--- title: "Cybersecurity Updates For The Week 16 of 2021 | Phish Protection" description: "Cybersecurity Updates For The Week 16 of 2021: Phishing continues to be a significant security threat for individuals and enterprises alike . This week" image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-16-of-2021.png" canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-16-of-2021/" --- Quick Answer A Tor negotiation page containing the conversation between Revil and Asteelflash reveals that the adversaries had shared a \[sample file\](https://www.bleepingcomputer.com/news/security/asteelflash-electronics-maker-hit-by-revil-ransomware-attack/?&web\_view=true) containing the stolen Asteelflash records. The EMS Company has shared not much except the fact that their investigations are ongoing. Whether the attack was successful is still a mystery, but as long as Asteelflash adopts \[anti-phishing solutions\](/products/advanced-threat-defense/), there is some assurance of security. Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-16-of-2021%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2016%20of%202021&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-16-of-2021%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-16-of-2021%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-16-of-2021%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2016%20of%202021 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2016%20of%202021&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-16-of-2021%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2021/04/spear-phishing-prevention-8524.jpg) _Phishing continues to be a significant **security threat** for individuals and enterprises alike_. This week’s cyber news is no different, but one can ensure that the same mistakes aren’t repeated for their organization with the proper [phishing prevention](/) measures and keeping abreast of the latest modus operandi adopted by threat actors. Therefore, we bring you the most recent phishing news ### REvil Ransomware Hits Asteelflash _French electronics manufacturing services (EMS) company Asteelflash recently underwent a REvil ransomware attack._ The threat actors are now demanding a **$24 million ransom**. Their initial demand was $12 million, but _it was doubled because Asteelflash missed the ransom deadline_. A Tor negotiation page containing the conversation between Revil and Asteelflash reveals that the adversaries had shared a [sample file](https://www.bleepingcomputer.com/news/security/asteelflash-electronics-maker-hit-by-revil-ransomware-attack/?&web%5Fview=true) containing the stolen Asteelflash records. The EMS Company has shared not much except the fact that their investigations are ongoing. Whether the attack was successful is still a mystery, but as long as Asteelflash adopts [anti-phishing solutions](/products/advanced-threat-defense/), there is some assurance of security. ### Major Linkedin Leak Exposes 500 Million User Records _An adversary has recently posted a data archive containing profile details of around **500 million LinkedIn user**s on a popular hacker forum_. This data includes the full name, phone number, email address, occupation, designation, etc. _The post author has also provided a proof-of-concept sample containing 2 million records_. While the samples can be viewed with $2 worth of forum credits, the primary database won’t be given away for less than a 4-digit sum in bitcoin. ![Spear phishing prevention](https://media.mailhop.org/phishprotection/images/2021/04/spear-phishing-prevention-8524.jpg) Just days after this post, another malicious actor posted a LinkedIn profile database, this time containing an additional [327 million scraped profiles](https://cybernews.com/news/stolen-data-of-500-million-linkedin-users-being-sold-online-2-million-leaked-as-proof-2/?&web%5Fview=true). This takes the total count of scraped **profiles to 827 million**, which surprisingly exceeds LinkedIn’s actual user base of 740 million. However, the company has confirmed that its [phishing protection](/) measures are in place. They further informed that this data is perhaps an aggregation of data from other websites as their website or employee accounts haven’t been involved in any breaches. ### Ransomware Hits National College Of Ireland and TU Dublin _The Technological University of Dublin and the National College of Ireland (NCI) recently underwent **ransomware attacks**_. Consequently, their IT systems were disrupted. As the universities work on restoring their IT systems, students have been instructed to refrain from using campus IT systems until further notice. The NCI is taking **robust anti-phishing** measures and working in collaboration with the national police service of the Republic of Ireland and the Data Protection Commissioner to investigate the incident. The Library service, Model, and the current students’ MyDetails service are reportedly down since the attack. The campus building remains closed, and IT systems are suspended. _All classes and pending assignments have been rescheduled and postponed_. As for the Technological University Dublin (TU Dublin), its Tallaght campus was affected by the attack. While some ICT systems are affected, secure remote access to key services is mainly operational. _An email from the college ensures students that the attack doesn’t involve any process on the City and Blanchardstown campuses or the [ICT systems](https://www.bleepingcomputer.com/news/security/ransomware-hits-tu-dublin-and-national-college-of-ireland/?