Go to listing page

Daily Cybersecurity Roundup, February 24, 2021

The immense threat posed by supply chain attacks has not just grabbed headlines but also led to real-world damage as shown by recent incidents. After tens of declared victims, Canada’s top plane manufacturer has also reportedly been hit by an attack exploiting flaws in Accellion solutions. Meanwhile, the U.S aerospace agency and the Federal Aviation Administration joined the list of SolarWinds victims. Also, a security firm reported a spike in threat groups targeting industrial organizations. With this, join in to go through the key cybersecurity highlights for the day.

01

Clop ransomware actors dumped stolen data of airplane manufacturer Bombardier on their data leak site. The firm claims to be affected by the Accellion FTA breach.

02

NASA and the Federal Aviation Administration also got added to the list of SolarWinds supply chain attack victims. So far, nine federal agencies have acknowledged being targeted in the attack.

03

Finnish IT services giant TietoEVRY suffered a ransomware attack that disrupted services to its customers in the retail, manufacturing, and service-related industries.

04

The French Ministry of Social Affairs and Health warned hospitals and other healthcare entities of cyberattacks after it found credentials of 50,000 users, possibly French hospital agents, for sale on the dark web.

05

MalwareBytes reported a new threat group, dubbed LazyScripter, targeting the International Air Transport Association (IATA) members, airlines, and refugees to Canada.

06

Amnesty International revealed that Vietnam-linked Ocean Lotus group conducted a cyberespionage campaign on the country’s human rights defenders and a nonprofit organization for over 32 months.

07

IBM’s X-Force Threat Intelligence Index found the finance and insurance sector to be the most attacked industry worldwide last year followed by manufacturing and the energy sectors.

08

Akamai uncovered a long-running crypto-mining botnet campaign wherein hackers exploit BTC blockchain transactions to deflect detection by the security systems in place.

09

According to Dragos, there are now a total of 15 threat groups targeting industrial organizations, with four new groups joining in 2020. The new groups are efficient enough to sabotage control systems.

10

Proofpoint has agreed to acquire the data loss protection provider InteliSecure to help customers protect critical data, in a deal worth $62.5 million.

Get the Daily Cybersecurity Roundup delivered to your email!