--- title: "Cybersecurity Updates For The Week 21 of 2021 | Phish Protection" description: "Phishing attack prevention is a distant goal for enterprises and can never be fully attainable in the presence of malicious cyber attackers." image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-21-of-2021.png" canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-21-of-2021/" --- Quick Answer \*\*Phishing attack prevention\*\* is a distant goal for enterprises and can never be fully attainable in the presence of malicious cyber attackers. The bygone week \_in the cyber realm was full of data breaches and millions of dollars lost to cyberattackers\_. This serves as a lesson for enterprises to be more watchful of their \[anti-phishing solutions\](/). Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-21-of-2021%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2021%20of%202021&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-21-of-2021%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-21-of-2021%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-21-of-2021%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2021%20of%202021 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2021%20of%202021&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-21-of-2021%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2021/05/phishing-prevention-software-2525.jpg) **Phishing attack prevention** is a distant goal for enterprises and can never be fully attainable in the presence of malicious cyber attackers. The bygone week _in the cyber realm was full of data breaches and millions of dollars lost to cyberattackers_. This serves as a lesson for enterprises to be more watchful of their [anti-phishing solutions](/). ### Misconfigured Database Reveals Major Amazon Review Scam _Researchers at SafetyDetectives recently discovered an unencrypted Elasticsearch server online_, which revealed a major **fake review scam** ongoing among Amazon vendors. _The misconfigured database contained 7 GB (13 million records) of data belonging to counterfeit reviewers_. These details included their email addresses, surnames, PayPal details, linked [Amazon review profile details](https://www.infosecurity-magazine.com/news/database-exposes-200k-fake-amazon/?&web%5Fview=true), and the Whatsapp and Telegram numbers of the concerned vendor. These scams begin with the vendor sending their product list to the fake reviewers. Once the reviewers leave a five-star review, they send a link (proof) to the vendor to receive the payment in their PayPal accounts. Often, they can keep the product itself as payment for their review. _Over **200,000 fake reviewers** had their data compromised because of the misconfigured database_. The database owner remains unknown, but the database itself has been secured. It is assumed that third parties are involved in this whole scheme of procuring reviewers for Amazon vendors. Those who remember being a part of any product reviewing group on Facebook or WeChat or perhaps engaging in any such fake reviewing scam must keep an eye on their online accounts and take necessary [anti-phishing protection](/) measures. ### Ransomware Hits City Of Tulsa _Ransomware hit the city of Tulsa in the United States last weekend, which brought down parts of the city’s network and official websites_. Tulsa, Oklahoma, the 47th largest city in the US and the nth in line for cyberattacks on city governments. It’s fortunate that the city’s network was attacked in the after-office hours on a weekend evening and not on a working day when the city computers were functioning. The city’s IT team took [proactive measures](https://therecord.media/city-of-tulsa-hit-by-ransomware-over-the-weekend/?web%5Fview=true) and recovered several affected systems using backups. The city website is already up and running, and the IT team hopes to recover the remaining systems by this week. Since attacks on city governments are increasing, adopting [phishing protection](/) measures and having updated backups (like the city of Tulsa) ensure minimal damage. ![Phishing prevention software](https://media.mailhop.org/phishprotection/images/2021/05/phishing-prevention-software-2525.jpg) ### City Of Chicago Undergoes Data Breach _The US law firm Jones Day underwent a Clop ransomware attack in February 2021_. Recently, the adversaries leaked a portion of the documents stolen from Jones. Consequently, some of the employee email accounts of the city of Chicago were exposed. The city had shared some emails with Jones for an independent inquiry. Accellion’s FTA file sharing service, which reached end-of-life on 30th April 2021, was involved in the incident. Around 50 customers continued to use FTA when it [experienced a cyber attack](https://www.securityweek.com/city-chicago-hit-data-breach-law-firm-jones-day?&web%5Fview=true) in December last year. _Investigations revealed that only four former employees of the city who used FTA services to send emails were affected_. The city of Chicago has no evidence of any fraud so far, but it is taking **phishing attack prevention** measures. The FBI, the Chicago Department of Assets, Information, and Services, and the Illinois Attorney General’s office have already been informed about the security incident. Furthermore, _the city has tracked down the individuals who received emails from the breached accounts and notified them about the same_. ### Babuk Ransomware Hits Japanese Manufacturer Yamabiko The Babuk ransomware gang, _which announced its retirement after attacking Washington DC’s police department last month, is back with another attack_. Babuk recently targeted the Tokyo-based power tools and agricultural and industrial machinery manufacturer Yamabiko. Although Yamabiko hasn’t confirmed the episode yet, _Babuk has leaked some of its data on the dark web_. These include Yamabiko’s financial data, employees’ PII, product schematics, etc. The ransomware gang has also been involved in exploiting [VPN vulnerabilities](https://www.infosecurity-magazine.com/news/japanese-manufacturer-yamabiko/?