IT Security Newsletter - 8/15/2024
AutoCanada Hit by Cyberattack
AutoCanada, a major Canadian car dealership, this week disclosed a cyberattack that may result in some disruptions. The incident was discovered on August 11 and it impacted some internal IT systems, the company said. "Immediately upon detecting the incident, AutoCanada took action to safeguard its network and data. This included engaging with leading cybersecurity experts to assist us with containment and remediation efforts. READ MORE...
Mayor of Columbus, Ohio, Says Ransomware Attackers Stole Corrupted, Unusable Data
Hackers recently stole data from Ohio's largest city, but what they got was not usable and no personal information about city workers was made available online, the mayor said. Columbus Mayor Andrew Ginther confirmed the data breach and noted Tuesday that the city never received a ransom request. The city learned Friday that most of the data published to the dark web by the ransomware group Rhysida was corrupted or encrypted, he said. READ MORE...
Iran increases phishing attempts on U.S., Israeli targets
Hackers linked to Iran's Islamic Revolutionary Guard Corps targeted the Trump and Biden presidential campaigns amid increased phishing attacks against U.S. and Israeli officials and institutions, according to a new report from Google's Threat Analysis Group. Google TAG researchers saw "small but steady" attempts by IRGC this election cycle to steal credential information from people associated with President Joe Biden and former President Donald Trump. READ MORE...
Mad Liberator extortion crew emerges on the cyber-crook scene
A new extortion gang called Mad Liberator uses social engineering and the remote-access tool Anydesk to steal organizations' data and then demand a ransom payment, according to Sophos X-Ops. The incident response team observed the cyber crime crew first emerged in mid-July. And while Sophos X-Ops calls it a ransomware group, it has not seen any data encryption linked to Mad Liberator - just data exfiltration. READ MORE...
DDoS attack volume rises, peak power reaches 1.7 Tbps
The total number of DDoS attacks during H1 2024 amounted to 830,000, an increase of 46% when compared to H1 2023, according to Gcore. Peak attack power rose from 1.6 terabits per second (Tbps) in H2 2023 to 1.7 Tbps. UDP floods made up 61% of DDoS attacks, while TCP floods and SYN floods constituted 18% and 11% of the total respectively. The most-attacked business sectors were gaming (49%), technology (15%), financial services (12%) and telecommunications (10%). READ MORE...
Ransomware Group Behind Major Indonesian Attack Wears Many Masks
The threat actor behind a major attack on Indonesian government services is just one manifestation of an operation going by at least three other names. On June 20, a ransomware operation known as "Brain Cipher" bit off more than it could chew when it locked up Indonesia's national data center. Hours-long lines began to form across the country as ferry passengers waited for booking systems to come back online, and international arrivals stood frozen at passport verification kiosks. READ MORE...
Russian who sold 300,000 stolen credentials gets 40 months in prison
?Georgy Kavzharadze, a 27-year-old Russian national, has been sentenced to 40 months in prison for selling login credentials for over 300,000 accounts on Slilpp, the largest online marketplace of stolen logins, until its seizure in June 2021. In a Wednesday press release, the U.S. Department of Justice said that Kavzharadze (also known as TeRorPP, Torqovec, and PlutuSS) sold vast amounts of financial information and other personally identifying information (PII) on the illegal marketplace. READ MORE...
Researchers hack electronic shifters with a few hundred dollars of hardware
Professional cycling has, in its recent history, been prone to a shocking variety of cheating methods and dirty tricks. Performance-enhancing drugs. Tacks strewn on race courses. Even stealthy motors hidden inside of wheel hubs. Now, for those who fail to download a software patch for their gear shifters-yes, bike components now get software updates-there may be hacker saboteurs to contend with, too. READ MORE...
- ...in 1877, Thomas Edison makes the first-ever sound recording, of himself reciting "Mary had a little lamb."
- ...in 1965, The Beatles play to nearly 60,000 fans at Shea Stadium, ushering in the age of "stadium rock."
- ...in 1969, The Woodstock Music & Art Fair opens in upstate New York, showcasing some of the era's most popular musical acts.
- ...in 1971, President Nixon signs legislation officially detaching the value of the U.S. dollar from the "gold standard."