In the month of November, ransomware attacks were up 105% in the United States. With cybercrimes rising at an alarming rate, you might have missed a few stories, so we’ve gathered the top cybersecurity-related news that occurred in the month of November.
Mattel, the world’s leading toy manufacturer, revealed they fell victim to a ransomware attack that successfully encrypted data and temporarily crippled a number of business functions. Mattel was able to fully restore business operations with minimal impact on the company. It is unclear how the attack occurred.
An API bug on the mobile dating app, Bumble, exposed the personal information for the platform’s entire user base of nearly 100 million. The bug was found by Sanjana Sarda, a researcher for Independent Security Evaluators. By reverse-engineering Bumble’s API, she found several vulnerabilities with Bumble’s premium tier paid services and was able to access all of the app’s worldwide users.
Mashable is a technology and culture news site that recently had the personal data of users leaked online. Reader’s information from the platform’s social media sign-in feature had been found in a leaked online database. The leaked data included full names, locations, email addresses, genders, IP addresses, and links to social media profiles of users.
Atlanta-based, cold storage giant Americold was affected by a cybersecurity incident related to COVID-19. Americold was previously in talks to provide storage for the distribution of the coronavirus vaccine. While the company has not released the source or cause of the incident, many cybersecurity experts believe they were victims of a ransomware attack.
During November, the video-conferencing software company, Zoom, reached a settlement with the Federal Trade Commission over misleading security practices. The settlement requires Zoom to establish and implement a comprehensive security program and other detailed security protocols to better protect users.
Compal, the second largest-laptop manufacturer in the world was hit by a ransomware attack. It is believed that the ransomware gang, DoppelPayer, was responsible for the attack. The incident impacted around 30% of Compal’s computer fleet. We expect more information in the coming weeks.