---
title: "Cybersecurity Updates For The Week 24 of 2021 | Phish Protection"
description: "Cybersecurity Updates For The Week 24 of 2021: Cyber adversaries who launch phishing attacks leverage the mindset of the unaware users; for instance, they."
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-24-of-2021.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-24-of-2021/"
---

Quick Answer

Cyber adversaries who launch \*\*phishing attacks\*\* leverage the mindset of the unaware users; for instance, they assume the phishing email to be coming from a legitimate source and end up disclosing their critical information to the threat actor. The bad news is that there is no one-hundred-percent full-proof \[phishing prevention\](/) strategy, but the good news is that \_the majority of phishing scams can be avoided if users keep themselves abreast of the latest techniques and modus operandi of threat actors\_,

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-24-of-2021%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2024%20of%202021&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-24-of-2021%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-24-of-2021%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-24-of-2021%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2024%20of%202021 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2024%20of%202021&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-24-of-2021%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2021/06/how-to-prevent-phishing-7975.jpg) 

Cyber adversaries who launch **phishing attacks** leverage the mindset of the unaware users; for instance, they assume the phishing email to be coming from a legitimate source and end up disclosing their critical information to the threat actor. The bad news is that there is no one-hundred-percent full-proof [phishing prevention](/) strategy, but the good news is that _the majority of phishing scams can be avoided if users keep themselves abreast of the latest techniques and modus operandi of threat actors_, which is why we bring you the top phishing headlines this week

### Nobelium Attacks Constant Contact

_The hacker group Nobelium is using the cloud email marketing service Constant Contact to launch a phishing campaign_. This same group was responsible for the SolarWinds attack, and now it has reached around 3000 email addresses across 150 organizations. The entry point is believed to be the Constant Contact account of the United States Agency for International Development (USAID).

Constant Contact is a mass mailing service that essentially means an enormous infected population when a cyberattack strikes. Fortunately, _most of the emails were blocked and marked as spam by the automated systems_. It was a high-volume campaign leading to the auto-rejection of most of the infected emails. Still, there are high chances of the automated systems delivering at least some emails to targeted recipients. The [Nobelium phishing](https://www.crn.com/news/security/solarwinds-hackers-used-constant-contact-email-service-in-phishing-attack?&web%5Fview=true&itc=refresh) emails contained a link which when clicked, installed a **malicious backdoor** on user devices. This backdoor can then steal user data and also infect other computers on a network. Constant Contact has taken [phishing attack prevention](/) measures and disabled the affected accounts. It has informed law enforcement and is notifying all impacted customers about the breach.

![How to prevent phishing](https://media.mailhop.org/phishprotection/images/2021/06/how-to-prevent-phishing-7975.jpg) 

### Ransomware Hits Fujifilm

Fujifilm is a renowned name in the world of optical films and cameras. Headquartered in Tokyo, Japan, _Fujifilm or Fuji recently underwent a **ransomware attack** that partially shut down its network_. As Fuji investigates the breach, it has kept external correspondence at a halt and suspended all affected systems.

The attack was first discovered on 1st June 2021\. Fujifilm USA [posted a notice](https://news.softpedia.com/news/fujifilm-shuts-down-network-after-suspected-ransomware-attack-533110.shtml?&web%5Fview=true) about the same on its website, stating that its phone and email system might be unoperational owing to the cyber incident. As Fujifilm adopts **anti-phishing measures** and reinstates its systems, it apologizes to business partners and customers for the inconvenience caused.

### Altdos Attacks Audio House

_The electronics retailer Audio House was recently attacked by the hacking group Altdos_, which may have led to the compromise of the personal data of **about 180,000 customers**. Audio House uses a third-party payment gateway to handle its transaction, which ensures that no credit card information was affected in the breach. However, users’ details, such as their names, home delivery addresses, email addresses, contact numbers, past sales transaction records, etc., were exposed.

Altdos claims to have access to the membership database of Audio House and is blackmailing the retailer based on that. _Audio House has emailed all customers and reported the police about the breach_. As part of its [phishing protection](/) measures, the retailer has hired a team of [experts to investigate](https://www.straitstimes.com/tech/tech-news/audio-house-customer-data-possibly-stolen-by-hackers?&web%5Fview=true) the breach. Its website shall be temporarily down as Audio House strengthens its firewall and incorporates necessary **security patches**.

