Category Archives: Cybercrime

China’s ‘splinternet’ will create a state-controlled alternative cyberspace

Posted on by

Beijing is using blockchain to build a new internet and many developing countries are likely to sign up – but at what cost?

Cyberspace is one huge, unregulated mess. A virtual wild west where sophisticated criminal gangs ply their trade alongside multinational companies, spy agencies, activists, celebrity influencers – and nation states. The question of who governs it is one of the biggest of our time.

Britain needs to be, if not quite ruling the waves, at least a global force for good in the expanding virtual world. The issue has never been so pressing. Six years ago, I acted for a coder in the biggest cyberfraud phishing case in the UK. The malware my client and others created was so sophisticated that the police could not decode it but were able to show it was used for fraud. The financial data harvested was stored on two servers, one in France and one in the US, and the lack of international cooperation meant law enforcement never got their hands on it.

Continue reading...

Cyber-attack targets world’s largest meat-processing company

Posted on by

Ransomware attack halts production at JBS, which supplies more than fifth of all beef in US

A cyber-attack on the world’s largest meat-processing company has forced it to halt all US operations while it scrambles to restore functionality.

JBS, which supplies more than a fifth of all beef in America, said all of its US beef plants were pushed offline on Sunday. The ransomware attack on the Brazilian-headquartered company’s networks also disrupted other operations across the US, as well as the company’s businesses in other countries, including Australia, but less severely.

Continue reading...

Russian SolarWinds hackers launch email attack on government agencies

Posted on by

Microsoft says group targeted more than 15o American and foreign organisations using USAid account

The state-backed Russian cyber spies behind the SolarWinds hacking campaign launched a targeted phishing assault on US and foreign government agencies and thinktanks this week using an email marketing account of the US Agency for International Development (USAid), Microsoft has said.

The effort targeted about 3,000 email accounts at more than 150 different organisations, at least a quarter of them involved in international development, humanitarian and human rights work, the Microsoft vice-president Tom Burt wrote in a blog post late on Thursday.

Continue reading...

‘I can’t be that careless’: Australian Uyghur activist targeted online

Posted on by

Nurgul Sawut, who has been named on a Chinese blacklist, says she’s experienced online trolling, nasty messages and malware

A Uyghur activist in Australia who has been the target of cyber-attacks by hacker groups in China says the Australian government needs to do more to educate the Uyghur community in Australia to protect themselves online.

Uyghur activists outside of China are frequently the target of hackers based in China.

Continue reading...

Ransomware attack disrupts Irish health services

Posted on by

IT systems shut down and some medical appointments cancelled after attempt to access data

Ireland’s state health services provider has shut all its IT systems and cancelled some medical appointments after what it described as a “significant ransomware attack” overnight caused widespread disruption.

Paul Reid, the Health Service Executive chief executive, told RTÉ there had been a “human-operated” attempt to access data stored on central servers for a presumed ransom. “There has been no ransom demand at this stage. The key thing is to contain the issue. We are in the containment phase.”

Continue reading...

Suspected Russia-led cyber campaign targets Germany’s Green party leader

Posted on by

Annalena Baerbock faces social media onslaught after voicing opposition to Nord Stream 2 project

Fears are growing in Berlin of a Russian-led cyber campaign against the leader of Germany’s Green party after she pledged to block a gas pipeline project between Russia and Europe.

Annalena Baerbock, who is running to succeed Angela Merkel as chancellor in September’s election, has been targeted in recent days by an increasingly vicious campaign across social media.

Continue reading...

US invokes emergency powers after cyberattack shuts crucial fuel pipeline

Posted on by

Biden administration scrambles to avoid shortages after Colonial Pipeline targeted in worst-ever attack on US infrastructure

The Biden administration has invoked emergency powers as part of an “all-hands-on-deck” effort to avoid fuel shortages after the worst-ever cyber-attack on US infrastructure shut down a crucial pipeline supplying the east coast.

The federal transport department issued an emergency declaration on Sunday to relax regulations for drivers carrying gasoline, diesel, jet fuel and other refined petroleum products in 17 states and the District of Columbia. It lets them work extra or more flexible hours to make up for any fuel shortage related to the pipeline outage.

Continue reading...

Cyber-attack forces shutdown of one of the US’s largest pipelines

Posted on by

Colonial Pipeline said it shut down 5,500 miles of pipeline, which carries 45% of the east coast’s fuel supplies

One of the largest pipelines in the US has been shut down after an apparent cyber-attack, its operator has said.

Colonial Pipeline said it had shut down its 5,500 miles of pipeline, which carries 45% of the east coast’s fuel supplies and travels through 14 southern and eastern US states, after the breach of its computer networks.

Continue reading...

Ransomware hackers steal plans for upcoming Apple products

Posted on by

Group behind REvil ransomware claims stolen files include plans for two laptops and a new Apple Watch

Apple is facing a ransomware demand after a group of cybercriminals stole confidential plans for the company’s upcoming products from a supplier.

The “Sodin” group, which makes and runs a piece of ransomware called REvil, says it stole the plans from Quanta Computer, a Taiwanese company that assembles a number of Apple laptops.

Continue reading...

