--- title: "Cybersecurity Updates For The Week 5 of 2021 | Phish Protection" description: "Phishing continues to be the most commonly used and effective form of cyberattack. The last week too, was a tough one for cybersecurity." image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-5-of-2021.png" canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-5-of-2021/" --- Quick Answer Bonobos says that \[phishing attack prevention\](/) was ensured from their end, and it's a backup file hosted on the cloud that got compromised. \_They have approached the hosting provider to get the issue fixed\_. While Bonobos is doing everything in its capacity to contain the breach, customers are advised to \*\*change their passwords\*\* immediately, mainly if they used the same password for other accounts. Furthermore, customers should look out for seemingly genuine \*\*phishing emails\*\* that seek to extract their personal Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-5-of-2021%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%205%20of%202021&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-5-of-2021%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-5-of-2021%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-5-of-2021%2F&title=Cybersecurity%20Updates%20For%20The%20Week%205%20of%202021 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%205%20of%202021&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-5-of-2021%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2021/01/anti-phishing-solutions-5100.jpg) _Phishing continues to be the most commonly used and effective form of cyberattack_. The last week too, was a tough one for cybersecurity. The following headlines prove just how important it is to ensure [phishing protection](/) for your organization. ### \*\*\*\* Data Breach Hits Bonobos Men’s Clothing Store _ShinyHunters recently attacked the men’s clothing store Bonobos and stole a 70 GB [SQL database](https://www.bleepingcomputer.com/news/security/bonobos-clothing-store-suffers-a-data-breach-hacker-leaks-70gb-database/?&web%5Fview=true)_. The adversaries downloaded a cloud backup of Bonobos’ database and shared it for free on a hacker forum. Although Bonobos’ corporate systems remain unaffected, a lot of sensitive customer information was exposed in the breach. These include the addresses, credit card numbers, order details, passwords, and phone numbers of customers. Bonobos says that [phishing attack prevention](/) was ensured from their end, and it’s a backup file hosted on the cloud that got compromised. _They have approached the hosting provider to get the issue fixed_. While Bonobos is doing everything in its capacity to contain the breach, customers are advised to **change their passwords** immediately, mainly if they used the same password for other accounts. Furthermore, customers should look out for seemingly genuine **phishing emails** that seek to extract their personal information. ### \*\*\*\* Clop Ransomware Exposes Ad Agency 7stars’ Data \_A London based ad agency, 7stars, was recently attacked by the Clop ransomware gan\_g. After 7stars **refused to pay the ransom**, the adversaries dumped their data online, exposing invoices, passports, invoices, photos, and a data protection agreement. ![Anti phishing solutions](https://media.mailhop.org/phishprotection/images/2021/01/anti-phishing-solutions-5100.jpg) It is suspected that data belonging to the clients of 7stars (Suzuki, Great Western Railway, Atlantic Records) have been compromised in the attack. When asked for comment, a [7star spokesperson](https://www.theregister.com/2021/01/22/the7stars%5Fransomware%5Fattack%5Fclop/?&web%5Fview=true) confirmed that they indeed underwent an attack. The organization is now taking [anti-phishing protection](/products/advanced-threat-defense/) measures and has restored its systems using backups. As investigations into the breach continue,\_ 7stars is providing **phishing protection service** and support to its clients\_. ### Malware Linked To Russian Servers Found In Bradford School Laptops _The laptops distributed by the UK government to learners for homeschooling have been found infected with malware linked to Russian servers_. The incident was reported by the Bradford school employees, who found that the laptops distributed for homeschooling students had **viruses pre-installed** on them. Marium Haque, the deputy director of education and learning at [Bradford Council](https://www.hackread.com/uk-govt-funded-laptops-homeschoolers-gamarue-malware/?web%5Fview=true), said that the devices came preloaded with a self-propagating network virus, identified as Gamarue.1\. _The Gamarue virus is known for giving attackers full access and control over a device_. Although the virus can’t control webcams or mics, it stores and steals users’ data, such as their browsing habits and financial data. Only 10% of the total laptops received came infected with the virus, and [anti-phishing solutions](/products/advanced-threat-defense/) were adopted immediately to remove it before handing the device to learners. ### Ransomware Hits Chwapi Hospital, Belgium The cyber adversaries have a new target from the healthcare industry, Chwapi hospital in Belgium. The hospital was recently attacked using Windows BitLocker, and the attackers have [encrypted 40 servers](https://www.bleepingcomputer.com/news/security/chwapi-hospital-hit-by-windows-bitlocker-encryption-cyberattack/?&web%5Fview=true) (from a total of 300 servers) and **100 TB of data**. Consequently, Chwapi hospital had to shut down its activities and redirect patients to nearby hospitals. While the hospital claims to have received no ransom demand, the adversaries say the opposite and claim to have _left a ransom note (ransom.txt) on the backup servers and domain controllers_. Many hospital services have been reinstated after adopting [phishing prevention](/) measures, but urgent cases are still being redirected. ### Taylor Made Diagnostics Hack Leaks Truck Drivers And Rail Workers’ Records In a December hack on Virginia-based Taylor Made Diagnostics (TMD by the Conti ransomware), _multiple records of truck drivers and rail workers were stolen_. Consequently, the names, driver’s licenses, medical examination reports, Social Security numbers, and drug testing reports of several Norfolk Southern Railroad and United Parcel Service (UPS) [employees were leaked](https://www.infosecurity-magazine.com/news/truckers-medical-records-leaked/?