Category Archives: Cybercrime

Domestic violence survivors urged to take safety precautions after NSW justice department data breach

Posted on by

Attorney general says hacker gained unlawful entry to state’s Justice Link system and accessed 9,000 files, which could include victim details

Domestic and family violence victim-survivors who are concerned their safety may have been compromised have been advised to take precautions after a major data breach at the New South Wales Department of Communities and Justice (DCJ).

The state attorney general, Michael Daley, said on Thursday that the hacker gained unlawful entry to part of the state’s secure online court registry system via a registered account and accessed 9,000 files.

Sign up for Guardian Australia’s breaking news email

Continue reading...

UK cybersecurity agency warns over risk of quantum hackers

Posted on by

Organisations including energy and transport firms told to guard systems against powerful new computers

The UK’s cybersecurity agency is urging organisations to guard their systems against quantum hackers by 2035, as the prospect of breakthroughs in powerful computing threaten digital encryption.

The National Cyber Security Centre (NCSC) has issued new guidance recommending large entities including energy and transport providers introduce “post-quantum cryptography” in order to prevent quantum technology being deployed to break into their systems.

Continue reading...

Trump administration retreats in fight against Russian cyber threats

Posted on by

Recent incidents indicate US is no longer characterizing Russia as a cyber security threat, marking a radical departure: ‘Putin is on the inside now’

The Trump administration has publicly and privately signaled that it does not believe Russia represents a cyber threat against US national security or critical infrastructure, marking a radical departure from longstanding intelligence assessments.

The shift in policy could make the US vulnerable to hacking attacks by Russia, experts warned, and appeared to reflect the warming of relations between Donald Trump and Russia’s president, Vladimir Putin.

Continue reading...

North Korea behind $1.5bn hack of crypto exchange ByBit, says FBI

Posted on by

The US agency said it refers to this specific North Korean malicious cyber activity as ‘TraderTraitor’

North Korea was behind the theft of approximately $1.5bn in virtual assets from a cryptocurrency exchange, the FBI has said, in what is being described as the biggest heist in history.

The haul, which reportedly has since lost some of its value, exceeded the previous record sum of $1bn stolen by the dictator Saddam Hussein from Iraq’s central bank before the 2003 war, and underlines the North’s growing expertise in cybercrime.

Continue reading...

Revelations of Israeli spyware abuse raise fears over possible use by Trump

Posted on by

After WhatsApp claimed 90 users were targeted last year, experts concerned over how US could use cyberweapons

Even as WhatsApp celebrated a major legal victory in December against NSO Group, the Israeli maker of one of the world’s most powerful cyberweapons, a new threat was detected, this time involving another Israel-based company that has previously agreed contracts with democratic governments around the world – including the US.

Late in January, WhatsApp claimed that 90 of its users, including some journalists and members of civil society, were targeted last year by spyware made by a company called Paragon Solutions. The allegation is raising urgent questions about how Paragon’s government clients are using the powerful hacking tool.

Continue reading...

Beijing denies involvement in US treasury cyber-attack

Posted on by

Claims a Chinese state-sponsored actor was behind breach this month are ‘groundless’, says foreign ministry

Beijing has hit back at accusations that a China state-sponsored actor was behind a cyber breach at the US treasury department, calling the claims “groundless”.

The breach was orchestrated via a third-party cybersecurity service provider. Hackers were able to gain access to a key used by the vendor to override certain parts of the system, according to a letter the treasury department sent to lawmakers on Monday.

Continue reading...

UK underestimates threat of cyber-attacks from hostile states and gangs, says security chief

Posted on by

New head of National Cyber Security Centre to warn of risk to infrastructure in first major speech

The UK is underestimating the severity of the online threat it faces from hostile states and criminal gangs, the country’s cybersecurity chief will warn.

Richard Horne, the head of GCHQ’s National Cyber Security Centre, will cite a trebling of “severe” incidents amid Russian “aggression and recklessness” and China’s “highly sophisticated” digital operations.