Natanz ‘sabotage’ highlights Iran’s vulnerability to cyber-attacks

Posted on by

Analysis: Apparent attack by Israel is a reminder of the weaknesses of industrial control systems

The apparent attack by Israel on Iran’s nuclear enrichment facility appears to be the latest episode in an increasing tit-for-tat cyberwar. Both sides have already targeted so-called industrial control systems [ICS], which have emerged as a key weakness for countries across the globe.

While Iran described the latest attack as “sabotage”, Israeli media called it a cyber-attack.

Continue reading...

The great opportunity: how Covid transformed global crime

Posted on by

2020 led to surges in everything from domestic abuse to black markets in fake vaccines

By the end of March, one week into the UK’s first lockdown, recorded crime in Lancashire had dropped by a startling 40% compared with the four-year average.

“At first there was some mild panic,” says DCI Eric Halford, of Lancashire Constabulary. “Most senior officers expected a surge in demand.”

Continue reading...

Hacking campaign targeted US energy, treasury and commerce agencies

Posted on by

‘Significant and ongoing’ cyber attack, suspected to be the work of Russia, poses a grave risk to ‘critical infrastructure entities’ as well

The US government continues to reel from a large and sophisticated hacking campaign that affected top federal agencies, including the energy department, the treasury and commerce departments, and is even said to have targeted the agency responsible for the country’s nuclear weapons stockpile.

Authorities expressed increasing alarm over the hack, suspected to be the work of Russia, warning that it poses “a grave risk” to federal, state and local governments, as well as “critical infrastructure entities”.

Continue reading...

Outing of FSB hit squad highlights Russia’s data security problem

Posted on by

Analysis: trade in stolen data is a boon for investigators and a headache for Kremlin

In early 2019, the journalist Andrei Zakharov managed to buy his own phone and banking records in a groundbreaking investigation into Russia’s thriving markets in stolen personal data, in which law enforcement and telecoms employees can be contracted anonymously to dip into their systems and pull out sensitive details on anyone.

A year and a half later, investigators from Bellingcat and the Insider used some of the same tools and clever analysis to out a secret FSB team that had been tasked with killing Alexei Navalny using a novichok nerve agent.

Continue reading...

Which countries and hackers are targeting Covid vaccine developers?

Posted on by

The states and their hackers that security experts believe are targeting vaccine developers

Russia’s best-known hacker groups – Fancy Bear and Cozy Bear – are considered to be linked to the country’s intelligence organisations, according to western security agencies.

Continue reading...

US seizes $1bn in bitcoin linked to Silk Road site

Posted on by

DoJ is suing for formal forfeiture of funds after tracking down the person holding them

The US government has seized more than $1bn worth of bitcoins connected to the shuttered darknet marketplace Silk Road and is suing for formal forfeiture of the funds.

The case is the biggest cryptocurrency seizure in history, and explains why the bitcoins changed hands this week. Analysts had noticed the transfer on the public blockchain and speculated that it was either due to an unknown Silk Road co-conspirator attempting to cash out, or because the funds had been stolen by hackers.

Continue reading...

‘Shocking’ hack of psychotherapy records in Finland affects thousands

Posted on by

Distressed patients flood support services after hack of private firm Vastaamo

The confidential treatment records of tens of thousands of psychotherapy patients in Finland have been hacked and some leaked online, in what the interior minister described as “a shocking act”.

Distressed patients flooded victim support services over the weekend as Finnish police revealed that hackers had accessed records belonging to the private company Vastaamo, which runs 25 therapy centres across Finland. Thousands have reportedly filed police complaints over the breach.

Continue reading...

New Zealand stock exchange disrupted by fourth ‘offshore’ cyber attack

Posted on by

Intelligence cyber crime agencies called in to help after chaotic week of distributed denial of service attacks

The New Zealand government has activated national security systems after the nation’s stock exchange was disrupted by cyber attacks for a fourth day.

There was no clarity on who was behind the “offshore” attacks, but the failure to stop them has raised questions about New Zealand’s security systems, experts said.

Continue reading...

Peter Foster behind bars in Sydney on 16 charges related to alleged online scam

Posted on by

57-year-old refused bail after being extradited from Queensland

Peter Foster has been refused bail after appearing in a Sydney court on 16 fraud charges related to an alleged online scam.

Foster was extradited from Queensland by Sydney police officers on Monday night and charged at Mascot police station.

Continue reading...

Ransomware attack on Garmin thought to be the work of ‘Evil Corp’

Posted on by

Russian cybercrime gang is believed to be responsible for taking Garmin services offline

A ransomware attack that took the GPS and smartwatch business Garmin entirely offline for more than three days is believed to have been carried out by a Russian cybercriminal gang which calls itself “Evil Corp”.

Garmin began to restore services to customers on Monday morning, after being held hostage for a reported ransom of $10m, although some services were still operating with limited functionality.

Continue reading...

Smartwatch maker Garmin hit by outages after ransomware attack

Posted on by

US company forced to shut down call centres, website and some other online services

Garmin has been forced to shut down its call centres, website and some other online services after a ransomware attack encrypted the smartwatch maker’s internal network and some production systems.

The US company shut down services including the official Garmin website and all customer services, including phone lines, online chat and email.

Continue reading...