&web%5Fview=true). TMD has the US military, navy special warfare development group, the Secret Service, the Virginia Department of Military Affairs as its clients. While TMD has made no comments on the breach, _the records of several of clients’ employees were compromised_. The Norfolk Southern Railroad clarified that they always try to adopt the [phishing prevention best practices](/resources/phishing-prevention-best-practices/) for the safety of their employees. They are investigating the breach and hope to settle the issue soon. ### MyFreeCam Hack Exposes Data Of Over 2 Million Users _Over two million users of the adult chat and web streaming app MyFreeCams lost their details to a cyberattack_. The adversaries used **SQL injection** to steal the usernames, email addresses, passwords, and MyFreeCams Token (MFC Token) amounts of users. However, upon being informed about the breach, MyFreeCams quickly took measures for [protection against phishing](/) attacks and advised all users to change their account passwords. They further notified that the breach resulted from a security incident from June 2010 and that their latest measures to **prevent phishing** attacks would not lead to such violations. The adversaries earned [$22,400](https://cybernews.com/security/2-million-user-records-stolen-from-top-adult-streaming-site-myfreecams-and-sold-on-hacker-forum/?web%5Fview=true) in Bitcoin selling data stolen from MyFreeCam and have now deleted their post and account from the hacker forum. It is advised for MyFreeCam to reset their passwords and change the password if they use it for other accounts. ### ShinyHunters Attacks Indian Cryptocurrency Exchange Buyucoin _The India-based cryptocurrency exchange and wallet, BuyUcoin, was recently hit by a cyberattack that exposed around 3.5 lakh users’ PII_. The leaked data includes the names, mobile numbers, email addresses, encrypted passwords, order details, wallet details, bank details, KYC details, and users’ deposit history. ![Anti phishing service](https://media.mailhop.org/phishprotection/images/2021/01/anti-phishing-service-2657.jpg) The breach was discovered by cybersecurity researcher Rajshekhar Rajaharia, who found a _6GB file on the [MongoDB database](https://ciso.economictimes.indiatimes.com/news/key-data-of-over-3-25-lakh-indian-users-leaked-in-buyucoin-hack/80387325) containing three BuyUcoin backup files_. The leak of financial details makes this attack a rather serious one. Researchers from Kela Research and Strategy Ltd. found evidence suggesting that the _hacking group ShinyHunters is responsible for the attack on BuyUCoin_. ### Shinyhunters Attacks Photo Editing App Pixlr In yet another security incident, _ShinyHunters has attacked the online photo editing app Pixlr_. Consequently, the personal information of **over 1.9 million Pixlr users** has been compromised. The exposed details include names, email addresses, nationality, SHA-512 hashed passwords and other internal information related to users. _ShinyHunters claims that the database was stolen from its AWS bucket and has made it available online for free_. [Pixlr users](https://www.bleepingcomputer.com/news/security/hacker-posts-19-million-pixlr-user-records-for-free-on-forum/) are advised to reset their passwords, use a password manager to store all their essential passwords, and adopt all necessary [phishing prevention tips](/content/phishing-prevention/). ### Cyber Attack Hits Atlanta Synagogue _Cyber Attackers are now into religious events and have targeted a service in Atlanta_ organized in honor of Martin Luther King Jr. The service was being broadcast on the internet when cyber adversaries used their malicious means to freeze the live session of the sermon being delivered by pastor Raphael Warnock. Kent Alexander, the Atlanta Synangue’s president, regrets the inconvenience caused to viewers and says that measures have been adopted for **protection from phishing**. [Further updates](https://www.infosecurity-magazine.com/news/atlanta-synagogue-reports/?&web%5Fview=true) indicate that their website remained down for almost an hour before being functional again. ### Protect Your Organization - [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/) - [See how Phish Protection blocks threats in real time](/anti-phishing-tools/) ## Topics [ Announcements ](/tags/announcements/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Intermediate 5m Cybersecurity Updates For The Week 33 of 2022 Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[ Intermediate 6m Cybersecurity Updates For The Week 41 of 2022 Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[ Intermediate 5m Cybersecurity Updates For The Week 1 of 2021 Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[ Intermediate 6m Cybersecurity Updates For The Week 1 of 2022 Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 5 of 2021","description":"Phishing continues to be the most commonly used and effective form of cyberattack. The last week too, was a tough one for cybersecurity.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-5-of-2021/","datePublished":"2021-01-29T14:03:42.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2021-01-29T14:03:42.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-5-of-2021/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1161,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2021/01/anti-phishing-solutions-5100.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 5 of 2021","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-5-of-2021/"}]} ```