Continue reading...

Russia’s sabotage of western targets ‘could trigger Nato defence clause’

Posted on by

German intelligence chief warns continued hybrid warfare by Moscow increases risk of alliance invoking Article 5

Russia’s acts of sabotage against western targets may eventually prompt Nato to consider invoking the alliance’s Article 5 mutual defence clause, the head of Germany’s foreign intelligence service has warned.

Speaking at an event of the German Council of Foreign Relations (DGAP) think tank in Berlin on Wednesday, BND chief Bruno Kahl said he expected Moscow to further step up its hybrid warfare.

Continue reading...

What is hybrid warfare, which some fear Russia will use after Ukraine’s strike?

Posted on by

Strike with US-made missiles has prompted fears of Russian reprisal that would broaden the scope of a frontline

A Ukrainian strike using American-made missiles to hit targets deep inside Russia using American-made weaponry, has prompted renewed fears of reprisal through “hybrid warfare” – a chaotic tool of conflict that muddies borders and broadens the scope of a frontline.

Over recent years, European nations have witnessed a spate of incidents – cyber-attacks, arson, incendiary devices, sabotage and even murder plots. The aim of such episodes, security officials believe, is to sow chaos, exacerbate social tensions among Ukraine’s allies and disrupt military supplies to Kyiv.

Continue reading...

‘Quishing’, ‘vishing’ and AI scams – the new cybercriminal techniques duping Australians

Posted on by

Australian Signals Directorate sounds alarm on ‘shifting tactics’ by state-sponsored hackers and cybercriminals, and targeting of critical infrastructure

Cybercriminals are using fake QR codes or sophisticated artificial intelligence scams to trick Australians into giving up their private details or downloading dangerous files, the nation’s signals intelligence agency has warned, as fraudsters take advantage of the technology’s popularity.

The Australian Signals Directorate also sounded the alarm on the “shifting tactics” of state-sponsored hackers and cybercriminals, who they said are burrowing into computer systems of businesses and other organisations and then sitting quietly to avoid detection until they choose to strike.

Sign up for Guardian Australia’s breaking news email

Continue reading...

‘Fear of missing out’ keeping girls and young women online despite sexism

Posted on by

Almost half of girls aged 11 to 21 in Girlguiding survey say sexism and misogyny makes them feel less safe

Girls and young women are seeing more unwanted sexual images and suffering more cyberstalking online, but still don’t want to take a break from social media because of a fear of missing out, a survey for Girlguiding has found.

“Fomo” is keeping more than half of 11- to 21-year-olds on apps such as TikTok, Snapchat and WhatsApp despite nearly one in five saying they have been being stalked online and more than a third saying they are seeing sexual images they didn’t wish to see, the survey of more than 2,000 girls and young women found.

Continue reading...

Sellafield ordered to pay nearly £400,000 over cybersecurity failings

Posted on by

Nuclear waste dump in Cumbria pleaded guilty to leaving data that could threaten national security exposed for four years, says regulator

Sellafield will have to pay almost £400,000 after it pleaded guilty to criminal charges over years of cybersecurity failings at Britain’s most hazardous nuclear site.

The vast nuclear waste dump in Cumbria left information that could threaten national security exposed for four years, according to the industry regulator, which brought the charges. It was also found that 75% of its computer servers were vulnerable to cyber-attack.

Continue reading...

Russia’s FSB protected Evil Corp gang that carried out Nato cyber-attacks

Posted on by

NCA says cybercriminal gang used family links to spy agency to shield members targeted by US authorities

A prolific Russian cybercriminal gang carried out attacks against Nato countries at the behest of state intelligence services and used family links with Russia’s domestic spy agency to protect its members after being targeted by US authorities, according to the UK’s National Crime Agency.

The dramatically named Evil Corp group had an unusually close relationship with the Russian state, said the NCA.

