---
title: "Cybersecurity Updates For The Week 26 of 2021 | Phish Protection"
description: "Phishing is one of the most effective entry points for threats to inject malware into users"
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-26-of-2021.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-26-of-2021/"
---

Quick Answer

The Stillwater Medical Center in Oklahoma serves several Oklahoma hospitals, clinics, care sites, and specialist offices. \_In an unfortunate \*\*ransomware attack\*\* targeting Stillwater on 13th June, all of its operations were brought down\_. However, as the medical center undergoes an electronic health record downtime, its IT team has proactively accessed the \[affected systems\](https://www.scmagazine.com/home/health-care/health-care-ransomware-attacks-oklahoma-health-system-driven-to-ehr-downtime/) and informed law enforcement.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-26-of-2021%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2026%20of%202021&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-26-of-2021%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-26-of-2021%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-26-of-2021%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2026%20of%202021 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2026%20of%202021&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-26-of-2021%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2021/06/office-365-email-protection-6329.jpg) 

_Phishing is one of the most effective entry points for threats to inject malware into users’ systems_. This week’s headlines are all about them. Read on to know why it is essential to pay heed to [phishing prevention tips](/content/phishing-prevention/).

### Ransomware Hits Stillwater Medical Center

The Stillwater Medical Center in Oklahoma serves several Oklahoma hospitals, clinics, care sites, and specialist offices. _In an unfortunate **ransomware attack** targeting Stillwater on 13th June, all of its operations were brought down_. However, as the medical center undergoes an electronic health record downtime, its IT team has proactively accessed the [affected systems](https://www.scmagazine.com/home/health-care/health-care-ransomware-attacks-oklahoma-health-system-driven-to-ehr-downtime/) and informed law enforcement.

To ensure [protection against phishing](/), Stillwater has also hired a computer forensic firm to **help restore** its systems. Disruptions were observed in Stillwater’s application, phone system, online patient portal, and email system. In case of emergency, patients were asked to dial 911\. However, patient care was provided just the same, with only a few appointment cancellations.

### Gateley Reports Cyber Attack

_UK-based Legal and professional services group Gateley underwent a cybersecurity breach recently_. While the attack affected a small portion of Gateley’s data, its operations were brought down to contain the attack.

The [company traced](https://www.usnews.com/news/technology/articles/2021-06-16/uks-gateley-says-cyberattack-affects-small-portion-of-its-data) where the **impacted data (0.2%)** was downloaded and saved and deleted that altogether to ensure [protection from phishing](/) attacks. Nothing is suggesting further dissemination of the data. Therefore, the breach doesn’t affect Gateley’s daily operations and financial performance. Gateley will inform all affected clients about the breach and has already notified the relevant regulators as part of its [anti-phishing protection](/) measures.

![Office 365 email protection](https://media.mailhop.org/phishprotection/images/2021/06/office-365-email-protection-6329.jpg) 

### Third-Party Vendor Exposes 1 Billion CVS Health Records

_CVS Health recently confirmed a data breach caused by a misconfigured cloud database left unprotected online by one of its third-party vendors_. Consequently, the **204 GB database exposed** over a billion records of CVS Health. These included the visitor ID production records, device access information, session IDs, medication queries, details of COVID-19 vaccines and other CVS products, and a blueprint of the backend operations of the logging system.

When [security researchers](https://www.zdnet.com/article/billions-of-records-belonging-to-cvs-health-exposed-online/#ftag=RSSbaffb68) informed that one of its private databases was accessible to the public, CVS Health conducted an internal inquiry. As a result, it was quick to adopt [phishing attack prevention](/) measures and secured the database immediately. However, if any malicious actor could access the database in the interim, we can expect some targeted **phishing attacks** soon.

### Cyberattack Hits South Korean Ocean Carrier HMM

_South Korean ocean carrier HMM underwent a cyberattack on 12th June, which paralyzed its email system_. HMM has restored most of the affected systems in Europe and America and claims that **no data was compromised**. But _its email servers remain unoperational everywhere else_.

\_All shippers outside America and Europe were advised to connect with the local HMM agency offices only \_[_via telephone_](https://theloadstar.com/hmm-suffers-security-breach-and-cyber-attack-on-its-email-systems/) and refrain from using the email system. All other HMM functions remain fully operational, it clarified. As its IT team investigates the breach, HMM’s email systems are gradually being restored.

### 123 AmeriGas employees affected by an attack on third-party vendor

_AmeriGas, the largest propane provider in America, underwent a data breach_, although not directly. Its third-party service provider JJ Keller experienced a cyberattack recently, _which lasted for only eight seconds_.

