--- title: "Cybersecurity Updates For The Week 13 of 2023 | Phish Protection" description: "Phishing attacks and data breaches continue to impact organizations and individuals alike. Here are this week’s most notable updates." image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-13-of-2023.png" canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-13-of-2023/" --- Quick Answer Phishing attacks and data breaches continue to impact organizations and individuals alike. Here are this week’s most notable updates. The renowned brands Samsung and McDonald's were recently fined by South Korea's Personal Information Protection Commission for privacy breaches. With phishing scams increasing world-over, organizations are expected to maintain cybersecurity standards. Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-13-of-2023%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2013%20of%202023&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-13-of-2023%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-13-of-2023%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-13-of-2023%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2013%20of%202023 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2013%20of%202023&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-13-of-2023%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2023/03/how-to-prevent-phishing-9245.jpg) [Phishing attacks](/resources/7-most-common-phishing-attacks-and-learning-to-protect-against-them) and data breaches continue to impact organizations and individuals alike. Here are this week’s most **notable updates**. --- ### McDonald’s, Samsung and BAT Fined For Privacy Breach The renowned brands Samsung and McDonald’s were recently fined by South Korea’s Personal Information Protection Commission for **privacy breaches**. With phishing scams increasing world-over, organizations are expected to maintain cybersecurity standards. However, McDonald’s was found **storing backup data** on a Server Message Block (SMB) with sharing enabled . This helped adversaries steal over 4 million[users’ information](https://www.theregister.com/2023/03/23/south%5Fkorea%5Fprivacy%5Ffines%5Fmcdonalds/?&web%5Fview=true). Further, the company was found storing over 766,846 customers’ data beyond the normed **retention period**, and this data, too, was compromised owing to the [security loophole](https://www.newswise.com/articles/researchers-discover-security-loophole-allowing-attackers-to-use-wifi-to-see-through-walls). Both these incidents cost McDonald’s a fine of about $530,000 and $7,700, respectively. On the other hand, Samsung was found exposing the data of 48,122 users for over a month owing to incompetent **web server security**. In another incident, the cigarette company British American Tobacco (BAT) was found exposing the personal details of over 1500 customers. ![How to prevent phishing](https://media.mailhop.org/phishprotection/images/2023/03/how-to-prevent-phishing-9245.jpg) The Personal Information Protection Commission of South Korea fined both these organizations ₩100 million and ₩40 million, respectively, for their lack of [phishing awareness](/content/phishing-awareness-training). In this much-needed security check, the commission also fined other organizations like JK Club, iMarket, and Kara for **exposing customer data**. ### SideCopy APT Allegedly Spying on Indian Defense Research Agency Cybersecurity experts at Cyble suspect that the Pakistani cyberespionage group SideCopy APT is trying to steal confidential intel from the Indian Defense Research and Development Organization (DRDO). SideCopy APT is allegedly employing malicious strategies to trick employees and steal sensitive **military secrets** belonging to DRDO. SideCopy APT is known for using [spear-phishing](/content/phishing-prevention/spear-phishing-examples) as an initial attack vector . In the recent incident, the[SideCopy APT](https://www.bankinfosecurity.com/sidecopy-apt-targets-indias-premier-defense-research-agency-a-21512?&web%5Fview=true)actors sent **emails** to DRDO employees with research material about military technologies added as attachments. This came in the form of a **malicious zip attachment** with a .lnk file called DRDO, K4 Missile Clean room.pptx.lnk. Interestingly, this PowerPoint file contained actual information about the K-4 missile (nuclear-capable submarine-launched ballistic missile). ### Data Breach at Kroger Postal Prescription Services Ohio-based grocery retailer Kroger Postal Prescription Services (Kroger PPS) recently reported a [data breach](/phishing/data-breaches-how-they-impact-small-businesses) with the US Department of Health and Human Services Office for Civil Rights (HHS-OCR). It claimed that **unauthorized third parties** accessed some of its confidential consumer information. Presumably, Kroger PPS consumers’ **protected health information** was compromised in the breach. As part of its [anti-phishing protection](/content/anti-phishing) measures, Kroger PPS is now sending out data breach notifications to all affected individuals. With over 2,700 stores in 36 US states, Kroger PPS is a renowned brand. If you are a frequent buyer at their stores, then your data, too, must be stored on their computer network. **Look out for suspicious emails** from the company or any other stranger.\_ Adopting adequate\_ \_[cybersecurity measures](https://www.jdsupra.com/legalnews/kroger-postal-prescription-services-4845634/?