Cybersecurity experts commented on the recent ESET Threat Report which shows an enormous increase in ransomware and RDP attacks; 768% growth of RDP attacks between Q1 and Q4 2020.
ISBuzz Team
The maker of Cyberpunk 2077 game hit by the ransomware attack, where attackers have been able to access the company’s internal network, encrypt some devices and copy the data. The company believes no personal data of the players is compromised. The company disclosed the hack by tweeting the note left by the hacker who claims to have accessed the source code of Cyberpunk 2077, Witcher 3, Gwent, and an “unreleased version of Witcher 3.
New findings in the research report “All That We Let In” (press release and study link) show that fully 100% of the 30 popular mHealth apps analyzed by Approov and cybersecurity researcher Alissa Knight are vulnerable to API attacks that can allow unauthorized access to full patient records including protected health information (PHI) and personally identifiable information (PII). The study underscores the API shielding actions now urgently required to protect mHealth apps from API abuse. The researcher estimates that an average of 23 million mHealth users are potentially exposed from the 30 apps, and says that given that 318,000 mHealth apps are now…
Following today’s news that ransomware group, Ziggy, has shut down its criminal activities and released victims decryption keys, cybersecurity experts discuss the continued need for law enforcement agencies to continue to work with cybersecurity vendors to combat threats.
Following the news that Experian is investigating whether they were involved in the Brazil data breach, the CEO commented below.
The UK government has announced the introduction of a new official governing body for cyber security training and standards: the UK Cyber Security Council. The council is billed to become a one-stop shop for training and certification in cyber security, mainly by delivering thought leadership, career tools and education resources to the cybersecurity sector. The Council’s activities include supporting the Government’s National Cyber Security Strategy to make the UK the safest place to live and work online, doing so by leveraging all available expertise, relevant standards and guidance to deliver practical advice for the profession. It’s focus is centred on…
Researchers from ESET discovered a record “29 billion attempted RDP attacks across the year”, noting there was a “768% growth in Remote Desktop Protocol (RDP) attacks over the course of 2020.” Also, Check Point researchers are reporting continued surveillance of Iranian citizens by the threat group Domestic Kitten saying their Furball malware can be found on everything from security apps to wallpapers and is considered a threat to the Iranian regime. A Gurucul expert offers commentary on both topics.
A hacker remotely accessed a water treatment plant in Florida and tried to poison the water supply, according to local police. The intrusion occurred at a water treatment plant in Oldsmar, Florida, which is home to about 15,000 people, according to Pinellas County Sheriff Bob Gualtieri. Last Friday, an operator at the facility noticed some suspicious activity: an unknown user had remotely gained access to a computer system that controls chemical processes at the plant. The mysterious culprit spent three to five minutes accessing various functions on the computer, including one that controls how much sodium hydroxide, also known as lye, is…
Yesterday researchers from Palo Alto Networks’ Unit 42 published their discovery of a never-before-seen malware, dubbed Hildegard, that is being used by the TeamTNT threat group to target Kubernetes clusters. While Hildegard, initially detected in January 2021, is initially being used to launch cryptojacking operations, researchers believe that the campaign may still be in the reconnaissance and weaponization stage. Eventually, they warn, TeamTNT may launch a more large-scale cryptojacking attack via Kubernetes environments or steal data from applications running in Kubernetes clusters.
A collective of anti-fascist Israeli hackers have broken into a website of a group allied to the white-supremacist Ku Klux Klan (KKK). The hackers subsequently published names, photos and other personal information about members of the Patriotic Brigade Knights, which they had scraped, on social media. They also replaced some of the site’s content with their own. This included a banner saying: “Shabbat Shalom! Goodnight white pride.” The hackers told the Jerusalem Post newspaper they were part of the Antifa movement, operating under the name Hayalim Almoni, Hebrew for Anonymous Soldiers. More information: https://www.bbc.co.uk/news/technology-55937133