International Cyber Expo International Cyber Expo

Uncategorized

Gmail inbox

The new attacks are part of an ongoing phishing operation, dubbed the "Compact" Campaign, which has been active since early 2020. The campaign, which has already stolen an estimated 400,000 OWA and Office 365 credentials has now begun abusing new legitimate services in an effort to bypass secure email gateways (SEGs). As a result, Microsoft security experts have issues a warning: "Phishers continue to find success in using compromised accounts on email marketing services to...

Read moreDetails
Catsle

The ransomware campaign, BlackKingdom, has been attacking Microsoft Exchange Server by exploiting ProxyLogon vulnerabilities in order to deploy ransomware on vulnerable servers. The attacks were discovered by Marcus Hutchins, a security researcher from MalwareTechBlog who revealed in a series of tweets on Sunday that he left honeypots on his Exchange servers which lured in attackers who were attempting to running a script on his server. The MalwareTechBlog tweeted, "Someone just ran this script on all...

Read moreDetails
Eastern Health temporarily suspends IT-systems

Eastern Health has temporarily taken down its IT systems following a cyber incident earlier this week. The measures have been taken as a precaution, while the healthcare group attempts to understand and rectify the situation. It has also reassured the public that patient safety had not been compromised. The Incident has affected the healthcare provider's ability to perform less urgent medical procedures, though urgent elective surgeries are going to continue as planned. In a statement...

Read moreDetails
Room with Norwegian flags mounted on the wall and people in the background

Norway's Parliament becomes the newest organisation to fall victim to the vulnerabilities in Microsoft's Exchange Server. A press release was issued, confirming that the great assembly Stortingnet had been breached by 'backdoor-installing miscreants'. Marianne Andreassen, the director at Stortingnet stated: "We know that data has been extracted, but we do not yet have a full overview of the situation. We have taken extensive action and cannot rule out that further action will be taken," she...

Read moreDetails
Crypto currency

Early last week researchers at 360Netlab received reports that QNAP NAS devices were being targetted by a new form of attacks. QNAP is a Taiwanese manufacturer of hardware, including network-attached storage (NAS) devices. Internet of Things (IoT) and NAS devices are usually hijacked using credential theft or brute-force attacks. However, with this wave of attacks, it is thought that attacks exploited two vulnerabilities and used remote code execution (RCE). The vulnerabilities have been identified as...

Read moreDetails
Stacks of data

Palantir is a US data firm that has had long-term involvement in the analysis of large amounts of NHS public health data. Open Democracy, an independent global media platform, has taken legal action against the NHS over its contract and involvement with Palantir, also stating that the firm lobbied a top NHS official. Palantir has a history of being targetted by privacy campaigners. The firm has access to vast amounts of private data as it...

Read moreDetails
Federal reserve bank

Last night the US Federal Reserve suffered a major IT systems outage which stopped all ACH transactions, wire transfers, as well as a number of other services from operating. The system outage affected the majority of electronic service provided by the Federal Reserve Bank. The outage prevented services such as Check 21, Central Bank, Account Services, FedLine Command, National Settlement, FedACH, FedCash, Fedwire Funds, FedLine Advantage, FedLine Direct, FedLine Web, and Fedwire Securities from functioning....

Read moreDetails
Airport

The US Customs and Border Protection (CBP) used facial recognition scanners in order to monitor the arrivals and departures of more than 23 million travellers at over 30 different entry points in 2020. However, these systems failed to detect a single example of an imposter. The US CBP agency revealed these statistics in their annual report for 2020. The facial recognition scanners are placed at a number of entry points including seaports, pedestrian crossings, and...

Read moreDetails
Handcuffed man holding money

On Wednesday, the European police agency, Europol, announced that it had assisted in the arrest of 10 hackers. The 10 individuals are being accused of stealing $100 million in cryptocurrency using "SIM-swapping" attacks. This type of attack allows criminals to gain access to their victims' phones, by tricking the phone company into deactivating a working SIM card and transferring its functions to the hackers. Europol stated that “the attacks orchestrated by this criminal gang targeted...

Read moreDetails
Hospital Emergency entrance

Leon Medical Centers and Nocona General Hospital suffered a ransomware attack in November, in which attackers stole tens of thousands of patient records. The attack was only officially announced in January. Among the records stolen were scanned diagnostics results and letters to insurers, which include personally identifiable information such as names, addresses and birthdates.  The attackers demanded a ransom payment in return for a decryption key and a promise not to publish the records stolen....

Read moreDetails
Page 16 of 22 1 15 16 17 22