Tag Archive for: hits

Cyberattack On Finland Intensifies, Hits Critical Sectors

/in


The NoName ransomware group, suspected to have Russian affiliations, has reportedly intensified its cyberattack on Finland. The recent wave of distributed denial-of-service (DDoS) attacks has targeted a wide array of critical sectors in Finland.

The NoName cyberattacks have zeroed in on a variety of critical sectors encompassing the Energy Industry Association, which plays a pivotal role in overseeing the nation’s energy policies.

Additionally, Technical Academic TEK, representing technical professionals and engineers, has become a target, signifying a deliberate assault on key intellectual and technical expertise in the country.

Further intensifying the impact, the cyber onslaught extends to Oikeus.fi, Finland’s legal information portal, underlining the hacker group’s interest in disrupting legal infrastructure.

Click here to follow our WhatsApp channel

The Association of Municipalities, a collaborative body uniting local municipalities, faces the brunt of the attacks, impacting the decentralized governance structure.

Simultaneously, the Consumer Disputes Board, responsible for resolving consumer conflicts, becomes another casualty, illustrating a comprehensive assault on various facets of Finnish society and services.

In Detail: Cyberattack on Finland

The severity of the cyberattack on Finland claim is sensed by the diverse industries targeted, indicating a strategic and widespread campaign. If a cyberattack on Finland is proven true, the impact of this multi-industry attack could be far-reaching.

The situation further intensifies with the hacker group’s message, which reads, “We continue to remind the Finnish government how bad the idea of locating a NATO base near Russia is.”

cyberattack on Finland
Source: FalconFeedsio

The Cyber Express team conducted a thorough check of the websites reportedly under attack by NoName and found them operating smoothly. However, attempts to glean more details from the affected organizations proved futile, as there has been no official response from any entity as of the time of writing this report.

Previous Cyberattack on Finland 

In the first week of January 2024, NoName, a ransomware group launched a series of cyberattacks on several Finnish…

Source…

New Sneaky Xamalicious Android Malware Hits Over 327,000 Devices

/in


Dec 27, 2023NewsroomPrivacy / App Security

Sneaky Xamalicious Android Malware

A new Android backdoor has been discovered with potent capabilities to carry out a range of malicious actions on infected devices.

Dubbed Xamalicious by the McAfee Mobile Research Team, the malware is so named for the fact that it’s developed using an open-source mobile app framework called Xamarin and abuses the operating system’s accessibility permissions to fulfill its objectives.

It’s also capable of gathering metadata about the compromised device and contacting a command-and-control (C2) server to fetch a second-stage payload, but only after determining if it fits the bill.

The second stage is “dynamically injected as an assembly DLL at runtime level to take full control of the device and potentially perform fraudulent actions such as clicking on ads, installing apps, among other actions financially motivated without user consent,” security researcher Fernando Ruiz said.

The cybersecurity firm said it identified 25 apps that come with this active threat, some of which were distributed on the official Google Play Store since mid-2020. The apps are estimated to have been installed at least 327,000 times.

UPCOMING WEBINAR

From USER to ADMIN: Learn How Hackers Gain Full Control

Discover the secret tactics hackers use to become admins, how to detect and block it before it’s too late. Register for our webinar today.

Join Now

A majority of the infections have been reported in Brazil, Argentina, the U.K., Australia, the U.S., Mexico, and other parts of Europe and the Americas. Some of the apps are listed below –

  • Essential Horoscope for Android (com.anomenforyou.essentialhoroscope)
  • 3D Skin Editor for PE Minecraft (com.littleray.skineditorforpeminecraft)
  • Logo Maker Pro (com.vyblystudio.dotslinkpuzzles)
  • Auto Click Repeater (com.autoclickrepeater.free)
  • Count Easy Calorie Calculator (com.lakhinstudio.counteasycaloriecalculator)
  • Sound Volume Extender (com.muranogames.easyworkoutsathome)
  • LetterLink (com.regaliusgames.llinkgame)
  • NUMEROLOGY: PERSONAL HOROSCOPE &NUMBER PREDICTIONS (com.Ushak.NPHOROSCOPENUMBER)
  • Step Keeper: Easy Pedometer (com.browgames.stepkeepereasymeter)
  • Track Your Sleep (com.shvetsStudio.trackYourSleep)
  • Sound Volume…

