News

A hacker has forced open 2,732 package delivery lockers in Moscow using a cyber-attack. The attack by an unknown hacker too place on Friday afternoon, December 4, targeting PickPoint's network, a local delivery service which looks after a network of over 8,000 package lockers in Moscow and Saint Petersburg. PickPoint's service allows Russians to order products online and have them delivered to any  PickPoint locker instead of their home address. When their package arrives at a...

The government of Kazakhstan is forcing citizens in Nur-Sultan, the countries capital, to install digital certificates on their devices in order to access foreign internet services. The initiative is working under the guise of a "cybersecurity exercise", however, once the certificate is installed it allows the government access to a users device in order to intercept any HTTPS traffic from the devices via a MitM (Man-in-the-Middle) technique. From December 6, 2020, Kazakh internet service providers...

United Arab Emirates government’s cyber security chief has said that the Middle East region is currently facing a “cyber pandemic” after a rise in COVID-19 related attacks. On Sunday Mohamed al-Kuwaiti, head of UAE Government Cyber Security said “As we moved into a full online life, we saw a huge increase in many of those attacks,” when talking to a CNBC-moderated panel at the Gulf Information Security Expo and Conference in Dubai. In 2020 the...

Users of the MetaMask cryptocurrency wallet have been targetted by a phishing scam over the past week which has been luring in victims with Google search ads. MetaMask has a user base of over one million customers. They offer an Ethereum cryptocurrency wallet in the Google browser via an extension which allows distributed applications to read from the blockchain. When installing the extension, a user can either import an existing wallet or create a new...

The construction firm RMD Kwikform has been targeted by a cyber-attack. The company based in Walsall said that they are investigating the breach, which took place in November. RMD Kwikform provides engineering services globally for major infrastructure projects, with 1,400 employees, and around 300 of their employees are based in the UK. The incident was originally reported to the National Cyber Security Centre and Information Commissioner's Office when it took place in November. A spokesman...

TrickBot has released a new “TrickBoot” module which scans for vulnerable firmware and also has the ability to read, write and erase it on devices. The TrickBot malware has once again morphed and adapted, with the malware now being able to inspect the UEFI/BIOS firmware of targeted systems. TrickBot has seen a major resurgence after it experienced a takedown of its infrastructure, headed by Microsoft and others, in October. The Windows Unified Extensible Firmware Interface...

An Israeli insurance company has suffered a data breach with the attackers demanding almost $1 million in bitcoin as a ransom to prevent the companies stolen data being exposed. On November 30 the cybercrime group BlackShadow tweeted that they hacked into Shirbit, an Israeli insurance company, and had stolen files during the attack. "A huge cyberattack has been taken place by Black Shadow team. There has been a massive attack on the network infrastructure of...

The US department store Kmart has been victim to a ransomware attack which has impacted back-end services within the company. Kmart has been targetted by the Egregor ransomware operation this week which encrypted devices and servers on the network. A ransom note showed that the 'KMART' Windows domain was compromised as a result of the attack. KMART's online stores are still operating, but the 'Transformco Human Resources Site,' 88sears.com, a partner of KMART, is currently...

TransLink, the public transport agency for Vancouver, Canada, has been hit by a ransomware attack which has halted their operations. The attack took place on December 1, and has resulted in the residents of Vancouver being unable to use their metro cards, or pay for new tickets, at TransLink's Compass ticket kiosks. TransLink initially thought that the incident was a prolonged technical issue but soon realised the true nature of the incident once reporters from...

Xerox released a fix for two vulnerabilities in regards to DocuShare, their document management platform. If these bugs were exploited they could have made DocuShare users vulnerable to a malicious attack resulting in sensitive data loss. Yesterday, the Cybersecurity and Infrastructure Security Agency (CISA) issued a security bulletin to alert users and administrators to urgently apply a patch which would plug two security holes in the recently released versions (6.6.1, 7.0, and 7.5) of Xerox’s...