Recent Cyber Security Breaches: PayPal, Special Olympics NY and More

As a managed IT service provider it is important to us to make sure to stay in know about the latest cyber security breaches. Every few weeks we like to share our findings with you here on our blog. Please take a peek below to learn more about some of the most recent cyber attacks.

PayPal

Online payment platform

The Hack: Phishing attack

Summary from Kevin Lancaster: “Some PayPal users are receiving phishing emails purportedly notifying of unusual account activity and requiring users to verify their personal information to restore full account access. The hackers fabricate a sense of urgency by noting that user accounts will be disabled until they confirm their identity. Although the messages contain many tell-tale signs of a phishing scam, they pose a serious risk to PayPal customers and the company’s reputation.”

Nexus Mods

Game module website

The Hack: Unauthorized database access

Summary from Kevin Lancaster: “Hackers exploited a legacy codebase on the platform to access user credentials. Although the company discovered the breach in November, they just revealed it this week, a move that will likely increase the customer blowback from the incident. While Nexus Mods moved up the development of new software and worked to mitigate the risks posed by their outdated code base, the incident reflects a lack of attention to detail and breach response plan.”

Read More Here >> Nexus Mods Game Moduling Site Discloses Data Breach

LifeLabs (Canada)

Laboratory diagnostics and testing service.

The Hack: Ransomware

Summary from Kevin Lancaster: “Hackers accessed Life Labs’ IT, stealing copious amounts of customer information and demanding a ransom for the data’s return. In a notice to customers, Life Labs notes that it identified the breach in October, but waited until December to notify customers, a concerning timeframe that will make it more difficult for victims to protect their credentials against misuse. According to the company, they paid the ransom and their data was returned. Now they are declaring the incident a “low risk” to customers”, but given their poor communication so far, this is unlikely to assuage anyone’s concerns anytime soon.”

Special Olympics NY

Nonprofit organization

The Hack: Phishing scam

Summary from Kevin Lancaster: “Cybercriminals hacked the organization’s network and used this access to send phishing emails to its previous donors. Special Olympics NY contacted those impacted by the event, asking them to disregard the phishing communication and to offer confidence that their data was secure. Criminals created a sense of urgency by alerting donors that an automatic donation for $1,942,49 was scheduled to debit in two hours, and the emails invited users to confirm their donation by inputting their personal data on a malicious website.”

Sinai Health System

Chicago-based healthcare network

The Hack: Phishing scam

Summary from Kevin Lancaster: “Two employees fell for a phishing scam that gave hackers access to email accounts containing patients’ personal data. The attack, which occurred on October 16th, wasn’t discovered until December. In response, Sinai Health Network reset employees’ email passwords and provided employees with phishing scam awareness training to prevent a similar event in the future. Unfortunately, these actions cannot undo the damage of a data breach, and the healthcare network will now endure heavy regulatory scrutiny, as the Office for Civil Rights has launched an investigation into the incident.”

Andrew Agencies (Canada)

Insurance and financial service provider

The Hack: Ransomware

Summary from Kevin Lancaster: “A ransomware attack has encrypted hundreds of the agency’s computers, rendering them unusable and leaving the company searching for a solution. The company first discovered the attack back in October but has declined to pay the ransom. However, the hackers are continuing to set new payment deadlines with promises to publish the company’s data if they don’t comply. The group claims to have 1.5GB of customer data, but that claim has gone unverified by hackers and the media.”

To learn more about how to keep your company safe and secure, click here to explore our San Diego IT Services & IT Security plans that are offered by SDTEK.

The post Recent Cyber Security Breaches: PayPal, Special Olympics NY and More appeared first on SDTEK | San Diego, CA.

< Older Post Newer Post >

Why Cybersecurity and Business IT Support Are Crucial for Fort Wayne Businesses

April 9, 2025

In today’s digital-first world, cybersecurity isn’t just a luxury—it’s a necessity. Whether you run a small startup or a growing enterprise in Fort Wayne , protecting your business’s data, systems, and clients is essential for long-term success. From ransomware attacks to phishing scams, cyber threats are evolving every day, and the best way to stay ahead of them is by partnering with a reliable IT services provider that understands the unique needs of local businesses. Here’s why investing in professional business IT support is one of the smartest decisions Fort Wayne businesses can make—and how working with SDTEK helps protect your operations, your data, and your reputation.

Understanding IT Security Compliance Requirements for Businesses

February 5, 2025

Protecting sensitive data is more critical than ever before. As cyber threats continue to rise, governments and regulatory bodies have introduced compliance frameworks to ensure businesses take appropriate measures to safeguard data. However, understanding these requirements can be overwhelming, especially since they vary by industry and location. We'll discuss some of the most common IT security compliance frameworks—such as HIPAA, CMMC, and CCPA—and explain their relevance to different industries. Whether you work in healthcare, manufacturing, or serving California residents, this guide will help you navigate the complex world of IT security compliance.