---
title: "Cybersecurity Updates For The Week 32 of 2020 | Phish Protection"
description: "Cybersecurity Updates For The Week 32 of 2020: The world is facing an endless wave of cyberattacks, and nothing seems like a healthy security habit today ."
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-32-of-2020.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-32-of-2020/"
---

Quick Answer

The compromised details include the email addresses, date-of-birth, passwords, delivery address, phone numbers, I.P. addresses, and geolocation data of customers. Approximately \[2.5 million Drizly accounts\](https://techcrunch.com/2020/07/28/drizly-data-breach/?web\_view=true) are affected by the breach.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-32-of-2020%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2032%20of%202020&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-32-of-2020%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-32-of-2020%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-32-of-2020%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2032%20of%202020 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2032%20of%202020&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-32-of-2020%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/08/phishing-prevention-software-6557.jpg) 

_The world is facing an endless wave of cyberattacks, and nothing seems like a healthy security habit today_. However, a close examination of the recent cyber attacks enables an individual or organization to access the probable cyber threats and make their security investments and [phishing protection](/) plan accordingly. Here are last week’s cyber-attacks across the globe

### Data Breach Hits Drizly

_Leading online alcohol delivery startup Drizly of the U.S. and Canada disclosed to its customers that they had undergone a data breach_. Although they claim that no financial details have been affected by the breach, a database posted on the **dark web** by adversaries claims otherwise.

The compromised details include the email addresses, date-of-birth, passwords, delivery address, phone numbers, I.P. addresses, and geolocation data of customers. Approximately [2.5 million Drizly accounts](https://techcrunch.com/2020/07/28/drizly-data-breach/?web%5Fview=true) are affected by the breach.

To **protect yourself from phishing**, _Drizly customers must change their passwords and use strong and unique passwords for all their accounts_.

### Hackers Compromise 9.5K Ledger Account Details

_In two consecutive cyber attacks, adversaries compromised over a million email addresses_ and [9500 names](https://www.hackread.com/crypto-wallet-ledger-data-breach-hackers-steal-data/?web%5Fview=true), addresses, phone numbers, and order details from Ledger’s database. The first attack was identified on 14 July 2020, and though immediately patched, it was still exploited ten days later.

To ensure [protection against phishing](/), Ledger has informed the French Data Protection Authority (CNIL) and is working closely with Orange Cyberdefense. The attack on Ledger serves as a lesson for all users to **refrain from sharing payment** information and credentials with anybody who claims to be a cryptocurrency wallet developer.

![Phishing prevention software](https://media.mailhop.org/phishprotection/images/2020/08/phishing-prevention-software-6557.jpg) 

### Cyber Attack On Telecom Argentina

[Telecom Argentina](https://cyware.com/news/telecom-argentina-attacked-by-revil-actors-75-million-demanded-in-ransom-amount-84b7a479) underwent a massive **ransomware attack** recently where access to the company’s VPN and other databases was disrupted. _The attackers have demanded $7.5 million in privacy coin Monero (XMR) from the company_. They have **threatened to increase** the amount to $15 million (XMR 216,189) if they fail to make the ransom payment by 21 July.

Although the attack couldn’t cause any significant damage, it affected the internal systems of Telecom Argentina, such as corporate VPN, Citrix, Siebel, Genesys, the Customer, and Field Service virtual machines, etc. To ensure [protection from phishing](/), all companies should **encrypt their databases** and secure their network infrastructure. _They should also have regular backups of data to ensure that there are no business disruptions in the eventuality of such a cyber attack_.

### Blackbaud Attack Hits University Of South Wales

The second-largest university in Wales, _the University of South Wales recently underwent an attack by the U.S. based firm Blackbaud_. Blackbaud actors had already extracted an [unrevealed ransom](https://www.bbc.com/news/uk-wales-53560112?&web%5Fview=true) from the University in May.

South Wales University is now working on its **phishing attack** prevention measures. _They found that email addresses and names from their alumni database were compromised in the attack_. To ensure [anti-phishing protection](/products/advanced-threat-defense/) for all, they have notified the affected people to remain extra cautious. The university is taking measures to prevent such attacks in the future and has also reported the attack to the Information Commissioner’s Office.

