In the past year, hackers have focused on attacks on companies and the exploitation of vulnerabilities. Massive cyber attacks of the type WannaCry that shook the world in 2017, last year managed to avoid. But cybermedicine brought a lot of trouble proving that global companies before the hackers are still vulnerable.
Hackers stole more than $500 million from Japanese crypto currency exchange
One of the largest cryptocurrency exchanges Japan — Coincheck — confirmed on Friday, January 26, the fact of theft of funds from the platform. In total claimed about the theft of 58 billion yen ($533 million) in the cryptocurrency NEM (XEM).
Coincheck has suspended operations with NEM and other Althingi after of the company’s purse in an unknown direction were bred more than 100 million XRP (about $123,5 million). Simultaneously, there were unconfirmed at the time reports that unknown attackers withdrew from the stock exchange another $600 million in NEM.
And a bit later representatives of Coincheck has spent a press-conference on which officially reported the loss of 58 billion yen. As mentioned in the message Coincheck, was also suspended trading of all types of scriptaction, in addition to bitcoin, the site is temporarily not accepting new investment in the NEM tokens.
What is happening with Coincheck reminded users of the exchange, the history of Japanese Mt Gox platform, which in 2014 became the target of hackers, a single lost 850 thousand bitcoins, and was forced to declare bankruptcy.
Similar to WannaCry virus attacked the Boeing company
Boeing was attacked by the virus like ransomware WannaCry, told the New York Times, citing a letter circulated within the company.
The document, signed by the chief engineer of Boeing Commercial Airplane Michael Vandervell, said that the virus can spread to the software aircraft, as well as the production system. He urged his colleagues to exercise caution, noting that the virus “spreads”. On the Boeing page on Twitter said that the media had exaggerated the scale of cyberslam.
Details of cyber attacks, including the intended use of the virus WannaCry or the like, while Boeing refused to disclose.
Virus-extortionist WannaCry (WannaCrypt) in may 2017, blocked the work of several hundreds of thousands of computers around the world. He blocked the computers and required the transfer of money for the restoration of the access. Vulnerable computers with system Windows, which was not have a prerequisite update installed. The virus WannaCry then the injured included Russian state institutions and the British hospital.
From Facebook leaked information about 3 million users
Personal data of about 3 million Facebook users that used the application of psychological tests were available for four years, according to the publication New Scientist, citing its own investigation.
Data were collected through project, University of Cambridge — application myPersonality. It was launched in 2007 and offered users to pass psychological tests and quick results. While a certain number of users agree to share their personal data from Facebook profiles.
Results of psychological tests used by the academics of the University of Cambridge who had it stored this data on the website with “insufficient precautions” for four years, says the investigation. During these years, the access to user data, the hackers could get “without much difficulty”, the newspaper notes.
It is noted that the tests were more than 6 million people, about half of them shared with the project data from their accounts on Facebook. To get access to the full dataset, it was necessary to register as a co-author of the project. More than 280 people from nearly 150 organizations have done so, including researchers from universities and employees of Facebook, Google, Microsoft and Yahoo!. However, those not registered could find the password to access the data via Internet searches. The app also collected information on the status 22 million Facebook users and demographic data of 4 million users.
Hackers stole personal data of 2 million customers, T-Mobile
International mobile operator T-Mobile has revealed details about a recent attack in which attackers gained access to 2 million accounts of customers of the company. According to T-Mobile, as a result of hacking hackers stole “some” information: names, addresses, email, accounts, and other data. Credit card numbers, passwords and social security numbers (the main document in the United States) were not affected.
In an official statement, the operator declares that the Department for cyber security detected an unauthorized access to the databases on Monday, August 20. Representative T-Mobile in the commentary edition Motherboard confirmed the burglary, adding that the theft affected accounts, “a little less than 3%” of the total number of users, of whom there are 77 million the Exact number of accounts affected by cyber attack, a company spokesman did not name.
Who is behind the attack is still unknown, but I suspect members of a certain “international hacker group”. In T-Mobile report that I can’t disclose the details of a cyber attack and have no information whether the attackers are part of a Pro-government hackers or just cyberware. The statement said that all customers whose accounts have been affected during a cyber attack, will be informed via SMS.
This is the second time hackers gain access to customer data on T-Mobile. In 2015, the attackers stole data of about 15 million American subscribers as a result of hacking one of the servers of the company Experian who check credit ratings consumers.
Chinese hack chips hacked equipment 30 companies in the U.S.
In early October, Bloomberg published an article which claimed that Chinese hackers tried to spy on American companies using microarrays. According to sources, the Agency, the spy chips had infiltrated motherboards intended for servers, used by companies like Apple and Amazon. Sources claimed that this was in the build stage equipment for factories in China who are contractors to the world’s largest manufacturer of motherboards Supermicro.
Subsequently, Apple and Amazon denied the allegations, saying that there is no such problem, the secret services of different countries, including the USA, confirm this. Apple recently sent to the Congress an official letter in which he harshly refuted the statements of Bloomberg about the Chinese bugs. In Supermicro also rejected accusations by Bloomberg.
Hackers stole data of 500 million customers of Marriott
One of the world’s largest hotel chains, Marriott International, announced the data breach of 500 million customers. It is the largest hacking in 2013 when a cyber criminals were data 3 billion Yahoo! users. The company says that the hackers in 2014, got access to the database of Starwood, which is owned by Marriott, and manages networks Sheraton, St. Regis, Le Méridien, W Hotels, Four Points by Sheraton.
In the hands of the attackers was a name, phone number, passport number, email address, mailing address, date of birth and sex not less than 327 million people. Marriott does not exclude the possibility that cybercriminals could steal data on Bank cards, which are stored in an encrypted form. There are also noted that easily available information, Starwood Preferred Guest (SPG), namely data about the account, date of birth, gender, time of arrival and departure, reservations and preferences.
The company said it will notify about the cyber attack of all customers who were in the database. Marriott International said that to remedy the situation, took the necessary measures, including reported the incident to law enforcement authorities, but declined to comment further. After the publication of this information, the company’s shares fell more than 5%.
Hackers three years read the correspondence of European diplomats
Unknown hackers for several years had access to the diplomatic correspondence in the EU and have downloaded thousands of letters, according to the newspaper The New York Times, citing data from Area 1 dealing with issues of cybersecurity. Hackers gained access to the European diplomatic channels and years of collected letters to EU officials, in which they were raised about trump, of Russia, China and Iran’s nuclear program.
The company Area 1 shared with the newspaper with information from 1.1 million of letters of EU diplomats. According to the newspaper, the hackers gained access to the correspondence via a European communications network COREU. Among the correspondence was foreign policy, taxes and trade, terrorism, migration, description of the various meetings.
Among the compromised data were weekly reports from the EU delegations in Russia, Kosovo, Serbia, Albania, China, USA and Ukraine, the newspaper writes. For example, in a letter to European politicians described their impressions of the meeting, trump and Putin in Helsinki: according to them, the summit was “successful” (at least for Putin).
The purpose of a cyber attack affecting European correspondence, was not the publication of the stolen materials, according to the newspaper’s source. On the contrary, it was “purely a spy issue,” the newspaper writes. Targets of hackers, according to the newspaper, more than 100 organizations, many of whom did not know about the hacking until not received a message from Area 1.
According to experts, the methods that hackers used over a three-year period resembled those which have long used an elite unit of the people’s liberation army of China. It is also noted that hackers had gained access to diplomatic channels of the U.S. and the correspondence of foreign Ministers around the world.
Read more •••