---
title: "Cybersecurity Updates For The Week 50 of 2021 | Phish Protection"
description: "Threat actors just need one opportunity to infiltrate your device and accounts online and get access to all your PII (Personally Identifiable Information)."
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-50-of-2021.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-50-of-2021/"
---

Quick Answer

Threat actors just need one opportunity to infiltrate your device and accounts online and get access to all your PII (Personally Identifiable Information). And \_phishing is one of the primary ways they use to set their malicious plans in motion\_, such as for data breaches, \[identity thefts\](/blog/understanding-business-identity-theft-and-what-makes-businesses-vulnerable-to-these-identity-thefts/), etc. This is why it is crucial to adopt basic cyber hygiene, so you can easily identify \*\*signs of phishing\*\*. Here are this week's news headlines to keep you abreast of the \[latest

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-50-of-2021%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2050%20of%202021&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-50-of-2021%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-50-of-2021%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-50-of-2021%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2050%20of%202021 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2050%20of%202021&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-50-of-2021%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2021/12/what-is-a-zero-day-attack-4856.jpg) 

Threat actors just need one opportunity to infiltrate your device and accounts online and get access to all your PII (Personally Identifiable Information). And _phishing is one of the primary ways they use to set their malicious plans in motion_, such as for data breaches, [identity thefts](/blog/understanding-business-identity-theft-and-what-makes-businesses-vulnerable-to-these-identity-thefts/), etc. This is why it is crucial to adopt basic cyber hygiene, so you can easily identify **signs of phishing**. Here are this week’s news headlines to keep you abreast of the [latest phishing happenings](/tags/announcements/).

### Data Breach at Planned Parenthood Los Angeles

_The reproductive healthcare provider Planned Parenthood Los Angeles recently informed **over 400,000 patients** of a data breach_ where adversaries accessed their personal information. The [unauthorized access](https://www.washingtonpost.com/nation/2021/12/01/los-angeles-planned-parenthood-hack/) of its system was first noticed on 17th October, and the hospital immediately informed law enforcement and took [phishing prevention](/) measures. So far, it has no evidence of patient data being used for fraudulent purposes, but the investigations suggest that it was a [ransomware attack](/resources/ransomware-attack-why-organizations-pay-ransom/). Planned Parenthood is yet to announce the name of the ransomware gang and whether it paid a ransom.

The hospital solely focuses on informing and supporting the patients whose **data was compromised** in the incident. The compromised patient data includes their addresses, DOBs, insurance numbers, medical data such as treatments received, prescriptions, diagnoses, etc. Planned Parenthood Los Angeles has hired an external cybersecurity organization to investigate the breach as it holds patients’ data to be of utmost importance.

### Cyberattack Hits Panasonic

_Famous Japanese electronics giant Panasonic recently underwent a security breach where unauthorized third parties accessed their network and transferred files_ from one of its file servers. The [breach took place](https://thehackernews.com/2021/11/panasonic-suffers-data-breach-after.html) between 22nd June and 3rd November, and Panasonic’s investigations revealed that some files from its system were accessed during that period.

![What is a zero day attack](https://media.mailhop.org/phishprotection/images/2021/12/what-is-a-zero-day-attack-4856.jpg) 

The organization detected the breach on 11th November and immediately took [anti-phishing protection](/) measures to contain its spread. It also informed the relevant law enforcement authorities. In addition, the enterprise is working with an external cybersecurity specialist organization to examine the nature and extent of the breach. The tech giant has made no further comments.

### Data Breach Hits DNA Diagnostics Center

_The Ohio-based DNA testing organization DNA Diagnostics Center (DDC) recently discovered a data breach in its systems_ affecting **over 2.1 million** of its patients. The [unauthorized access of DDC’s network](https://www.securityweek.com/21-million-people-affected-breach-dna-testing-company) was first detected on 6th August, and soon after noticing the intrusion, DDC launched an investigation into the breach.

The analysis revealed that the attack impacted patients’ data collected for its 2012-acquired national genetic testing organization system. This personal information was collected between 2004 and 2012\. Though the system wasn’t very active in DDC’s operations, the center is doing everything it can to contain the attack’s spread. The adversaries are suspected of having stolen patients’ files between 24th May and 28th July. The data involved in the breach includes their names, bank account numbers, social security numbers, and payment card details. DDC offers free credit monitoring services to all **2.1 million patients** as part of their remedial measures.

### Beware of Banking Trojans Circulating on Google Play Store

Cybersecurity experts at ThreatFabric have discovered four _Android banking trojans that had remained hidden and yet infected **over 300,000 devices** by listing malicious apps on Google Play Store_ between August and November 2021\. Adversaries used multiple dropper apps to bypass Google Play Store’s security checks. They also use a variety of strategies to evade detection; these include the use of meticulously planned small malicious code updates, look-alike command-and-control (C2) websites to match the theme of the **dropper app** and avoid detection, etc.

These droppers are primarily designed to spread the [Android banking trojan](https://securityaffairs.co/wordpress/125127/malware/4-banking-trojans-google-play.html) Anatsa, ERMAC, Alien, and Hydra. Some of the dropper apps available on Google Play Store include PDF Document, Protection Guard, [Two Factor Authenticator](/blog/the-latest-phishing-scams-hackers-can-bypass-two-factor-authentication/), QR CreatorScanner, QR Scanner 2021, CryptoTracker, Gym, Fitness Trainer, etc. This growing use of droppers is because the adversaries are trying to minimize their **malicious footprint** to evade detection by the [anti-phishing measures](/blog/sim-swap-fraud-the-reason-why-you-must-adopt-robust-anti-phishing-measures-besides-2fa/) of the Google Play Store.

