Carjacking incidents, particularly using methods like the 'relay hack,' are on the rise in Sri Lanka. To protect your car's FOB from this type of attack, an affordable solution is to buy a "faraday key pouch" and keep your car key inside it when not in use. #CyberSecurityLK
Comsec Consulting's Threat Response Teams have issued a release regarding a widespread ransomware attack affecting organizations worldwide, including more than 70 countries. Notable targets include the UK's National Health Service (NHS), Spanish banks, Deutsche Bahn, Renault, and many others.
Key points:
The ransomware targets Microsoft Windows systems, encrypting files and blocking access.
The malware spreads through phishing emails and exploits a Microsoft vulnerability described in bulletin MS17-010 using EternalBlue/DoublePulsar, compromising unpatched systems on the same network.
Infection of one computer can compromise the entire network.
Recommended prevention and mitigation measures include patching systems, isolating or shutting down unsupported/unpatched systems, disabling SMBv1 and SMBv2, isolating specific network ports, updating antivirus and antimalware products, and ensuring critical data is regularly backed up.
Employee awareness and reporting of suspicious emails and activities are crucial.
Comsec Consulting is actively monitoring the situation and offers assistance for any related findings or questions.
Organizations are urged to take immediate action to protect their systems and data.
A new ransomware variant, identified as a version of Petya (also known as NotPetya), has recently attacked organizations worldwide. This ransomware is more aggressive than WannaCry, encrypting files and preventing systems from booting. It uses various propagation techniques, including exploiting vulnerabilities and stealing credentials, making it highly dangerous.
To protect your company:
FC Barcelona fans were surprised when the club's Twitter account announced the signing of Angel Di Maria from Paris Saint-Germain. However, it was later revealed that the club's account had been hacked, and they were working to resolve the issue. A group from Saudi Arabia known as OurMine, which has claimed responsibility for other high-profile hacks, was said to be behind the attack.
In Sri Lanka, there have been persistent rumors about SIM card replication, causing concerns among citizens. However, State Minister of Technology Kanaka Herath has dismissed the possibility of SIM card replication, citing the rigorous identity verification measures in place when issuing SIM cards. Telco insiders also consider these rumors unfounded, attributing them to sensationalist sources.
Instead, there is growing concern about cybercriminals using social engineering tactics to deceive individuals into disclosing their One-Time Passwords (OTPs) or installing third-party applications that clone their messages. This strategy bypasses the need for SIM card replication and focuses on obtaining OTPs for illicit financial transactions.
Cyber Security Advisor Asela Waidyalankara acknowledges persistent complaints about SIM replication but suggests that social engineering tactics play a significant role. Cybercriminals aim to capture OTPs to gain access to financial accounts. This approach may not involve SIM card replication but relies on manipulating individuals into revealing their OTPs.
Waidyalankara highlights the importance of digital literacy in safeguarding against such cybercrimes. He advises caution when sharing personal information and mobile numbers on social media, as this can inadvertently expose sensitive data. Digital literacy and awareness are essential for protecting personal information in the digital age.
While the issue of SIM card replication remains unsubstantiated, the broader challenge of cybersecurity is a pressing concern. Sri Lanka must educate its citizens about digital security and raise awareness to fortify defenses against cybercrime in an era of evolving digital threats.
