--- title: "Cybersecurity Updates For The Week 1 of 2021 | Phish Protection" description: "Cybersecurity Updates For The Week 1 of 2021: The holiday season has begun, and most organizations are operating with less than half their employees. The." image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-1-of-2021.png" canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-1-of-2021/" --- Quick Answer The holiday season has begun, and most organizations are operating with less than half their employees. \_The time is perfect for cyber adversaries to launch cyberattacks and target organizations or individuals through various phishing scams\_. Read on to learn about the latest security incidents and ponder about the efficacy of your \[phishing prevention\](/) measures Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-1-of-2021%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%201%20of%202021&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-1-of-2021%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-1-of-2021%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-1-of-2021%2F&title=Cybersecurity%20Updates%20For%20The%20Week%201%20of%202021 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%201%20of%202021&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-1-of-2021%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2021/01/how-to-prevent-phishing-7071.jpg) The holiday season has begun, and most organizations are operating with less than half their employees. _The time is perfect for cyber adversaries to launch cyberattacks and target organizations or individuals through various phishing scams_. Read on to learn about the latest security incidents and ponder about the efficacy of your [phishing prevention](/) measures ### \*\*\*\* Emotet Returns In Time For Christmas _The banking trojan Emotet is back in time for Christmas_. Although, this time around, the lures involve Christmas and COVID-19 vaccine-themed lures. The **phishing emails** started [surfacing in mid-December](https://cyware.com/news/emotet-shows-up-to-wish-merry-christmas-1001fac0), and over 100k messages in English, Italian, Spanish, German, and other languages have been traced so far. The threat actors use **thread hijacking** with PW-protected zips and malicious Word files and URLs to infect users’ devices. _The trojan tricks victims into disabling a Microsoft 365 feature that blocks malicious documents to launch the attacks_. Emotet is known for its ability to weave relevant matters into its malicious loop. As such, being extra cautious this festive season and taking [phishing attack prevention](/) measures is recommended. ### \*\*\*\* Jerusalem Municipality Website Hit By Data Breach A programmer named Hezkiyahu Raful was helping his uncle file an appeal for a parking ticket on the Jerusalem Municipality’s website when he discovered a significant **security flaw**. Merely changing the numbers in the numerical ID present towards the end of the website URL allowed him to [access other citizens’ parking ticket files](https://www.jpost.com/israel-news/data-breach-discovered-in-jerusalem-municipality-website-653085?&web%5Fview=true). Furthermore, by changing numbers from the middle of the URL, _Raful could access tickets, building files, tax files, and other documents published by the municipality_. _The breach virtually allowed anyone to access documents on the Jerusalem Municipality’s website since the links were public_. Raful is concerned about the implications of such breaches when people are motivated by the wrong reasons. He says that **sensitive information** belonging to thousands of people can be misused by ill-motivated internet users as effortlessly as playing with digits. He informed the National Cyber Directorate about the breach, and the NCD was quick to adopt necessary [anti-phishing solutions](/products/advanced-threat-defense/) to fix the flaw within an hour. ![How to prevent phishing](https://media.mailhop.org/phishprotection/images/2021/01/how-to-prevent-phishing-7071.jpg) ### \*\*\*\* Conti Ransomware Targets Freepbx Phone System Sangoma _The Conti ransomware, which first appeared in December 2019, is known for targeting corporate networks_. Its latest target is the open-source FreePBX PBX phone system Sangoma. The [ransomware gang](https://www.bleepingcomputer.com/news/security/freepbx-developer-sangoma-hit-with-conti-ransomware-attack/?&web%5Fview=true) _brought down the systems of Sangoma and published **26 GB of their data** on its ransomware data leak site_. The compromised details include Sangoma’s financials, accounting details, employee benefits and salary, acquisitions, and legal documents. Sangoma has acknowledged the breach in a recent post and is taking necessary **anti-phishing measures**. However, the company has assured customers that their details are safe and that the breach hasn’t infected Sangoma products with malware. _Customers are advised to change their Sangoma passwords as an additional measure to protect themselves from phishing_. ### \*\*\*\* Facebook Bug Exposing Instagram Users’ Details _Nepal-based IT security researcher Saugat Pokharel recently discovered a Facebook bug_. This [bug was exposing](https://www.hackread.com/facebook-bug-exposed-instagram-user-email-addresses/?web%5Fview=true) the email addresses and birthdays of the users of Facebook-owned Instagram. Pokharel was a participant in the Facebook bug bounty program when he discovered this bug, making it _easy for adversaries to get private information from Instagram users_. And this despite the app’s privacy that assures users of protecting their data. The bug also existed in Facebook’s Business Suite tool that offered users access to a new feature that would link a Facebook account to Instagram. _Facebook reported that the bug wasn’t active for very long_. All business account holders who took