Cyber security news: 2020 hacks and attacks
2020 has been a hectic year by all accounts, and it feels like data breaches are constantly being reported in the news (on top of everything else).
That’s because breaches and cyber attacks are constantly happening, with numbers going through the roof as many moved to remote work.
We’ve been keeping a running tally of what’s hit the news, so we thought we’d share for your reference. All headlines link to an in-depth article; just click through to read more.
For the latest cyber news and tips on protecting your business, subscribe to our fortnightly newsletter here.
After being hit in June, multinational energy company Enel Group have been targeted again. The culprits are asking for a whopping $14 million ransom to share the decryption key and not spread several TB of stolen files.
The world’s largest office furniture manufacturer has been forced to shut down their networks to contain a Ryuk ransomware attack.
IT company Sopra Steria have also been infected by Ryuk ransomware, admitting it will take “weeks” for business operations to return to normal.
One of the largest tech companies in North America has had to pay a hefty ransom for a decryption key following an attack last month.
It’s estimated it’ll take 30 days for Tyler Technologies to fully recover, and there are still concerns about stolen information from governments and school districts being leaked.
7th: Ransomware: Surge in attacks as hackers take advantage of organisations under pressure (ZDNet)
Cyber attacks have significantly increased over the past few months following the rapid switch to working from home. As organisations face increased pressure they can be left vulnerable to phishing emails and ransomware attacks, especially on home networks that likely aren’t as secure as enterprise environments.
Two Sydney men have been arrested over their alleged involvement in a large-scale SMS phishing scam that targeted the personal and financial information of tens of thousands of Australians.
The Australian Federal Police arrested the men on Tuesday following a year-long investigation, codenamed Operation Genmaicha, by its cybercrime operations teams and NSW Police.
German authorities said Thursday that what appears to have been a misdirected hacker attack caused the failure of IT systems at a major hospital in Duesseldorf, and a woman who needed urgent admission died after she had to be taken to another city for treatment.
2020 has seen a huge boost in cyber activity with security firm Crowdstrike finding the number of potential intrusions detected in just the first half of this year eclipsed the total for all of 2019.
Gaming hardware manufacturer Razer has suffered a data leak after an unsecured database for their online store was exposed online.
Details of an April attack against a NSW government agency have just emerged, with birth certificates, financial details and medical records of 186,000 customers stolen.
Cyber criminals compromised the inboxes of 47 Service NSW employees, collecting 735GB of data in total – that’s a whopping 3.8 MILLION documents.
The agency announced that they were “working to notify customers who had personal information in the breach”, with a four-month investigation responsible for the delay.
Reports also say they have “accelerated cyber security plans and the modernisation of legacy business processes” – but is it too little, too late?
American beverages company Brown-Forman Liquor has followed in the footsteps of Aussie-owned Lion, suffering a ransomware attack earlier this month. With up to a terabyte of data being compromised, it’s a massive hit to their business.
Current reports suggest Brown-Forman are handling the breach well, with two key points being:
- They caught the attack early and prevented their files from being scrambled (aka encrypted)
- They’ve also supposedly told the criminals to bugger off, and are refusing to pay the ransom – helping to break the cyber crime cycle.
Sophos explains more about what this attack involved, and how the so-called “new wave” of ransomware operators” are choosing to do things here.
As if a global pandemic wasn’t bad enough for business, cruise line giant Carnival has now fallen victim to ransomware.
IT systems have been encrypted and guest and employee personal data has been taken. The full extent isn’t yet known, but Carnival may end up facing legal action – yikes.
There’s nothing more frustrating than an internet outage, but often we don’t question the cause. Telstra was the victim of a denial of service (DoS) attack in early August, with the bad guys working to overwhelm the network and bring traffic to a standstill.
End-user personal info wasn’t compromised in the attack, but it was certainly an inconvenience.
Experienced issues with your Garmin devices in July, or know someone who did? A huge cyberattack was behind the outages, crippling services for days.
The company was hit by WastedLocker ransomware, requiring all of the company’s computers and factories to be shut down until it could be resolved. To complicate things further, paying the $10 million ransom involved sidestepping US sanctions against the perpetrator, meaning Garmin could now find themselves in some serious legal trouble.
There’s no evidence to say that customer data’s been compromised yet, but if you own any Garmin products, now’s as good a time as ever to reset your passwords.
Sophos is rolling out a patch to protect users against this particularly nasty ransomware at the moment, so now’s a great time to speak to us about how strong your antivirus software is.
The WA Government was in the spotlight this week for a massive data breach, with patient health records and other confidential comms all visible on an unencrypted system. “How this antiquated paging service was dealing with such sensitive information is one thing; why no one in government stopped to think about this as a security issue is another.”
Tech debt and legacy systems like the paging service associated with this breach present significant risks to not only government agencies and large corporations, but to small businesses too.
The person responsible for the hack is a teenager from Mandurah, which goes to show that you never know who’s poking around in the back end of your systems and looking for an ‘open door’.
Check out our #ExplainIT episode on tech debt for more info about the risks to your business and how you can best mitigate these.
Reports have emerged of a data breach affecting millions of free virtual private network (VPN) users after researchers found an unsecured server.
The data exposed includes personal information, browsing activities, passwords and more, putting users at risk of phishing, fraud, or worse.
Federal Government agencies believe that China is the nation behind ongoing cyber attacks on Australian institutions, including hospitals and state-owned utilities, in recent months.
The distributor of Masters, XXXX, Yoplait and more has shut down its IT and halted manufacturing after a cyber attack on Monday.
Yet another headline, this time from global cosmetics giant, Avon. The nature and extent of the attack haven’t yet been confirmed, but ransomware is suspected – and personal data has potentially been compromised.
Sources have confirmed that the ransomware used in the June attack on Honda is called “EKANS”. It’s notorious for seeking out backups and deleting them before running its course, highlighting the importance of a strong backup strategy.
BlueScope Steel has been forced to revert to manual processes after a ransomware attack shut down much of their operations. They haven’t yet confirmed whether it was due to an employee clicking on a phishing email.