&web%5Fview=true)_. The ransomware actor responsible for the attacks remains unidentified. ### Data Breach at Carding Mafia _Carding Mafia is a credit card stealing and selling platform which recently underwent a cyberattack_. An estimated **300,000 of their 500,000 users** had their accounts compromised, but the forum is yet to notify them of the breach. The compromised Card Mafia account details include the usernames, email addresses, IP addresses, and hashed passwords. Another threat actor surfaced parallelly on another hacking forum with details of the illegal carding site. He was giving away the [database for free](https://www.cpomagazine.com/cyber-security/hackers-compromised-a-popular-carding-site-exposing-300000-user-account-details/?web%5Fview=true) on his private messaging inbox. Researchers suspect that this move is in pursuit of creating a reputation in the dark market. The breach probably began from a [zero-day vulnerability](/content/zero-day-attacks/) on Card Mafia’s software. If someone thinks that cyberattacks don’t threaten threat actors, this news is proof that [protection against phishing](/) is crucial for even illegal carding sites like this. ### New Revelations in the Belden Breach _Belden is a renowned specialty networking solutions provider that underwent a sophisticated data breach in November last year_. Information related to current and former employees and business partners was compromised in the attack. The PII of Beyden employees and partners was the only data that seemed to have been compromised in the incident. However, _the company has recently notified that the health-related information of users may have been exposed_. Their investigations into the breach continue, and the recent revelation suggests that PII of dependents, spouses, and relatives of employees along with their [Personal Health Information](https://www.securityweek.com/belden-says-health-related-information-exposed-data-breach?&web%5Fview=true) (PHI) was also exposed. _Belden is notifying all affected individuals and offering them free credit monitoring services_. Since the company is taking measures to [prevent phishing](/) attacks, affected users too should do their part and take necessary **phishing attack** prevention measures. ### Major Data Breach at Illegal Carding Store Swarmshop _In another cyberattack at a hacker forum, the carding store Swarmshop was a target_. The users of this illegal credit card and **banking data stealing** and [selling platform](https://gizmodo.com/70-000-ssns-600-000-credit-card-records-leaked-after-s-1846638234) had their data points exposed. Besides, the details of four site administrators, 12,250 buyers, and 90 sellers were compromised. The database also included the account balance, nicknames, hashed passwords, contact details, etc., of cybercriminals. While this attack may be befitting the cybercriminals, ordinary citizens are at an equal (if not greater) risk. _This is because these hackers have a rich data trove of information stolen from citizens_. Consequently, over 68,995 Social Security Numbers and 623,036 card details of US citizens are leaked. While this data has been compromised before, the recent leak implies that it’s more widely circulated now, and hence there’s increased cyberthreat for victims. All those who have been victims of security scams in the recent past must adopt the [phishing prevention best practices](/resources/phishing-prevention-best-practices/) for security. ### Data Breach Hits the CHPDC _The Community Health Plan District of Columbia (CHPDC) recently underwent a data breach_. Consequently, the sensitive data of many of its customers were compromised. The CHPDC is working [in collaboration](https://thehill.com/policy/cybersecurity/547250-major-dc-insurance-provider-hacked-by-foreign-cybercriminals?rl=1&web%5Fview=true) with the Attorney General’s Office for the District of Columbia, _the FBI, and the cybersecurity group CrowdStrike to get to the attack’s roots_. The CHPDC hints at some sophisticated, foreign cybercriminal enterprise to be behind this attack. The compromised customer information includes their names, DOBs, phone numbers, addresses, and Medicaid identification numbers. It has assured customers that their Social Security numbers were not involved in the breach. As part of its measures for [protection from phishing](/) attacks, the CHPDC extends free credit and identity theft monitoring services to all affected customers for two years. ### Data Breach Hits Michigan State University Bricker & Eckler LLP is the parent company of the MSU Title IX contractor INCompliance Consulting, which is in charge of handling discrimination, sexual misconduct, and relationship violence complaints on the campus of MSU. Bricker & Eckler LLP underwent a **ransomware attack** in January 2021 and took necessary anti-phishing measures. But a recent [revelation suggests](https://www.infosecurity-magazine.com/news/consulting-firm-data-breach/?&web%5Fview=true) that _data belonging to some 350 people at the Michigan State University (MSU) may have been compromised in this incident_. ![Prevent spear phishing](https://media.mailhop.org/phishprotection/images/2021/04/prevent-spear-phishing-3425.jpg) The exposed details include the names, driver’s license numbers, social security numbers, addresses, medical or education records. The records further included the scheduling emails, investigation reports, and final determinations of registered complaints. The MSU has informed the students, staff, and faculty of the latest update regarding this breach stemming from INCompliance Consulting. While MSU uses [anti-phishing services](/) for security, _six people’s data associated with the MSU investigations have been exposed_, and there isn’t anything they can do about it now! ### Protect Your Organization - [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/) - [See how Phish Protection blocks threats in real time](/anti-phishing-tools/) ## Topics [ Announcements ](/tags/announcements/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Intermediate 5m Cybersecurity Updates For The Week 33 of 2022 Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[ Intermediate 6m Cybersecurity Updates For The Week 41 of 2022 Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[ Intermediate 5m Cybersecurity Updates For The Week 1 of 2021 Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[ Intermediate 6m Cybersecurity Updates For The Week 1 of 2022 Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 16 of 2021","description":"Cybersecurity Updates For The Week 16 of 2021: Phishing continues to be a significant security threat for individuals and enterprises alike . This week's.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-16-of-2021/","datePublished":"2021-04-12T10:47:19.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2021-04-12T10:47:19.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-16-of-2021/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1272,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2021/04/spear-phishing-prevention-8524.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 16 of 2021","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-16-of-2021/"}]} ```