The adversaries had lured a JJ Keller employee with a **phishing email** and compromised this account. In the process, a database containing the personal information of 123 AmeriGas employees and one of its New Hampshire-based customers was leaked. The information exposed via this database includes the social security numbers, Lab IDs, dates of birth, and employees’ license numbers. However, there is no sign of the data being misused or copied yet.

JJ Keller quickly executed its **anti-phishing measures** and _prevented the attackers from infiltrating further into the breached employee account_. However, in the brief period of eight seconds that the attackers could access the employee account, they got access to the AmeriGas database. As per reports, that is all there is to this attack. AmeriGas has provided free [credit monitoring](https://www.bleepingcomputer.com/news/security/largest-us-propane-distributor-discloses-8-second-data-breach/) to that one affected customer and done the needful to secure its systems.

### Cognyte Leaves Databases Unprotected Online

_The cybersecurity analytics firm Cognyte maintains a list of customers affected by third-party data exposures and alerts them of the same, leaving one of its databases unsecured online_. Thus, Cognyte became the **source of data leak** for all records already leaked from other sources. Cybersecurity researcher Bob Diachenko first discovered this unsecured Cognyte database.

The database [exposed over 5 billion records](https://cisomag.eccouncil.org/another-case-of-unprotected-database-5-bn-records-from-previous-data-breaches-leaked/) obtained from various data breaches over time. The data exposed through this database includes the names, email addresses, passwords, and primary source of the data leak. However, Cognyte was quick to adopt **anti-phishing measures**, and _the database was secured within three days of notifying them_!

### Attackers Compromise SEIU 775 Benefits Group Systems And Delete Data

Service Employees International Union (SEIU) 775 Benefits Group is a Seattle-based benefits administrator. _The SEIU 775 Benefits Group recently notified that it underwent a cyberattack_ which was first discovered on 4th April 2021.

The Group consulted third-party forensics experts who found that the adversaries gained unauthorized access to some of its systems and deleted the personally identifiable and personal health information (PII & PHI) of **around 140,000 individuals**. The [compromised data](https://www.govinfosecurity.com/union-benefits-administrator-says-data-deleted-in-hack-a-16872) includes individuals’ names, health plans and addresses, enrollment information, and Social Security numbers.

Once the anomaly was detected, the SEIU 775 Benefits Group proactively executed its [phishing prevention](/) measures and secured the affected systems. It also informed the relevant regulators and federal law enforcement authorities. In addition, _the organization also provided free credit and identity monitoring to all 140,000 affected individuals_.

![Office 365 email protection](https://media.mailhop.org/phishprotection/images/2021/06/office-365-email-protection-6330.jpg) 

### Carter’s Undergoes Data Breach: 410,000 Records Compromised

_Renowned baby clothes retailer Carter’s underwent a massive cyber attack earlier this year._ The company’s third-party vendor Linc (which automates online purchases) was in charge of providing customers with shipping details for their purchases at Carter’s via shortened URLs. However, _Linc wasn’t cautious enough in implementing cybersecurity measures_, and consequently, the personal data of thousands of Carter’s customers was compromised.

The full names, phone numbers, addresses, purchase details, and tracking IDs for hundreds of thousands of Carter’s customers were leaked in this incident. **Over 410,000 records** dating back to 2015 were affected in this breach. While Carter’s didn’t respond very well when asked for comments, it removed all shortened URLs immediately after getting the update. Carter’s is probably doing its bit to [prevent phishing attacks](/), and customers [looking for clarification](https://threatpost.com/baby-clothes-carters-leaks-customer-records/166866/) must contact the retailer directly.

### 3.3 Million Volkswagen Customers’ Data Leaked

_A third-party vendor linked to Volkswagen America had kept one of its databases unprotected online between August 2019 and May 2021_. Consequently, the personal details of **3.3 million Volkswagen customers** (particularly Audi car owners) were compromised. Furthermore, while Volkswagen was notified of the public database, _it was only after two months that the vendor secured its server_.

The attack affected customers in different proportions, while for some, only their vehicle information and contact numbers were exposed, for others, more sensitive information was affected. [Investigations revealed](https://therecord.media/volkswagen-discloses-data-breach-impacting-3-3-million-audi-drivers/) that details of US and Canadian customers from 2014 to 2019 were primarily affected. _Audi owners in these places must adopt measures to protect themselves from phishing_.

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 26 of 2021","description":"Phishing is one of the most effective entry points for threats to inject malware into users' systems. This week's headlines are all about them.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-26-of-2021/","datePublished":"2021-06-24T09:36:37.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2021-06-24T09:36:37.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-26-of-2021/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1207,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2021/06/office-365-email-protection-6329.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 26 of 2021","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-26-of-2021/"}]}
```