the October experiment test with Facebook are possible victims of the attack, which is likely to reveal the PII of the people they conversed with using the social media app. However, Facebook quickly took measures to [prevent phishing](/) attacks and rewarded Pokharel for reporting the bug. ### \*\*\*\* Medical Records Of 3300 Tenncare Members Compromised A joint statement was recently released by TennCare, Gainwell Technologies LLC, and Axis Direct, Inc., _notifying people of a security breach that has affected around 3,300 Medicaid members_. These Medicaid members from Tennessee have already been informed about the breach via personal emails. Investigations by Gainwell (which runs the Medicaid Management Information System) _revealed that **around 3300 emails** were sent to the wrong addresses between late 2019 and early 2020_. These [mailings were](https://www.wkrn.com/news/tenncare-announces-privacy-breach-impacting-3300-members/?&web%5Fview=true) sent by Axis Direct and contained the PHI of TennCare members. _TennCare is working in collaboration with Gainwell to identify the error and minimize the damage_. They have reassured that privacy is a significant concern to them, and they are taking necessary measures for [protection against phishing](/). _The state is also offering free credit monitoring services to all 3,300 affected members_. ### \*\*\*\* Data Breach Hits NOW: Pensions UK based Workplace pension provider NOW: _Pensions recently notified its customers of a data breach that occurred when a service provider accidentally posted their data in a public software forum_. The compromised details include users’ names, DOBs, email addresses, and National Insurance numbers. _Only two percent of the total customer base was affected_, and NOW: Pensions is offering free credit and dark web monitoring services to the [victims for a year](https://www.theregister.com/2020/12/22/data%5Fbreach%5Fnow%5Fpensions/?&web%5Fview=true). Although the data was online for just three days, NOW: Pensions is taking necessary measures to ensure [anti-phishing protection](/products/advanced-threat-defense/). Furthermore, the company is [training its staff](/products/phishing-awareness-training/) to handle such cyberattacks. NOW: Pensions has sought the guidance of the Information Commissioner’s Office (ICO) and The Pensions Regulator and reported that no customer data had been misused so far. ![What is a zero day attack](https://media.mailhop.org/phishprotection/images/2021/01/what-is-a-zero-day-attack-7071.jpg) ### \*\*\*\* Ransomware Attack Hits Roanoke College Located in Salem, Virginia, Roanoke College was supposed to begin its spring semester on 19th January 2021, but a _cyberattack on the college’s systems on 12th December 2020 delayed the process_. The college will now re-open on 8th February 2021, giving them more time to restore systems and investigate the breach. The [College website](https://www.bleepingcomputer.com/news/security/roanoke-college-delays-spring-semester-after-cyberattack/?&web%5Fview=true) remains operational, although some functions are malfunctioning. As a [phishing protection](/) measure, the college has asked students and the staff not to access email accounts, Office 365 applications, or use computers on the campus network. Although the college hasn’t revealed much, it is believed to be a **ransomware attack**. It is a long time before authorities can say for sure when the services will be fully restored. ### \*\*\*\* Ransomware Hits Jefferson County’s PVA Office _A ransomware attack recently hit the Jefferson County Property Valuation Administrator’s (PVA) office_. Now the company’s **data is encrypted** until they pay the demanded ransom. Colleen Younger, the Property Valuation Administrator, said in an interview that the attack brought down their systems, but they are working towards restoring the encrypted data. She made it quite clear that they don’t plan to [pay any ransom](https://www.wdrb.com/news/business/jefferson-county-pva-office-hit-by-ransomware-attack/article%5Ffdeb5286-43d0-11eb-81f1-770245866a54.html?&web%5Fview=true) to the adversaries as they believe that this isn’t a **security breach**. The PVA has hired a cybersecurity agency and also informed the FBI. With the right **anti-phishing tools** and strategies, the PVA’s systems are likely to be restored by the end of the week. ### Protect Your Organization - [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/) - [See how Phish Protection blocks threats in real time](/anti-phishing-tools/) ## Topics [ Announcements ](/tags/announcements/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Intermediate 5m Cybersecurity Updates For The Week 33 of 2022 Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[ Intermediate 6m Cybersecurity Updates For The Week 41 of 2022 Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[ Intermediate 6m Cybersecurity Updates For The Week 1 of 2022 Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)[ Intermediate 5m Cybersecurity Updates For The Week 10 of 2020 Mar 7, 2020 ](/blog/cybersecurity-updates-for-the-week-10-of-2020/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 1 of 2021","description":"Cybersecurity Updates For The Week 1 of 2021: The holiday season has begun, and most organizations are operating with less than half their employees. The.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-1-of-2021/","datePublished":"2021-01-01T12:33:02.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2021-01-01T12:33:02.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-1-of-2021/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1168,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2021/01/how-to-prevent-phishing-7071.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 1 of 2021","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-1-of-2021/"}]} ```