Skip to main content

Posts

Showing posts with the label News

US Recovers Millions Paid To Colonial Pipeline Ransomware Hackers - VMO Expert Comments on Information Security Buzz

BACKGROUND: The US investigators have recovered millions in cryptocurrency they say was paid in ransom to hackers whose attack prompted the shutdown of the key East Coast pipeline last month, the  Justice  Department announced Monday. Specifically, the Justice Department said it seized approximately $2.3 million in Bitcoins paid to individuals in a  criminal  hacking group known as DarkSide. The FBI said it has been investigating DarkSide, which is said to share its malware tools with other criminal hackers, for over a year. Read the comments here .

Ransomware Draws Government Attention - VMO Expert Comments on Information Security Buzz

BACKGROUND: The US government’s response to the ever growing threat of ransomware is long overdue, but is it too late? With more priority set to be placed on  ransomware  attacks and the consequential investigations, we’re in a prime position to make strides in  preventing   these attacks.  Read the Comments here .

Leaked Spreadsheet Exposes Details Of UK Special Forces Soldiers - VMO Expert Comments on Information Security Buzz

BACKGROUND: A leaked spreadsheet circulating around WhatsApp has exposed the  personal  details of more than one thousand UK Special Forces soldiers, which are meant to remain secret. The Register , which has seen the leaked spreadsheet, says it contains details of 1,182 British soldiers who were recently promoted from corporal to sergeant. Some included soldiers posted in  sensitive  units, such as the Special Reconnaissance Regiment, Special Boat Service and Special Air Service. Read the Comments here ..

Siloscape: this new malware targets Windows containers

A new brand of malware designed to compromise Windows containers to reach Kubernetes clusters has been revealed by researchers. It's called Siloscape because its overall aim is to escape Windows containers via a server silo. Read more here .

Fujitsu Ransomware Attack

  Fujitsu, a Japanese Multinational Information and Communication Technology equipment company, announced that there was a possible intrusion attempt to their servers. Due to the unauthorized access, they are unable to process or accept orders. Their network is partially shutdown and disconnected from network. Customers who use their technology equipment and network products may also face disruption in service. Read the announcement here .

VMware Urges Customers to Patch a Critical Vulnerability

VMware recently announced that it's vCenter Server has a critical bug that needs to be patched immediately. The vulnerability (CVE-2021-21985 &  CVE-2021-21986) has a rating of High and VMware is asking customers to pay immediate attention. The company has already released the patch for the security hole that a hacker could exploit by accessing vCenter Server over the port 443. The patch would first fix the ability to execute code remotely, and secondly it will improve the Server Plugin Framework to strengthen the plugin authentication. VMware advised that if you can't patch it immediately, then you should stop using vSAN. There is other critical advisory that you can find in their news release here . What should I be doing? If you are in technology team, then you probably already know what to do. If you are in Vendor Management / Sourcing, then you should get in touch with your TAO and Cyber Security team to provide any contractual support that they might need. Keep your V

Canada Post Informs Customers of Data Breach

Canada Post informed 44 of its large business customers of a data breach due to a malware attack on one of its suppliers called Commport Communications. Read the news release here . The vendor notified Canada post last week that the manifest data that contains the names and addresses of customers (both sender and receiver) and in few cases email addresses and phone numbers had been compromised. Canada Post uses this vendor to manage shipping manifest data of large parcel customers. Canada Post claims that no financial information was compromised, but the breach contains data of 950K receiving customers. 97% of the stolen data only contains names and addresses, and 3% contains the contact information.  Views might differ, but from privacy perspective the impact is minimal. Name and address is public information, and hackers are looking to steal financial information or find opportunities to sell data for financial gain. Name and Physical address doesn't give them that opportunity. T