### Avon Leave Database Online

_The renowned cosmetics brand Avon recently underwent a massive data breach because of a misconfigured cloud server_. Approximately [19 million user and employee records](https://www.infosecurity-magazine.com/news/cosmetics-giant-avon-leaks-19/?&web%5Fview=true) have been compromised because of an **unencrypted database** left online. The exposed details include the full names, phone numbers, dates of birth, email and home addresses, and GPS coordinates of users.

The **7 GB leaked database** also included over 40,000 security tokens, OAuth tokens, internal logs, account settings, and technical server information. _The attack has made all affected people vulnerable to a plethora of cyber attacks_. Avon’s stand in the market has also risked because any hacker with the server’s I.P. address can now establish full server control on the Avon brand.

However, _Avon is trying its best to contain the attack and hopes that credit card details were not compromised in this breach_.

### Netflix Phishing Scam

_A hacker has innovated and worked hard to make his Netflix phishing scam look credible_. The attacker aims to steal payment card details of [Netflix users](https://www.bleepingcomputer.com/news/security/netflix-credential-phishing-hides-behind-working-captcha/?&web%5Fview=true) via a “failed payment” error hiding behind a functional CAPTCHA page to bypass **email security** controls.

_The scheme employed using fake emails that were sent at the beginning of the month_. The emails impersonated the Netflix support service and used the address [netfiix@csupport.co](mailto:netfiix@csupport.co).

_The email contains a link that takes the user to a phishing page_. Although the URL has now been taken down, Netflix users who made recent payments must take measures to ensure [protection from phishing](/) because the fake website looked exactly like the genuine Netflix domain.

### Data Breach Hits National Cardiovascular Partners

_Hackers compromised the email account of a National Cardiovascular Partners (NCP) employee_ through which the details of [78,070 NCP patients](https://healthitsecurity.com/news/national-cardiovascular-partners-email-hack-impacts-78k-patients?&web%5Fview=true) were leaked. The compromised details included the names and other contact information of patients. NCP is adapting the [phishing prevention best practices](/resources/phishing-prevention-best-practices/) and has offered a free identity detection and **identity theft resolution** to all customers affected in this breach. NCP is also being extra cautious and rendering [security training](/products/phishing-awareness-training/) to its employees.

### 22 Million Promo.Com User Data Leaked

The Israeli-based marketing video creation site Promo.com has recently notified its users of a [massive data breach](https://www.bleepingcomputer.com/news/security/promocom-discloses-data-breach-after-22m-user-records-leaked-online/?&web%5Fview=true). _The breach has led to the leak of 22 million user records on the dark web for free_.

Initially, a renowned seller of data breaches posted the Promo.com database online, but it was soon taken down. However, _another data breach seller uploaded the database again on the same hacker forum_. The compromised details include email addresses, names, genders, geographic location, and hashed passwords for **2.6 million users**.

Although hashed or salted, the hackers with access to the database have already **leaked 1.4 million** cracked passwords from this database. _Users have an even higher risk of a cyberattack_, and hence they must immediately subscribe to some [anti-phishing services](/products/advanced-threat-defense/) to keep their online activities and identity secure.

![Phishing prevention software](https://media.mailhop.org/phishprotection/images/2020/08/phishing-prevention-software-6558.jpg) 

### Yet Another Security Concern At Oneplus

The Chinese smartphone company OnePlus has created quite a market for itself. However, _the brand has not been as proactive about its security online as it is about the launch of its advanced products_. [A recent breach](https://www.businessinsider.in/tech/mobile/news/oneplus-mishap-exposes-hundreds-of-customer-emails/articleshow/77163499.cms) at OnePlus revealed the email addresses of over a hundred users. The incident happened because OnePlus committed the mistake of putting the customer email I.D.s in the ‘TO’ field instead of the ‘BBC’ field while sending out a mass mailer for research purposes.

Resultantly, all recipients of the email could view the email addresses of at least a hundred other OnePlus users. Such instances expose users to **unprecedented cyber threats** and speak a lot about the company’s approach to customer privacy. _OnePlus users are advised to closely monitor the emails they receive and change their existing passwords to something more durable_.

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 32 of 2020","description":"Cybersecurity Updates For The Week 32 of 2020: The world is facing an endless wave of cyberattacks, and nothing seems like a healthy security habit today .","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-32-of-2020/","datePublished":"2020-08-07T15:46:00.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-08-07T15:46:00.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-32-of-2020/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1138,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/08/phishing-prevention-software-6557.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 32 of 2020","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-32-of-2020/"}]}
```