- South Korea's 'Korea Atomic Energy Research Institute' disclosed yesterday that their internal networks were hacked last month by North Korean threat actors using a VPN vulnerability.
- KAERI states that they have updated the undisclosed VPN device to fix the vulnerability. However, access logs show that thirteen different unauthorized IP addresses gained access to the internal network through the VPN.
- One of these IP addresses is linked to a North Korean state-sponsored hacking group known as 'Kimsuky' that is believed to work under the North Korean Reconnaissance General Bureau intelligence agency.
- In October 2020, CISA issued an alert on the Kimsuky APT group and stated that they are "likely tasked by the North Korean regime with a global intelligence gathering mission."
- More recently, Malwarebytes has issued a report on how Kimsuky (aka Thallium, Black Banshee, and Velvet Chollima) has been actively targeting the South Korean government using the 'AppleSeed' backdoor in phishing attacks.
- Lawrence Abrams | June 19, 2021
hak-iq.us20.list-manage.comJune 19, 2021
- Forty-one percent of insurance claims in the first quarter of 2021 were related to ransomware, as highly skilled criminals now target all industries, from banks to hospitals and national health services, industrial systems, oil pipelines or even meat processing plants, often creating widespread chaos in the process.
- Washington is considering measures ranging from making the reporting of such incidents mandatory for companies, which have traditionally tried to deal with this type of situation discreetly, to fine those who pay ransoms, along with diplomatic actions towards the countries harboring these cybercriminals or even the possibility of a military response.
- The reality is that cyberattacks are extremely versatile, since they can be prepared far in advance and activated at a crucial moment.
- Cyber-attacks are relatively easy to carry out, and protecting society is complex, requiring anything from adopting zero-trust architectures to a complete rethink of systems and, above all, of the training of employees, who are often the weakest link in security.
- Prepare your organization: train staff, develop a culture that values security, create efficient backup procedures, keep all systems properly updated, hire cybersecurity experts or consultants… don’t ever think that it can’t happen to you.
- Enrique Dans | June 13, 2021
hak-iq.us20.list-manage.comJune 13, 2021
- McDonald's has become the latest company to be hit by a data breach after unauthorized activity on its network exposed the personal data of some customers in South Korea and Taiwan.
- The fast-food giant said Friday that it quickly identified and contained the incident and that a thorough investigation was done.
- "While we were able to close off access quickly after identification, our investigation has determined that a small number of files were accessed, some of which contained personal data," the burger chain said.
| June 13, 2021
hak-iq.us20.list-manage.comJune 13, 2021