---
title: "Cybersecurity Updates For The Week 35 of 2020 | Phish Protection"
description: "Cybersecurity Updates For The Week 35 of 2020: 2020 has witnessed the most significant number of cyber attacks in history, and this trend is not ending."
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-35-of-2020.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-35-of-2020/"
---

Quick Answer

Renowned American \[pharmaceutical chain Walgreens\](https://www.infosecurity-magazine.com/news/looting-causes-data-breach-at/?&web\_view=true) recently notified its customers of a \*\*data breach\*\* that exposed the personal health information (PHI) of \*\*over 72,000 people\*\*. \_The attack happened as looters broke into 180 Walgreens stores and stole prescriptions\_.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-35-of-2020%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2035%20of%202020&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-35-of-2020%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-35-of-2020%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-35-of-2020%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2035%20of%202020 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2035%20of%202020&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-35-of-2020%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/08/office-365-phishing-protection-41236.jpg) 

_2020 has witnessed the most significant number of cyber attacks in history,_ and this trend is not ending anytime soon. With more people losing their jobs and work-from-home turning into a normal phenomenon, the vulnerability to **online threats** has manifolded. Hence, it is recommended to stay abreast of recent hacks and take [phishing prevention](/) measures in advance. Following are some of the main headlines from the past week

### Data Breach At Walgreens

Renowned American [pharmaceutical chain Walgreens](https://www.infosecurity-magazine.com/news/looting-causes-data-breach-at/?&web%5Fview=true) recently notified its customers of a **data breach** that exposed the personal health information (PHI) of **over 72,000 people**. _The attack happened as looters broke into 180 Walgreens stores and stole prescriptions_. 

Although no financial information or Social Security Numbers were compromised in the breach, the attackers could access patient information at some of the Walgreens stores. The attack took place sometime between 26th May and 5th June 2020\. The exposed details include health-related information - such as filled prescriptions, full name, address, date of birth/age, phone number, email address, balance rewards numbers, and photo ID numbers.

Customers need not worry as Walgreens is taking required **phishing attack prevention** measures and coordinated with local law enforcement to probe into the matter. _They have also shut down and re-entered all tampered prescriptions into their system_.

To further support the aggrieved buyers, Walgreens has extended a year of free credit monitoring to all affected customers. _A total of 72,143 Walgreens customers are speculated to have been impacted by this breach_.

### Guest Loses Over £1,000 In Cunning Ritz Hotel Scam

Hackers have shifted from usual [vishing attacks to strategize](https://securityaffairs.co/wordpress/107217/cyber-crime/ritz-hotel-scam.html?web%5Fview=true) and launch **targeted attacks** where they approached clients having dinner at the Ritz hotel in London with their reservation details to extract their card details.

_They could successfully extract over £1,000 from a woman who had made an online booking for afternoon tea at the Ritz_. She received a call a day before to confirm her reservation by providing her payment card details.

_The scammers used caller ID spoofing to make their call seem credible_. The woman **fell for the trap** and gave her card details using which the scammers attempted to make purchases at the catalog retailer Argos.

The adversaries were very sure about her booking date and details, which indicates that _perhaps the system of Ritz Hotel was compromised before the execution of these personalized vishing scams_. They called her for a second time and asked for a different card’s details citing a transaction decline in the first. When the bank spotted **suspicious transactions**, the scammers contacted her by impersonating her bank and obtaining the security code.

The Ritz has been notifying customers of the scam with [phishing prevention tips](/content/phishing-prevention/) since it became aware of a potential data breach on its food and beverage reservation system. As consumers, it is our responsibility to be equipped with **anti-phishing tools** in such sensitive times. We must never disclose our financial details to anybody over the phone or text, irrespective of the context.

### Revil Ransomware Hits Jack Daniel’s Makers

The makers of [Jack Daniel’s underwent a Sodinokibi (REvil) attack](https://www.infosecurity-magazine.com/news/jack-danielsmaker-suffers-revil/?&web%5Fview=true) recently wherein **1TB of corporate data** was compromised. _The hackers are now demanding a ransom and have threatened to auction the details online_.

However, Jack Daniel’s has taken necessary [phishing protection](/) measures and collaborated with security experts and law enforcement to resolve the matter. They claim to have the situation under control now.

