Public Cloud Security Breaches

The Australian government imposed sanctions on a Russian cybercriminal, Aleksandr Ermakov, for orchestrating a massive cyber attack on Medibank Private in 2022, compromising millions of sensitive records. The breach highlighted the critical need for robust cybersecurity measures and swift actions against cyber threats.

Otolaryngology Associates, LLC, located in Indiana, faced a cyber incident in February that resulted in the exposure of confidential data belonging to patients and employees. This security breach required informing more than 300,000 people, highlighting the essential requirement for strong cybersecurity protocols in healthcare settings.

Covenant Care, a healthcare provider operating in California and Nevada, experienced a data breach where patient and employee data were exposed by a ransomware group. The breach highlights the critical need for organizations to prioritize cybersecurity measures and incident response strategies to safeguard sensitive information.

LastPass experienced a series of breaches in 2022 where attackers gained access to non-production environments and eventually customer password vaults by exploiting security weaknesses, including poor endpoint protection and excess privileges. This highlighted the crucial importance of cloud security and endpoint protection.

Norfolk and Suffolk Police faced a data breach due to a technical issue in responding to FOI requests, leading to the exposure of personal data of over 1,200 individuals. The authorities are actively addressing the breach and providing support to those affected.