### Ransomware Hits Supernus Pharmaceuticals

_A **ransomware attack** recently targeted the biopharmaceutical enterprise Supernus Pharmaceuticals_, which compromised a large amount of data from its network. The attack is supposed to have occurred in mid-November when attackers accessed some enterprise systems, deployed malware, and [warned of leaking the stolen data](https://www.securityweek.com/ransomware-operators-threaten-leak-15tb-supernus-pharmaceuticals-data). However, Supernus Pharmaceuticals claims that the attack had no impact on its business and operations. It further cleared the air and expressed its lack of interest in complying with **ransom demands**.

Supernus Pharmaceuticals could recover all of its impacted files and also took measures to ensure [protection from phishing](/blog/protection-from-phishing-a-growing-threat-in-todays-information-age/) in the future. The Hive ransomware gang claimed responsibility for the attack and said it could exfiltrate **over 1,268,906 files** (1.5 TB data) from Supernus’ systems. It seems interesting to note the difference in the company’s statements and the ransomware operators, while the organization claims that it has made no ransom negotiations, according to Hive, Supernus has been negotiating the amount since the beginning. _Hive further mentioned that it is in the process of leaking the data stolen from Supernus_.

### Cyberattack Hits Lewis and Clark Community College

_Godfrey-based school, Lewis and Clark Community College recently underwent a cyberattack_ where adversaries accessed its computer network. While nothing indicates that the [attackers gained control](https://www.kmov.com/news/ransomware-attack-shuts-down-lewis-clark-community-college/article%5F322258be-516e-11ec-ba26-df0bdc26f6fb.html) over any system, _the college had to shut down its operations for a week to contain the attack’s spread_. College president Ken Trzaska says that shutting down systems was necessary to analyze the breach and be better prepared for similar incidents in the future.

![How to prevent phishing](https://media.mailhop.org/phishprotection/images/2021/12/how-to-prevent-phishing-4589.jpg) 

The college received a ransom request, and though the amount wasn’t revealed, the demand in itself is pretty significant to suggest that the college was perhaps affected severely. The attack timing collided with the academic pressure that usually accompanies the beginning of the holiday break. As part of its measures for [protection against phishing](/), the college has informed the FBI and police. It is doing everything in its capacity to restore systems at the earliest.

### Threat actors Target IKEA Employees

_Malicious actors are using stolen reply-chain emails to target IKEA employees with an internal phishing campaign_. The adversaries first **compromise a mail server** and then use this access to reply to internal organization emails using [reply-chain attacks](https://threatpost.com/ikea-email-reply-chain-attack/176625/). This tactic automatically avoids detection as the emails come from legitimate internal IDs. The adversaries also use this strategy to target unsuspecting business partners. To [prevent data breaches](/blog/6-biggest-data-breaches-from-recent-years-that-lay-down-the-importance-of-adopting-anti-phishing-cybersecurity-tools/) and other cyber-attacks, IKEA has warned its employees to look out for such reply-chain [phishing emails](/blog/sophisticated-new-tactic-makes-phishing-emails-harder-to-detect/).

In its email to employees, IKEA warns them that not only are adversaries sending emails to IKEA employees, but they are also creating confusion and launching cybercrimes targeting inter IKEA setups, business associates, and suppliers, etc. Since these emails come from people within the company’s network, detecting these becomes difficult. Therefore, IKEA urges its employees to follow [phishing prevention tips](/content/phishing-prevention/) and scan emails even from trusted sources.

### Interpol Arrests 1003 Cybercriminals

In a mass arrest, _Interpol takes **1003 cybercriminals** under custody for indulging in several cybercrimes like investment and romance scams, money laundering, etc_. Interpol conducted an international operation in [collaboration with the law enforcement](https://www.interpol.int/News-and-Events/News/2021/More-than-1-000-arrests-and-USD-27-million-intercepted-in-massive-financial-crime-crackdown) of 20 nations. This operation was code-named HAEICHI-II, and it could **identify ten new attack** schemes. The nations involved in project HAEICHI-II (from June to September 2021) include Cambodia, Brunei, Columbia, India, Angola, China, Japan, Ireland, Korea, Indonesia, Malaysia, Laos, Philippines, Maldives, Singapore, Spain, Romania, Slovenia, Vietnam, and Thailand.

The Interpol authorities **blocked 2,350 bank accounts** associated with malicious online practices and seized **over $27 million**. The operation results suggest that the increase in financial crime caused by the Covid-19 pandemic is nowhere near waning. Therefore, collaborative measures to [prevent phishing](/) attacks are a need of the hour.

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 50 of 2021","description":"Threat actors just need one opportunity to infiltrate your device and accounts online and get access to all your PII (Personally Identifiable Information).","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-50-of-2021/","datePublished":"2021-12-10T06:41:38.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2021-12-10T06:41:38.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-50-of-2021/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1302,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2021/12/what-is-a-zero-day-attack-4856.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 50 of 2021","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-50-of-2021/"}]}
```