![Office 365 phishing protection](https://media.mailhop.org/phishprotection/images/2020/08/office-365-phishing-protection-41236.jpg) 

### Ethical Hacker Identifies 200,00 US Patients’ Data Online

\_Netherland based ethical hacker Jelle Ursem recently found [nine data leak incidents](https://hotforsecurity.bitdefender.com/blog/researcher-discloses-9-leaky-github-repos-affecting-200k-u-s-residents-and-possibly-many-more-23948.html?web%5Fview=true) in the medical secto\_r, which have exposed the private information of around 150,000-200,000 patients. Ursem, along with Databreaches.net, has published a report about the same on GitHub repositories.

While three affected entities took measures for [protection against phishing](/), others ignored the notification and became vindictive. The entities with faulty security measures include Xybion, MedPro Billing, Texas Physician House Calls, VirMedica, MaineCare, Waystar, Shields Health Care Group, and AccQData.

Multifactor authentication and other [anti-phishing solutions](/products/advanced-threat-defense/) must be in place to ensure security from such blunders and vulnerabilities.

### Data Breach At UK Charity Group MAG

Ransomware had taken over the files off Blackbaud back in May 2020, [but Mines Advisory Group (MAG)](https://portswigger.net/daily-swig/blackbaud-ransomware-attack-exposed-donor-data-from-two-uk-charities?&web%5Fview=true) was recently informed of a **data breach** that the Blackbaud incident might have triggered.

_The UK charity informed its donors of the breach via an email notification last week_. A third party has probably accessed their data, and that they are to stay vigil and take necessary [anti-phishing measures](/products/advanced-threat-defense/).

Although Blackbaud had stopped the **ransomware attack**, attackers were still able to get a copy of their files, and _the results are now impacting 125 universities and charities along with MAG_. Those associated with these organizations have their names, addresses, email addresses, and telephone numbers, and other details exposed to adversaries.

### Data Breach At Carnival Corporation

_Cruise ship operator [Carnival Corporation](https://www.zdnet.com/article/worlds-largest-cruise-line-operator-discloses-ransomware-attack/?&web%5Fview=true) recently underwent a **ransomware attack**, which has led to a data breach_. The adversaries accessed a brand’s information technology systems and stole some guests’ and employees’ data. 

Although the operator hasn’t disclosed much about the breach, they are taking [anti-phishing protection](/products/advanced-threat-defense/) measures and are sure that business shall remain unaffected.

### Database Found Online With 235 Million Social Profile Details

Researchers have recently found a **misconfigured database** online that was exposing the public profiles of over [235 million social media users](https://www.infosecurity-magazine.com/news/data-firm-exposes-235m-social/?&web%5Fview=true). _The database had no password or other authentication requirements, and almost anyone could access it_. The compromised profiles were scraped from Instagram, TikTok, and YouTube. They included details such as profile name, real name, profile pic, account description, age, gender, phone number or email address, among other details of users.

![Office 365 email protection](https://media.mailhop.org/phishprotection/images/2020/08/office-365-email-protection-0354.jpg) 

Although the database has now been brought down, it is unsure how long it was live. Anybody who has access to it can launch personalized **phishing scams** against the affected users in the future.

### Ransomware Attack At Ponca City Public Schools

_The Ponca City Public Schools’s PowerSchool system recently underwent a [ransomware attack](https://www.newson6.com/story/5f3bbf338382de1054305d50/ponca-city-schools-gives-update-on-ransomware-attack?&web%5Fview=true) that encrypted their system files_. Resultantly, all files created after 10th August need to be rebuilt.

Although no student, personnel, or financial information was compromised in the attack, people are advised to protect themselves from phishing. Since the school **refused to pay** the ransom and is redeveloping its systems using backup, there is every possibility that the adversaries might try to earn some money by auctioning the stolen school files. However, _the school is quite confident that data was just encrypted, not stolen_.

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 35 of 2020","description":"Cybersecurity Updates For The Week 35 of 2020: 2020 has witnessed the most significant number of cyber attacks in history, and this trend is not ending.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-35-of-2020/","datePublished":"2020-08-27T12:31:04.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-08-27T12:31:04.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-35-of-2020/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1091,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/08/office-365-phishing-protection-41236.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 35 of 2020","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-35-of-2020/"}]}
```