Tag Archive for: shadow

Five years on: The shadow of WannaCry and NotPetya | Viewpoint

/in


cyber risk ransomware

Cyber risk is not new, or stationary, it is complex and evolving. But for all its complexity, like most things human, cyber risk follows a cyclical pattern. New risks may emerge, but the vast majority of risks are just old threats re-imagined for a new age.

WannaCry and NotPetya still cast a heavy shadow over us five years on but older readers will agree these are mere shadows compared to the chaos caused by Conficker, Melissa, ILOVEYOU and SQL Slammer in the early 2000s. 

This older generation of malware worms was significantly more potent but came at a time when both their recognition and insurable impact were considerably moderated as corporate and business processes were far less digitised – in an age before the evolution of cyber insurance.

From these older-generation threats through to more recent events with WannaCry and NotPetya, what do we know now, what have we learned, and what has changed?

“Ransomware is now a mainstream threat. Across all walks of life, we hear about it, with regularity and fear – it is not some niche risk constrained to the IT security industry”

The threat of systemic malware/ransomware still drives the risk we face. Some worry about cloud outages but compared to the impacts of these attacks this is mainly “observation bias” as it is easy to picture a cloud outage. Compared to malware/ransomware, cloud outages are a second-tier peril. 

The good news is the absence of significant malware/ransomware events since WannaCry and NotPetya, but like hurricanes spiralling around the Atlantic without making landfall, we’ve had a selection of headline-grabbing near misses or glancing blows. The last 18 months alone saw SolarWinds, the Microsoft Exchange vulnerability, Kaseya, Blackbaud and, most notably, Log4Shell.

The recent near misses show that when a vulnerability exists it doesn’t mean it will be exploited, or that it is easy to successfully exploit vulnerabilities in a way that can be automated or “wormable”. Threat actors might not want to cause significant amounts of harm, and corporates may urgently mitigate the risk if the threat is so great.

So, what has changed since WannaCry? Ransomware is now a mainstream threat….

Source…

LGBT dating site permanently removed from internet in Black Shadow fight

/in


The state prosecution announced on Thursday that it had succeeded in getting the Atraf website for LGBTQ dating permanently removed from the Internet as part of its ongoing battle against attempts by the Black Shadow hacker group to expose the private, personal information of the website’s users.

The website had been temporarily disabled since Black Shadow started posting some of the personal data it hacked.

On November 3, the Authority for the Defense of Privacy announced it was probing the Atraf website for faulty cyberdefenses that might have led to its recently being hacked.

Source…

Under the shadow of uncertainty, students of foreign universities hope to pursue their dreams

/in

PUNE Anush Chauthai, a 25-year-old student, was all set to fly to Canada on March 28, 2020 to pursue a university specialised course in Digital Forensic and Cyber Security when the lockdown in India grounded his plan.

Anush is among the many students pursuing degrees or wanting to study from the foreign universities whose plans have been disrupted by the Covid pandemic. Their period of uncertainty has now changed into anxiety as the virus-related restrictions have extended in many parts of the world.

“I had begun the application process for permanent citizenship in Canada two years back. After I received the clearance documents around March 13-14 last year, I had planned to leave on March 28, but all flights after March 20 were cancelled,” said Anush of Sinhgad road, who did his Masters in Computer Network from New Zealand.

Like, Anush, another student Rohit Mahajan, a city architect, who wanted to pursue a post graduate degree in Construction Management from a university in the United States, had to postpone his date of joining the course due to the pandemic.

“I had applied in August last year for the spring batch. It was supposed to start in January 2021. I had finalised to join the Texas A&M university. With the Covid outbreak, I waited till October-November hoping that the number of positive cases will drop. By December, I decided that come what may, I will go to the US and I started applying for the visa dates, but could not get the dates. I was told that there was a lot of backlog of previous applications as the visa offices were closed. Hence, I differed my intake to fall in July-end,” said Rohit.

Meanwhile, most of the students who were studying in China and returned to India after they were evacuated last year are continuing their education online. Though, after a year, they are trying to get adjusted to the routine of virtual classes.

On January 31, 2020, Jaydip Devkate, a 21-year-medical student from Pimpri-Chinchwad, left his college located in Xianning city in Hubei province in China with her 30 batchmates to return to India. He was looking forward to resume offline studies when the Covid situation would normalise.

“We are still waiting for the official…

Source…

‘We are constantly one step behind’: Finland worries about cyber warfare in shadow of Russia

/in

  1. ‘We are constantly one step behind’: Finland worries about cyber warfare in shadow of Russia  The Independent

    2. Full coverage

cyber warfare news – read more