Another large scale ransomware cyber attack caused chaos and dominated the media headlines around the world this month. The Petya ransomware, a copycat of WannaCry, caused major operational impact to organisations neglecting to apply Microsoft Windows critical security updates. There were reports of the malware significantly impacting British marketing firm WPP, a Jewson hardware store, Ukrainian national infrastructure associated firms, and even halting production at a Cadbury chocolate factory in Australia.
Aside from the Peyta ransomware outbreak, it was another busy month of significant cyber security attacks and data compromises across the UK. The UK Parliament’s email system was hacked with around 90 email accounts compromised due to the usage of weak passwords by parliament staff, it is not certain how many of 90 were MPs or not, but I wouldn’t surprised if there were more than a few using weak passwords. There were further cyber troubles for the UK government after its Digital Service website data.gov.uk data was compromised. Virgin media told 800,000 of its users to change their router passwords after it was discovered that hackers could access Virgin’s Super Hub 2 routers. And there was yet more critical security patches released this month, as Microsoft and application vendors fight to stay ahead of cyber criminals and nation-state actors software exploits.
Over in the United States, a US Health Insurer forked out £90 million to cover compensation and legal costs after hackers stolen customer records in its care. We could well see these types of large payouts in the UK soon after the General Data Protection Regulation (GDPR) kicks in May 2018. The GDPR gives the Information Commissioners Office (ICO) new powers to fine up to 10 Million Euros or 2% the previous year global turnover of the company, for any cyber security breaches. Data subjects will also have the right to take companies to court to seek damages as well. The ICO will get double those penalty rates for privacy rights breaches, ouch! Under the GDPR companies are forced to fess up to all security incidents which compromises or places personal data at risk, both to the ICO and to each data subject impacted, so there will be no hiding place for security breaches in the UK after next May.
Finally, US Cert and Incapsula released an interesting advisory about ‘Hidden Cobra’, a North Korean Cyber Threat group. This nation-state group is seemingly ramping up their capabilities at the moment, and are behind the DeltaCharlie campaign and linked with the WannaCry ransomware outbreak last month, well worth a read.
- Peyta / NotPeyta / Petrwrap Ransomware Attack
- NSA & GCHQ link North Korean with the global WannaCry Ransomware Attack
- Parliament Cyber Attack ‘hit up to 90 users’
- UK Government Digital Service Site User Data Breached
- Four Arrests in UK over Microsoft Technical Support Scam Phone Calls
- UK Online Fraud Overlooked by the Government, Police and Business
- Password Manager OneLogin hit by Data Breach
- Virgin Media tells 800,000 Users to Change Passwords over Router Hacking Risk
- ICO Fines Gloucester City Council £100k for not patching the Heartbleed Bug
- The US Health Insurer is to pay out over £90m after Hackers Stole Customer Records
- WannaCry Cyber Attack Halts Production at Honda
- Cyber Due-Diligence Now Forms an Essential part of M&A Planning
- UK Hacker exploits Clydesdale & Yorkshire Online Bank loophole to Steal £100,000
- Personal Details of nearly 200 Million US Citizens Exposed
- South Korean Hosting Firm Pays $1 Million Ransom
- Microsoft to Remove SMB1 protocol used by WannaCry & Peyta from Windows 10
- Microsoft release Security Updates to fix 94 flaws, including on Windows XP & Windows 2003
- Adobe releases Critical Security Updates Flash Player and Shockwave Player
AWARENESS, EDUCATION AND THREAT INTELLIGENCE
- Hidden Cobra: North Korea’s DDoS Botnet Infrastructure
- Hidden Cobra and DeltaCharlie: An Explainer
- Apple Mac computers targeted by Ransomware and Spyware
- Firewall Adware Epidemic Infects 9% of UK Networks
- 2017 Trustwave Global Security Report
- PwC 2016 Digital Annual Report: UK Councils unable to cope with Cyber Threats
- Druva Annual Ransomware Report: 2017 Survey
from Cyber Security Roundup for June 2017