Source…

Fuel Crisis In Iran: Cyberattack Hits Petrol Pumps, Israel Tied To Hacking

/in


(MENAFN– AsiaNet News) A cyber crisis surfaced in Iran as a hacking group, purportedly from Israel, allegedly disrupted a significant portion of the country’s gas stations. Termed “Gonjeshke Darande” or “predatory sparrow,” this group reportedly executed a disabling maneuver, causing approximately 70% of Iran’s gas stations to cease operations, reported the Times of Israel.

The disruption, flagged as a probable case of sabotage involving cyberattacks, was highlighted on Iranian state TV. It attributed the station irregularities to a “software problem” and advised citizens against rushing to the operational stations.

‘What does Mark Zuckerberg know that we don’t?’: Meta boss’ secret bunker in Hawaii raises eyebrows (WATCH)

Previously, the Gonjeshke Darande faction had targeted a key steel company in Iran’s southwest in 2022. They also claimed responsibility for a cyber assault on the country’s fuel distribution system in 2021, which led to widespread station closures and extensive queues of frustrated motorists.

The hackers behind the recent incident asserted that they had systematically disabled gas pumps across Iran. Their motivation was cited as a reaction to what they deemed as the Islamic Republic’s aggressive actions in the region. Additionally, they issued a cautionary message to Khamenei, implying consequences for what they termed as playing with fire.

This development unfolds amidst escalated conflicts involving Iran-backed entities such as Hezbollah in Lebanon and the Houthis in Yemen, engaging in heightened hostilities against Israel, especially during the ongoing war with Hamas.

Iran has grappled with a slew of cyber assaults on various fronts, targeting its filling stations, railways, and industrial sectors. Instances of breaching surveillance cameras in government buildings, including prisons, have been reported in the past. Moreover, the country took measures to isolate much of its government infrastructure from the internet after the Stuxnet computer virus, believed to be a US-Israeli creation, disrupted thousands of Iranian centrifuges at nuclear sites in the late 2000s.

WATCH: The moment when sedan rammed into Biden’s…

Source…

Cyberattack hits Kyiv, knocking out phone and internet service

/in


KYIV — A large-scale cyberattack hit Ukraine on Tuesday, crippling Kyivstar, the country’s largest mobile phone provider, and knocking out service to more than 24 million subscribers both in the war-ravaged country and abroad, where millions have fled Russia’s invasion.

In some parts of the country, the loss of mobile phone and internet service cut off early-warning air raid systems used to alert citizens of imminent Russian missile and drone strikes. The cyberstrike also shut down some bank machines.

Ukraine’s intelligence service, the SBU, said that it was investigating the possibility “that the special services of the Russian Federation may be behind this hacker attack.” In a news statement, the SBU said that it had opened criminal investigations into the incident, including charges of treason, sabotage, and “planning, preparation, unleashing and waging an aggressive war.”

The attack took place Tuesday morning in Ukraine, hours before President Volodymyr Zelensky was set in Washington to meet US lawmakers and President Biden in an urgent bid to drum up some $60 billion in crucially needed aid.

The hacking underscored the continuing threat to Ukraine’s statehood, as political infighting between Democrats and Republicans in Washington risks cutting off aid to Ukraine from its most important ally.

The war in Ukraine has combined elements of World War I-style trench warfare with 21st-century high-tech weaponry, including swarms of explosive drones, many controlled using live feeds over the internet. Russia has repeatedly sought to disrupt internet service in Ukraine, forcing the country’s military to rely heavily on Starlink, the satellite internet system operated by Elon Musk’s company SpaceX.

The attack raised the prospect that a large number of Ukrainians would not be able to use a smartphone application warning of air raid alerts, tools many depend on since street sirens are not always audible. The apps still work if telephones are connected to Wi-Fi.

Kyiv’s city administration said on Telegram that the cyberattack did “not affect the stability of the air alert system in the capital.”

Some regional officials said that early-warning air raid sirens were fully or…

Source…