Continue reading...

How west Africa’s online fraudsters moved into sextortion

Posted on by

With ‘hustle kingdoms’ teaching young people the tricks of the trade, there has been a surge in blackmailing crimes

In the late 90s and early 2000s, as internet connectivity began penetrating west Africa, young people soon realised that individuals in North America and Europe with access to more money than them and potentially susceptible to blackmail were now reachable by the click of a button.

Along came the “Nigerian prince” letters, a famous scamming technique employed by online fraudsters – known as Yahoo boys in Nigeria, Sakwa boys of Ghana and the brouteurs of Ivory Coast – preying on unsuspecting targets across the web. The emails typically involved someone pretending to be Nigerian royalty and asking for money, a claim so outlandish that victims presumed it couldn’t be a lie.

Continue reading...

National Crime Agency threatens extraditions over rise in sextortion cases

Posted on by

Exclusive: Agency says foreign gangs not safe from prosecution in UK and plans new recording label to track extent of the crime

The National Crime Agency has warned international cybercriminals that it could seek to extradite them as part of a crackdown to tackle an alarming rise in the numbers of young people being targeted for sextortion.

The agency said the gangs, often based in west Africa, were “not safe from prosecution in our country” and that it would seek justice for all victims of the crime.

Continue reading...

Australia politics live: Michael Sukkar ejected from question time as Coalition and Greens attack Labor over housing

Posted on by

Follow the day’s news live

Pocock: no evidence that gambling companies are good faith actors

There is the possibility that the Coalition will support Labor’s capped advertising plan (as it exists at the moment – the legislation has not been presented and is yet to go through cabinet) which would mean the crossbench and the Greens would not have any negotiating power (Labor and the Coalition in the senate is enough votes).

I’ll be supporting what the Murphy review recommended, which was a full ban phased in over three years.

That has the broad support of the parliament, and is what I’m hearing from people I represent here in the ACT [is] they are sick and tired of seeing gambling ads every time they try and watch something with their kids …

Continue reading...

NHS confirms stolen data published online is from blood test provider

Posted on by

Health service in England issues update saying there is ‘no evidence’ hackers published entire database

Stolen data published online has been confirmed as having come from the NHS provider Synnovis, NHS England has said.

Synnovis, which manages blood tests for NHS trusts and GP services, primarily in south-east London, was the victim of a cyber-attack – understood to have been carried out by the Russian group Qilin – on 3 June.

Continue reading...

NHS patients affected by cyber-attack may face six-month wait for blood test

Posted on by

Only ‘urgent’ tests to go ahead in short term after hospitals in south-east London hit by Russian gang’s seizure of data

Patients denied a blood test because of a Russian cyber-attack on the NHS may have to wait up to six months to have their sample taken, the Guardian has learned.

The delays are so long that some patients have decided to pay to have their blood taken and analysed by a private clinic rather than remain on the NHS waiting list.

Continue reading...

Cyberattack hobbles car dealers across US and Canada for third day in a row

Posted on by

CDK said in a letter to its 15,000 customers that it ‘did not have a an estimated time frame for resolution’

A cyber outage at a major retail software provider for automobile dealers entered its third consecutive day on Friday, delaying car sales throughout North America, the affected companies said. The software provider, CDK, said there was no end in sight.

“The CDK outage is impacting automotive dealerships across the US and Canada, including a portion of BMW Group dealers,” a spokesperson for BMW North America told Reuters.

Continue reading...

Ticketmaster hit by data hack that may affect 560m customers

Posted on by

Cybercrime group ShinyHunters reportedly demanding £400,000 ransom to prevent data being sold

Ticketmaster has been targeted in a cyber-attack, with hackers allegedly offering to sell customer data on the dark web, its parent company, Live Nation, has confirmed.

The ShinyHunters hacking group is reportedly demanding about £400,000 in a ransom payment to prevent the data being sold.

Continue reading...