### Confidential British Army Database Circulating Freely On Whatsapp

The British Ministry of Defence maintains complete anonymity about the personal details of its Special Forces soldiers. This is because, if exposed, their identities might be used by adversaries to target them or their families. However, _in a recent breach, an excel sheet containing the personal data of these British Army soldiers was found circulating on WhatsApp without any protection or encryption key_. The database leaked from the British MoD contained **details of 1182 soldiers** who were recently promoted to Sergeant from Corporal. The soldiers belonged to the Special Reconnaissance Regiment, Special Boat Service, and the Special Air Service.

While commenting on this [security blunder](https://www.theregister.com/2021/06/02/uk%5Fspecial%5Fforces%5Fdata%5Fbreach%5Fwhatsapp/?&web%5Fview=true), a former army source said that sharing personal details within the Army was usual, but this data isn’t meant to be open to the public. He added that the MoD was taking measures to [prevent phishing attacks](/), but nothing more could be revealed until investigations were over.

### Biggest Health Data Breach Reported This Year, 3.3 Million Individuals Affected

_The largest health data breach reported to regulators this year was by the 20/20 Hearing Care Network, Florida_. The personal and health information of **over 3.3 million individuals** was stored on a company database on Amazon Web Services cloud storage bucket. The adversaries gained access to this bucket, downloaded the data, and deleted it altogether. While 20/20 Hearing Care Network came to know about the breach on 11th January, it was reported to the Maine attorney general’s office only on 28th May. The incident was also reported to the US Department of Health and Human Services and the FBI.

In its report to Maine’s attorney general, the company notes that [221 state residents](https://www.inforisktoday.com/health-data-for-millions-deleted-from-cloud-bucket-a-16787?&web%5Fview=true) were affected in this breach believed to be caused by insider wrongdoing. However, this bit on insiders’ role wasn’t mentioned in the **breach notification** sent out to victims. The company has adopted measures for [protection against phishing](/) and extended a year of free identity restoration, credit monitoring, and fraud consultation services to victims of the attack.

### Ransomware Hits UF Health Central Florida

_The IT network of two hospitals under the UF Health Central Florida was shut down recently to contain a ransomware attack_. The University of Florida Health (UF Health) is a chain of hospitals catering to the healthcare needs across Florida. The **ransomware attack** on the hospital affected the UF Health Leesburg Hospital and The Villages Hospital.

The UF Health Central Florida detected the attack on 31st May, and portions of the UF Health Central network were shut down as an [anti-phishing protection](/products/advanced-threat-defense/) measure. IT experts from the Jacksonville and Gainesville UF Health campuses are investigating the breach. While no further information was disclosed about the attack, it was reported that the [hospital branches](https://www.bleepingcomputer.com/news/security/uf-health-florida-hospitals-back-to-pen-and-paper-after-cyberattack/?&web%5Fview=true) had to switch to pen and paper to continue providing healthcare services to patients.

![How to prevent phishing](https://media.mailhop.org/phishprotection/images/2021/06/how-to-prevent-phishing-7978.jpg) 

### Cyberattack Targets Furniture Village

Furniture Village is a household name in the UK, known for being the largest independent furniture retailer in business with 54 outlets. Unfortunately, _Furniture Village underwent a cyber attack sometime around 29th May_, and its internal systems are struggling to operate ever since. The company website is very much in operation, but the technical issues in its phone, delivery, and payment systems have caused much inconvenience to customers.

Furniture Village shut down the affected systems immediately after detecting the attack and has taken necessary measures for [protection from phishing](/) attacks. In addition, it has asked customers not to worry about any **data breach** because no personal data was affected in the incident. Security experts suspect the attack to be linked to some ransomware gang; however, there is [no evidence](https://www.theregister.com/2021/06/04/furniture%5Fvillage%5Fconfirms%5Fcyberattack/?&web%5Fview=true) at the moment. Furniture Village, too, has refused to comment further on the attack.

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 24 of 2021","description":"Cybersecurity Updates For The Week 24 of 2021: Cyber adversaries who launch phishing attacks leverage the mindset of the unaware users; for instance, they.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-24-of-2021/","datePublished":"2021-06-10T07:08:25.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2021-06-10T07:08:25.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-24-of-2021/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1170,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2021/06/how-to-prevent-phishing-7975.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 24 of 2021","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-24-of-2021/"}]}
```