KW 17: Grocer Tegut has been targeted by hackers, Messaging app used to control and distribute malware, Palo Alto Networks establishes cybersecurity consulting team

NEWS

Grocer Tegut has been targeted by hackers: The supermarket chain Tegut announced Sunday that it has been the victim of a hacker attack. Unknown persons attacked the company’s IT network. In response, all IT network systems at the headquarters were shut down in accordance with the emergency plan and taken from the network. There may be bottlenecks in the availability of goods as a result of the attack.
tegut.com

Messaging app used to control and distribute malware: Hackers are using instant messaging app Telegram for remote control and distribution of malware, according to Check Point Research. CPR tracked over 130 cyber attacks that used ToxicEye malware, managed over Telegram in the past three months. Even when Telegram is not installed or being used on target machines, hackers can send malicious commands and operations remotely via the instant messaging app using a Telegram ‘bot’ embedded in the malware. The warning from CPR comes after it tracked over a hundred cyber attacks that used a remote access trojan (RAT) dubbed ‘ToxicEye’. A RAT is a type of malware that provides the attacker with full remote control over a PC. ToxicEye is managed by attackers over Telegram, communicating with the attackers‘ server and exfiltrating data to it.
securitybrief.com.au

Palo Alto Networks establishes cybersecurity consulting team: Palo Alto Networks has announced it is establishing a new cybersecurity consulting group to help enterprises respond to emerging threats as they navigate an increase in costly, crippling cyberattacks. The newly expanded Unit 42 combines formerly Crypsis security consultants, who respond to 1,300+ incidents a year, with the company’s veteran Unit 42 threat research team, which has been fighting emerging cyberthreats since 2014. Together, they will help organizations tackle the most complex cyberthreats — from ransomware to state-sponsored espionage.
prnewswire.com

– Advertisement –
IoT – Ticker -The physical world meets the digital one. Internet of Things as an interface that revolutionizes both the industry and everyday life. Get a weekly update from the world of „Internet of Things“. iot-ticker.net

Australian hospitals hit by cyber attack: Some Queensland hospitals and health services have resorted to manual processing patients after a cyber attack brought down the IT systems of UnitingCare Queensland. UnitingCare is the second Australian provider of health services to be crippled by a cyber attack in the last six weeks after Victoria’s Eastern Health was taken offline last month.
ia.acs.org.au

Cyber-attack hackers threaten to share US police informant data: Washington DC’s Metropolitan Police Department has said its computer network has been breached in a targeted cyber-attack, US media report. A ransomware group called Babuk is reportedly threatening to release sensitive data on police informants if it is not contacted within three days. The FBI is investigating the extent of the breach.
bbc.com

NAS ransomware extorted 230,000 euros in just a few days: A group of blackmailers was able to hack unpatched Qnap NAS devices using the Qlocker malware. Within a few days, the ransomware group is said to have extorted almost 230,000 euros from their targets. Last week, Qnap warned its users and asked them to install patches on their devices as well as the latest security updates.
golem.de

Cyber security software: Investor Thoma Bravo takes over cybersecurity provider Proofpoint for 12.3 billion dollars it-times.de
Hacker: Ransomware attack on Apple producer: Apple is supposed to pay millions in ransom finanzen.net
Vulnerability: Messenger Signal hacks the FBI’s forensics tool golem.de
Passwords & login data: Hackers on the advance: How to recognize hacked accounts finanzen.net
IT: Security gap in Apple AirDrop scinexx.de

– Advertisement –
African Edition – The weekly newsletter that provides you with hand-picked news about current discussions and news from Africa: from socio-political developments to African-European relations. The continent at a glance. african-edition.com

NUMBER OF THE WEEK

Compared to the previous year, 62% more German companies are investing in cybersecurity in 2021.
it-daily.net

BACKGROUND

Software data leak affects two Berlin Covid testing centers: A security gap enabled unauthorized persons to access Covid-19 test results and sensitive data such as addresses, names and dates of birth, and even times of Covid test appointments. In total, data from 45,000 appointments was publicly visible. The security gap has since been closed. In the past few months there have been several similar attacks in which data from people tested for Covid-19 was openly available on the internet.
tagesspiegel.de

Facebook ignores email security loophole: Just a few weeks ago, more than 500 million Facebook users were exposed to a data breach that revealed a myriad of personal information. Facebook is now faced with another data privacy concern. Per a report from Ars Technica, a security researcher recently demonstrated how something called ‚Facebook Email Search v1.0‘ can be used to link Facebook accounts to the email addresses associated with them. This works regardless of whether a user has set their email to be public or private. While this sounds like something Facebook would want to address ASAP, the researcher claims Facebook told him that the issue wasn’t „important“ enough to be fixed.
screenrant.com

QUOTE

„Ransomware has become a serious threat, both in scale and severity.“
Jeremy Fleming, the head of the British Government Communications Headquarters (GCHQ), on the accelerated connectivity in the net and the poor cybersecurity of companies and users.
silicon.de

SECURE?

Hackers attack CSU campaign for online memberships: Germany’s CSU party has reported a hacker attack on its campaign for online memberships. According to CSU General Secretary Markus Blume, thousands of fake registrations were generated. The party’s IT department was able to identify the false registrations. The party had recently seen an increase in requests for online membership, some of which may have been fake.
handelsblatt.com

Newsletter subscription

Subscribe to our free weekly newsletter for a compact overview of safety and security topics:

Safety-Security-Ticker

More digital news briefings

Our political briefings