Tag Archives: cyber weapon

Israeli hospital cancels non-urgent procedures following ransomware attack

Abstract

Israel’s National Cyber Directorate (INCD) is urging organizations across the country to bolster their cyber defenses following a disruptive ransomware attack against a hospital in Israel’s northwest.

The Hillel Yaffe Medical Center, situated in the city of Hadera, cancelled non-urgent procedures as staff reportedly resorted to using pen and paper after IT systems were disabled by a cyber-attack yesterday (October 13).

Indicators of compromise

The INCD, which is assisting with the hospital’s post-incident investigation and recovery, has shared indicators of compromise (IOCs) in order to help hospitals and other organizations spot evidence of similar network intrusions.

Evidence of unusual activity should be reported to the INCD, it added.

Read more

https://portswigger.net/daily-swig/israeli-hospital-cancels-non-urgent-procedures-following-ransomware-attack

Glimpse of CyberWar: Hacker Tried to Poison Florida City’s Water Supply, Police Say

Here is the glimpse of a cyberwar where hackers are not leaving any chance to take human lives. All Industrial systems has serious security flaws and all of them impose life threatening situation if they are hacked. For instance, water supply, electric grid or nuclear plant etc. Read about this hack..

“The hacker changed the sodium hydroxide from about one hundred parts per million, to 11,100 parts per million,” Gualtieri said, adding that these were “dangerous” levels. When asked if this should be considered an attempt at bioterrorism, Gualtieri said, “What it is is someone hacked into the system not just once but twice … opened the program and changed the levels from 100 to 11,100 parts per million with a caustic substance. So, you label it however you want, those are the facts.”

Impacts of this hack

In smaller quantities, sodium hydroxide can cause severe skin burns and eye damage. Small amounts of sodium hydroxide are put in some cities’ drinking water supplies to prevent corrosion to pipes and to bring the pH up (it is a strong base).

The news highlights what could be a serious cyber and physical security breach, and raises questions about how secure access to such a sensitive system really was.

Read more:

https://www.vice.com/en/article/88ab33/hacker-poison-florida-water-pinellas-county

Security & Privacy: China watching: Indian President, PM, key Opposition leaders, Cabinet, CMs, Chief Justice of India…the list goes on

Abtract

Calling itself a pioneer in using big data for “hybrid warfare” and the “great rejuvenation of the Chinese nation,” a Shenzen-based technology company with links to the Chinese government, and the Chinese Communist Party, is monitoring over 10,000 Indian individuals and organisations in its global database of “foreign targets,” an investigation by The Indian Express has revealed.

The range of targets in India identified and monitored in real time by Zhenhua Data Information Technology Co. Limited is sweeping — in both breadth and depth.

From President Ram Nath Kovind and Prime Minister Narendra Modi to Congress interim President Sonia Gandhi and their families; Chief Ministers Mamata Banerjee, Ashok Gehlot and Amarinder Singh to Uddhav Thackeray, Naveen Patnaik and Shivraj Singh Chouhan; Cabinet Ministers Rajnath Singh and Ravi Shankar Prasad to Nirmala SitharamanSmriti Irani, and Piyush Goyal; Chief of Defence Staff Bipin Singh Rawat to at least 15 former Chiefs of the Army, Navy and Air Force; Chief Justice of India Sharad Bobde and brother judge AM Khanwilkar to Lokpal Justice P C Ghose and Comptroller and Auditor General G C Murmu; start-up tech entrepreneurs like Nipun Mehra, founder of Bharat Pe (an Indian payment app), and Ajay Trehan of AuthBridge, an authentication technology firm, to top industrialists Ratan Tata and Gautam Adani. 

Read more in

https://indianexpress.com/article/express-exclusive/china-watching-big-data-president-kovind-pm-narendra-modi-opposition-leaders-chief-justice-of-india-zhenhua-data-information-technology-6594861/

News of the day: 2,000 Georgia websites hacked in cyber attacks

A huge cyber-attack has knocked out thousands of websites – as well as the national TV station – in the country of Georgia. 

Some 2,000 websites in Georgia, including those of the president, courts, and media were hacked in a massive cyber attack on Monday, officials and media said.

Court websites containing case materials and personal data have also been attacked.  In many cases, website home pages were replaced with an image of former President Mikheil Saakashvili, and the caption “I’ll be back”.  The origin of the attack is not yet known.

Reference

https://www.france24.com/en/20191028-2-000-georgia-websites-hacked-in-cyber-attacks

Aviation security: A serious issue

Abstract

The issue of airplane security is certainly being taken very seriously. Separately, the U.S. Air Force will also be taking a bigger role in identifying security problems in commercial aviation systems–many of which are used by the military.

So far, cyberattacks targeting airlines have focused on the IT systems rather than aircraft themselves. U.K. airline British Airways is facing a huge fine after passenger data from around 380,000 bookings was breached, including bank card numbers along with cvv codes.  

But in the future, this could change. “The U.S. Airforce and most other airforces use airframes and systems that are often the same as their civilian counterparts,” says Philip Ingram, MBE, a former colonel in British military intelligence. He says the restarting of the program suggests “that secret intelligence has identified nation state and non-nation state actors potentially looking at vulnerabilities in aircraft.”

Meanwhile, Ingram (Cyber Expert) says the threat from terrorism is real, but the main players have not found a way of hacking aircraft yet: “If terrorists could find a way of hacking an aircraft to bring it down, they would. The ISIS Cyber Arm, the Cyber Caliphate Shield has lots of ambitions to carry out these sorts of attacks, but they don’t have the technical capabilities.”

Reads more in

U.S. Government Confirms New Aircraft Cybersecurity Move Amid Terrorism Fears

https://www.forbes.com/sites/kateoflahertyuk/2019/10/01/us-government-confirms-new-aircraft-cybersecurity-move-amid-terrorism-fears/?ss=cybersecurity#45d23cd469e1