Cybersecurity News Roundup: Week of June 20, 2022

Cybersecurity News Roundup: Week of June 20, 2022

Hello,

We took a break for a few weeks, but now our blog is back. Here is the latest of the most shocking stories in cybersecurity.

Let’s start with Germany, where the country’s Green Party announced that it was the victim of a recent cyberattack that affected email accounts belonging to Foreign Minister Annalena Baerbock and Economy Minister Robert Habeck. The cyberattack was first reported last Saturday by the German weekly Der Spiegel. While the number of email accounts actually affected was very small, just 14, party leaders Ricarda Lang and Omid Nouripour were among those compromised in such a way that some emails were forwarded to addresses outside the party.

In the UK, the logistics giant Yodel It has also been affected by what they call a cyber “incident,” which caused a service outage earlier in the week. The UK delivery company posted an update on its site saying: “We are working to restore our operations as quickly as possible, but for now, order tracking is not available and packages may arrive later than expected.” . Although the company does not have any customer payment information, it is currently investigating whether any other personally identifiable information (PII) has been taken.

Elsewhere in Europe, Europol announced Tuesday that police have dismantled a cybercrime group that made millions of euros through phishing and other types of schemes. The police operation was carried out by the police of Belgium and the Netherlands, with the support of Europol. Dutch police arrested nine people, eight men and one woman, aged between 25 and 36, and searched 24 houses in the country. According to the police, the suspects were involved in phishing and other Internet scams that helped them earn millions of euros.

Then, in India, logistics provider Grab denies claims by a Malaysian hacktivist group that it was the victim of the group’s hacking attack. DragonForce Malaysia says it stole details from Grab’s delivery staff. They announced it through social networks and shared a spreadsheet containing names and other data. A Grab spokesperson told Information Security Media Group that the spreadsheet contains referrals for motorcycle riders that originate from a third-party provider, and it appears that none of Grab’s systems were directly attacked.

Here in the US, Microsoft and Outlook customers have been the target of a voice mail-themed phishing campaign targeting specific industry verticals across the country. According to the analysis of ThreatLabz by ZscalerA highly targeted offensive began in May, targeting specific verticals, including software security, the US military, security solution providers, healthcare/pharmaceuticals, and the manufacturing supply chain.

On Tuesday, President Biden signed three bills into law, two of which focus on improving government cybersecurity. Bill S. 1097, titled the Federal Cyber ​​Workforce Rotation Program Act of 2021, establishes an employee rotation program within the Federal Cyber ​​Workforce. The law states that “certain federal employees may be included in rotating cyber workforce positions at other agencies” and authorizes agencies to determine which employees are eligible for the program. Bill S. 2520, titled the State and Local Government Cybersecurity Act of 2021, will require the Department of Homeland Security to increase collaboration among state, local, tribal, and territorial government entities along with “corporations, associations, and the general public, regarding cyber security. .”

Also this week, major US lender Flagstar Bank announced a security commitment that took place last year. A statement issued by the Maine Attorney General explained that Flagstar was affected between April and December 2021. The bank estimates that at least the names and social security numbers of more than 1.5 million of its customers were stolen from its computers. in December. According to BankInfoSecurity, an unidentified threat actor gained unauthorized access to the bank’s systems sometime around December 4 or 5 last. It wasn’t until June 2, after “an extensive forensic investigation and manual document review,” that bank officials discovered the breach.

That’s all for this week. Thanks for going through our blog.

Amy

Top global security news

safety week (June 22, 2022) Belgian and Dutch police dismantle cybercrime group

Europol announced on Tuesday that police have dismantled a cybercrime group that made millions of euros through phishing and other types of schemes.

The police operation was carried out by the police of Belgium and the Netherlands, with the support of Europol. Dutch police arrested nine people, eight men and one woman, aged between 25 and 36, and searched 24 houses in the country.

Police seized firearms, electronics, jewelry, cash, and cryptocurrencies from the suspects. The investigation was launched by the Belgian authorities and those arrested in the Netherlands will be handed over to Belgium.
According to the police, the suspects were involved in phishing and other Internet scams that helped them earn millions of euros.

READ MORE

InfoSecurity (June 22, 2022) Yodel cyber incident disrupts UK deliveries

Logistics giant Yodel has confirmed that it is experiencing a cyber “incident” that is causing service disruption.

The UK delivery company posted an update on its site saying: “We are working to restore our operations as quickly as possible, but for now, order tracking is not available and packages may arrive later than expected.” .

