In case you missed our coverage this week in ThreatWatch, Nextgov’s regularly updated index of cyber breaches:
A crew of Chinese cyberspies connected to the hack of federal personnel records also allegedly infiltrated computers at American Airlines and Sabre Corp., a flight, car and hotel reservation processor.
Researchers also have said this same group is responsible for data breaches at health insurer Anthem and United Airlines detected over the past year.
Sabre, a former American Airlines subsidiary, has said its central data bank holds records on more than a billion travelers per year across the world.
“American is investigating whether hackers moved from Sabre’s systems into its own computers,” Bloomberg reports. “The carrier shares some network infrastructure with Sabre.
Digital bandits faked communications from executives at the firm by studying the company, and then tricked personnel through these communications into initiating unauthorized international wire transfers.
This gambit is known as “CEO fraud,” or the “business email compromise,” and is increasingly common among companies working with foreign suppliers and/or businesses that regularly wire payments.
The attack against Ubiquiti, a maker of networking technology for service providers and enterprises, involved fraudulent requests from an outside entity targeting the company’s finance department.
Ubiquiti didn’t disclose the mechanics of the scheme, but “CEO fraud usually begins with the thieves either phishing an executive and gaining access to that individual’s inbox, or emailing employees from a…