&web%5Fview=true) in the past. Much like the retirement announcement, which went for a toss, its claim on open-sourcing its code for RaaS actors was taken down as well. _Babuk has reportedly **stolen 0.5 TB worth of data** from Yamabiko_. As we await a statement or notice from Yamabiko, we can only hope that it had robust [phishing prevention](/) systems in place. Yamabiko employees should look out for **phishing emails** and other unusual activities on their accounts. ### Ryuk Ransomware Hits Norwegian Firm Volue _The Norwegian green energy solutions provider Volue recently underwent a ransomware attack_. The Ryuk ransomware gang is suspected to be responsible for the attack. Volue was formed last year following a merger of Wattsight, Scanmatic, Powel, and Markedskract into an international group serving over 2.2k customers in 44 countries. The [attack on Volue](https://www.securityweek.com/green-energy-company-volue-hit-ransomware?&web%5Fview=true) took place on 5th May and brought down some of its applications. The company has been working on restoring its systems ever since, using **cloud backups** that were luckily not affected by the security incident. Volue recommends customers log out from its servers, change their passwords, and adopt the [phishing prevention best practices](/resources/phishing-prevention-best-practices/). The firm has assured that there is no evidence of any misuse of the affected customer data. ### Conti Ransomware Hits Ireland’s National Health Service _The Health Service Executive (HSE), Ireland’s national health service underwent a ransomware attack this week_. It is believed that the **Conti ransomware** gang is behind the attack. All of HSE’s IT systems were shut down temporarily to contain the attack. The health service describes the attack as a [high-end sophisticated one](https://therecord.media/irish-health-system-hit-by-ransomware-gang/?web%5Fview=true) that kept its staff off the online systems, unable to access patients’ electronic records, and made some of its databases and apps inaccessible. As HSE’s IT teams continue to investigate the incident, the COVID-19 vaccination program continues without interruptions. However, some routine checks and services are expected to be delayed. _HSE is yet to find the ransomware note among one of its encrypted files_. While the investigations continue and HSE executes its [phishing prevention](/) schemes, citizens need to keep calm and look for updates on their official websites and accounts. ![Phishing prevention software](https://media.mailhop.org/phishprotection/images/2021/05/phishing-prevention-software-2526.jpg) ### Flipkart Password Changed Advised For Bigbasket Users The recent attack on BigBasket continues to spread terror as cybersecurity researcher Rajashekhar Rajaharia warns users against potential Flipkart account compromises. _Rajaharia discovered a database online containing the details of BigBasket users, which are selling as details of Flipkart and Amazon users_. This is true for most records, as people often use the same email and login credentials across all online accounts. As a result, there might be [unauthorized](https://ciso.economictimes.indiatimes.com/news/cyber-expert-asks-flipkart-users-to-reset-passwords-to-avoid-fraud/82595432) transactions from victims’ Flipkart accounts in the coming days, especially those who also use BigBasket. While Amazon has an added security layer that demands an OTP for every sign-in from a new browser, Flipkart comes without any such measure for [protection against phishing](/). _Rajaharia appealed to Flipkart to strengthen its security and data protection measures_, but the company spokesperson merely emphasized the efforts Flipkart already takes to protect its customers’ privacy. _There is a dire need to enable MFA for Flipkart accounts_. ### Protect Your Organization - [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/) - [See how Phish Protection blocks threats in real time](/anti-phishing-tools/) ## Topics [ Announcements ](/tags/announcements/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Intermediate 5m Cybersecurity Updates For The Week 33 of 2022 Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[ Intermediate 6m Cybersecurity Updates For The Week 41 of 2022 Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[ Intermediate 5m Cybersecurity Updates For The Week 1 of 2021 Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[ Intermediate 6m Cybersecurity Updates For The Week 1 of 2022 Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 21 of 2021","description":"Phishing attack prevention is a distant goal for enterprises and can never be fully attainable in the presence of malicious cyber attackers.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-21-of-2021/","datePublished":"2021-05-21T09:05:10.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2021-05-21T09:05:10.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-21-of-2021/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1171,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2021/05/phishing-prevention-software-2525.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 21 of 2021","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-21-of-2021/"}]} ```