Although the company does not have any customer payment information, it is currently investigating whether any other personally identifiable information (PII) has been taken.

READ MORE

dark reading (June 22, 2022) Microsoft 365 users in the US face a wave of attacks

A voicemail-themed phishing campaign is targeting targeted industry verticals across the country, bent on stealing credentials that can be used for a variety of nefarious purposes.

Microsoft 365 and Outlook customers in the US are in the crosshairs of a successful credential theft campaign that uses voicemail-themed emails as phishing lures. The spate of malicious emails anchoring the threat is emblematic of the larger problem with protecting Microsoft 365 environments, researchers say.

According to an analysis by Zscaler’s ThreatLabz, a highly targeted crackdown has been underway since May, targeting specific verticals, including software security, the US military, security solution providers, healthcare/pharmaceuticals, and the Internet. manufacturing supply chain.

READ MORE

CNET (June 21, 2022) Biden signs two bills to improve government cybersecurity

President Joe Biden signed three bills into law Tuesday, two of which focus on beefing up government cybersecurity, according to a White House press release.

Bill S. 1097, titled the Federal Cyber ​​Workforce Rotation Program Act of 2021, establishes an employee rotation program within the Federal Cyber ​​Workforce. The workforce is a “diverse group of professionals who govern, design, defend, analyze, manage, operate and maintain our nation’s data, systems and networks,” according to the CIO Council.

The law states that “certain federal employees may be included in rotating cyber workforce positions at other agencies” and authorizes agencies to determine which employees are eligible for the program.

READ MORE

Register (June 21, 2022) Information on 1.5 million people stolen from a US bank in a cyber attack

A US bank has said that at least the names and social security numbers of more than 1.5 million of its customers were stolen from their computers in December.

In a statement to the Maine Attorney General’s office this month, Flagstar Bank said it was compromised between December and April 2021. However, system administrators at the organization said they had not fully discovered who the data had been stolen from and what had been taken , until now. On June 2, they concluded that criminals “accessed and/or acquired” files containing personal information of 1,547,169 people.

“Flagstar experienced a cyber incident involving unauthorized access to our network,” the bank said in a statement emailed to The Register.

READ MORE

BankInfoSecurity (June 21, 2022) India-Based Grab Denies Cyber ​​Attack Claim By Malaysian DragonForce

Indian hyperlocal logistics provider Grab denies claims by a Malaysian hacktivist group that it was the victim of a hacking attack.

Hacktivist group DragonForce Malaysia says it stole details of Grab’s delivery staff, posting a spreadsheet containing names and other data on social media platforms Twitter and Telegram last Saturday.

A Grab spokesperson tells Information Security Media Group that the spreadsheet contains referrals for motorcycle riders that originate from a third-party provider. No Grab systems were directly attacked, the company says.

READ MORE

ABC News (June 18, 2022) Germany’s Green Party says email system was hacked

Germany’s Green Party, which is part of the country’s ruling coalition, says its IT system came under attack last month in a cyberattack that hit email accounts belonging to Foreign Minister Annalena Baerbock and the Economy Minister Robert Habeck.

The party confirmed a report in the German weekly Der Spiegel on Saturday, but said the two had not actively used their party accounts since January.

A total of 14 accounts, including those of party leaders Ricarda Lang and Omid Nouripour, were compromised in such a way that some emails were forwarded to addresses outside the party, the Greens said.

READ MORE

Other stories that invite reflection

Icefall: 56 faults affect thousands of exposed industrial devices – Bleeping Computer

Capital One Attacker Exploited Misconfigured AWS Databases – Dark Reading

Fake Israel air-raid sirens possibly triggered by Iranian cyberattack – SecurityWeek

Latin American Governments Top Ransomware Targets Due to Lack of Resources: Analysis – CyberScoop

Canada’s Desjardins Settles $155 Million Data Breach Lawsuit – BankInfoSecurity

Illinois Man Behind DDoS Attack Service Receives 2-Year Prison Sentence – The Record

Jacuzzi customer details could be exposed by SmartTub web bugs, claims investigator – Portswigger

2 Texas hospitals infected with malicious code may face PHI exposure – HealthITSecurity

Department of Energy reconsiders cyber resiliency in strategy to secure the grid – Cybersecurity Dive

Voicemail phishing emails steal Microsoft credentials – The Register

Inside a large-scale phishing campaign targeting millions of Facebook users – HelpNetSecurity

Leave a Comment