InfoSecSherpa Newsletter — 03 July 2021
- US chemical distributor shares info on DarkSide ransomware data theft
(Bleeping Computer, 03 July 2021)
The ransom was negotiated down from 133.65 bitcoins (roughly $7.5 million at the time), with Brenntag having sent the $4.4 million to the attackers on May 11, as BleepingComputer was able to confirm.
- Government to unveil national cyber security strategy soon: National Cyber Security Coordinator
(The New Indian Express, 03 July 2021)
The government will release a new cybersecurity strategy this year, National Cyber Security Coordinator Rajesh Pant said at an event organised by Public Affairs Forum of India (PAFI).
- China investigates Didi over cybersecurity days after its huge IPO
(Reuters, 02 July 2021)
The Cyberspace Administration of China (CAC) said on its website that Didi was not allowed to register new users during its investigation, which was announced just two days after Didi began trading on the New York Stock Exchange.
- Hacking Wall Street: Could a cyberattack disrupt the financial system?
(The New York Times, 03 July 2021)
Experts say there are significant gaps in awareness and preparation for a cyberattack on Wall Street, and that the focus has more often been on threats to individual institutions than on threats to the system as a whole.
- New York’s largest state power utility and IronNet combine forces in cloud-based cybersecurity solution
(Silicon Angle, 02 July 2021)
IronNet, which was recently recognized for “Best Cybersecurity Solution” as part of the 2021 AWS Global Public Sector Partner Awards, is working with the New York Power Authority to protect against cyberattacks.
- Major Swedish supermarket chain hit by cyberattack
(The Local Sweden, 03 July 2021)
One of Sweden’s biggest supermarket chains said Saturday it had to temporarily close around 800 stores nationwide after a cyberattack blocked access to its checkouts.
- Parliament email accounts also hacked in recent cyber attack
(The First News, 02 July 2021)
Poland’s Internal Security Agency has determined that the hacker campaign dubbed “Ghostwriter” had also penetrated the email accounts of MPs, a spokesman for the Polish security services chief said on Friday.
- New malware found disguising as privacy tool
(Hack Read, 02 July 2021)
Once installed, the malware uses Smoke Loader to drop additional malware such as RedLine and Raccoon Stealer which intensify information-gathering activities on an infected device.
- Dropbox Used to Mask Malware Movement in Cyberespionage Campaign
(Threatpost, 01 July 2021)
The IndigoZebra APT is targeting the Afghan government using Dropbox as an API that leaves no traces of communications with weirdo websites.
- Rise of the cyborgs: Inside the technology transcending humanity’s biological limits
(Science Focus, 02 July 2021)
From reality-enhancing implants to brain-controlled exoskeletons, breakthroughs in bio-tech have fuelled a new fusion of machinery and organic matter.