As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.
Weekly Cybersecurity Report | Week 12, 2024
Information security updates and events from the past week
1 – International conflict Great Britain accuses China of a cyber-attack against it
The British government yesterday (Monday) directly blamed China for the cyber-attack against the Central Election Commission and for infiltrating the personal details of tens of millions of eligible voters in an attempt to track members of parliament. The Deputy Prime Minister, Oliver Dowden, informed the members of parliament in the afternoon that a lengthy investigation by the security services identified that “actors connected to China” were behind the infiltration of the Election Commission’s systems. The hack began in August 2021, but was not detected until October 2022, when only in August of last year did the authorities admit the existence of the attack.
During the lengthy hack, the Chinese hackers gained access to the voter register which includes the names and addresses of all UK voters between 2014 and 2022 – more than 40 million people. According to the Election Commission, about 28 million people who appeared in the registry requested that the information about them not appear publicly and the hacking of the systems harmed their privacy.
However, Dowden noted that the intrusion “did not affect the security of the elections” and that the hacking of the information “does not normally endanger those affected by it”.
Also, Dowden confirmed that “an actor connected to China” was also behind the attempt to penetrate the e-mails of several members of parliament, but the tight security measures completely prevented the penetration.
https://m.maariv.co.il/news/world/Article-1086660
2 – The public health organization in Scotland – NHS Scotland reports that they are suffering from a ransomware attack.
The INC ransom group takes responsibility for the attack.
In the NHS it is reported that there is a real fear of leaking sensitive medical information of patients, the INC group threatens to publish 3TB of information it stole from the network.
The health services continue to operate as usual (which probably indicates no encryption).
3 – New Zealand’s parliamentary network was hacked by Chinese hackers
New Zealand’s Government Communications Security Bureau (GCSB) has revealed that a state-sponsored actor linked to China was involved in a series of cyber-attacks against New Zealand parliamentary entities.
After a comprehensive technical assessment of a 2021 cyber breach affecting the Office of Parliamentary Counsel and the Parliamentary Service, the GCSB’s National Cyber Security Center (NCSC) attributed the malicious activity to China’s state-sponsored group known as APT40.
https://cybersecuritynews.com/new-zealand-parliamentary-network/
4 – A threat actor claims to have 600,000 Kuwait Airways passenger data
A threat actor claimed responsibility for a massive data breach affecting Kuwait Airways.
According to the hacker’s statement on a popular social media platform, the breach compromised the personal information of over 600,000 passengers.
The breach, described by cyber security experts as one of the largest in aviation this year, reportedly includes sensitive passenger information such as names, passport details, email addresses and travel history.
https://cybersecuritynews.com/claims-passenger-data-airways/
5 – A flaw in Microsoft Xbox game services allows attackers to gain system privileges
A new privilege escalation vulnerability has been discovered in Xbox Gaming Services that allows a malicious player to escalate their privileges to that of SYSTEM.
This particular vulnerability has been assigned CVE-2024-28916, and has a severity rating of 8.8 (high).
https://gbhackers.com/xbox-gaming-services-privilege-escalation/
6 – The French Football Federation (FFF) Hacked: Hackers Sell 10 Million Data on the Darkweb
The Fédération Française de Football (FFF) have been notified of allegations regarding a possible security breach in their systems.
Recent reports have surfaced on a hacking forum alleging the sale of a database that supposedly contains over 10 million records related to French football, including those of non-professional and professional players.
https://cybersecuritynews.com/french-football-federation-fff-allegedly-hacked/
The attacks highlighted in this report aren’t just incidents; they’re blueprints of the adversary’s arsenal. To protect your business you need the right protection. Cyberone is here to help! Check out our services.