&web%5Fview=true)is the only wise thing to do for Kroger PPS customers right now. ### Ransomware Attack Hits the City of Oak Ridge A [ransomware attack](/resources/ransomware-attack-why-organizations-pay-ransom) recently hit the City of Oak Ridge, Tennessee. The attack caused **network issues in the city servers**, making it the eighteenth local government to undergo a ransomware attack this year. The Oak Ridge attack comes after a ransomware attack on Tennessee State University and several other schools, healthcare providers, manufacturing organizations, and small businesses. The City is making use of the best **anti-phishing tools** and working in collaboration with its Information Systems Department (IS) to analyze the breach. _It has also informed law enforcement and collaborated with third-party_\_[cybersecurity](https://www.scmagazine.com/brief/ransomware/ransomware-attack-disrupts-tennessee-city?&web%5Fview=true)specialists to restore systems and investigate the attack. ### Cyberattack Hits Wisconsin Court System’s Network A [cyberattack](https://www.calcalistech.com/ctechnews/article/hj000lsgm3) recently targeted the Wisconsin **court system’s** computer network. The court spokesman has refrained from sharing many details about the incident. However, he did mention that owing to the attack, users might experience slower or intermittent services on **their online network**. _Although the attack hasn’t led to the compromise of any data, such phishing attacks should not be ignored._ Fortunately, the court has begun adopting countermeasures to contain the attack’s spread, and court operations **remain uninterrupted**. All attorneys facing difficulty filling out the[digital documents](https://madison.com/news/state-and-regional/crime-and-courts/hackers-attack-wisconsin-court-system-computer-network/article%5Fd2d36eee-a0c6-588e-a0d6-f94ffa776b3d.html?&web%5Fview=true)have been advised to reach out to the court clerk of their counties for the same. ### DDoS Attack targets Skylink ![Phishing prevention](https://media.mailhop.org/phishprotection/images/2023/03/phishing-prevention-8563.jpg) The DTH and internet TV services provider for the Czech Republic- Skylink, recently underwent a **DDoS attack**. Skylink CZ notified the public of the incident via a Facebook post where it apologized for the **system outage** and assured people that it is adapting necessary [phishing protection](/) measures. Skylink reported that it underwent a[DDoS attack](https://www.broadbandtvnews.com/2023/03/22/skylink-hit-by-hacker-attack/?web%5Fview=true)from a Russian hacking group. Consequently, most of its satellites and internet television **web services** remained down for a brief period . ### Dole Food Company Acknowledges Ransomware Attack The **renowned** fresh produce giant Dole Food Company underwent a Ransomware attack in February. It has now confirmed the breach and reported that an undisclosed number of employees may have their [data exposed](https://www.infosecurity-magazine.com/news/uber-data-exposed-law-firm-breach/) because of the breach. The company has over 38,000 employees globally and caters to the fresh fruits and vegetables market in over 75 countries. The ransomware attack was highlighted in its annual report with the US Securities and Exchange Commission (SEC) where Dole said that it endured a **sophisticated** ransomware attack in February 2023\. [Anti-phishing solutions](/content/anti-phishing-service/anti-phishing-solutions) were immediately implemented and a team of third-party cybersecurity experts was hired to investigate the nature of the breach. Fortunately, the attack had a **limited impact** on the company. Dole had resisted publicly disclosing the attack until customers started reporting delayed services and product shortages in stores. Dole is in the process of implementing a crisis management protocol wherein it will briefly switch to the **manual mode of operation** to continue business operations, although at a much slower pace. The attack had a limited impact but Dole’s[production plants](https://www.bleepingcomputer.com/news/security/dole-discloses-employee-data-breach-after-ransomware-attack/?&web%5Fview=true)in North America were briefly disturbed. ### Protect Your Organization - [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/) - [See how Phish Protection blocks threats in real time](/anti-phishing-tools/) ## Topics [ Announcements ](/tags/announcements/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Intermediate 5m Cybersecurity Updates For The Week 33 of 2022 Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[ Intermediate 6m Cybersecurity Updates For The Week 41 of 2022 Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[ Intermediate 5m Cybersecurity Updates For The Week 1 of 2021 Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[ Intermediate 6m Cybersecurity Updates For The Week 1 of 2022 Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 13 of 2023","description":"Phishing attacks and data breaches continue to impact organizations and individuals alike. Here are this week’s most notable updates.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-13-of-2023/","datePublished":"2023-03-28T05:38:00.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2023-03-28T05:38:00.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-13-of-2023/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1001,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2023/03/how-to-prevent-phishing-9245.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 13 of 2023","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-13-of-2023/"}]} ```