Could Affect Your Business: Mitigating email-based cyber risk starts with powerful email security and regular phishing awareness training.


Professional Services IT Has Come a Long Way
Opportunity Cost, Return on Investment, and Saving...

Customer Login

News & Updates

InTegriLogic is proud to announce the launch of our new website at www.integrilogic.com. The goal of the new website is to make it easier for our existing clients to submit and manage support requests, and provide more information about our services for ...

Contact us

Learn more about what InTegriLogic can do for your business.

1931 W Grant Road suite 310
Tucson, Arizona 85745

Copyright InTegriLogic. All Rights Reserved.