Greece’s Land Registry Has Been Attacked On A Scale That I Have Never Seen Before

Posted in Commentary with tags on July 23, 2024 by itnerd

From the “I can’t believe the scale of this” department, comes this story where Greece’s Land Registry has been hit by 400 cyberattacks that have resulted in what they call a “limited scale” data breach.

Mind. Blown.

I’m going to come back as to why my mind is blown. But first, here’s the relevant details:

The Land Registry agency in Greece has announced that it suffered a limited-scope data breach following a wave of 400 cyberattacks targeting its IT infrastructure over the last week.

The agency said hackers managed to compromise employee terminals and steal 1.2 GB of data, corresponding to roughly 0.0006% of the total data held by the government organization.

The stolen data reportedly does not contain any citizens’ personal information but primarily consists of typical administrative documents, the exposure of which is not expected to impact the registry’s operations.

The announcement also mentions that the hackers attempted to create a malicious user to infiltrate the agency’s central database, but they failed.

One of the database’s backups, which are updated daily, was accessed by the unauthorized actors. However, the subsequent attempt to exfiltrate the data to an external server was blocked.

The Land Registry’s internal investigation, aided by the Cybersecurity Directorate of the General Staff of National Defense, has not found any evidence of ransomware having been deployed on the breached systems.

Emergency actions to reduce the risk of ransomware have been taken, like terminating all VPN access to block malicious users.

Rogier Fischer, CEO, Hadrian had this comment:

“Based on the information provided, the data breach at the Land Registry agency in Greece doesn’t seem to fall under the GDPR’s mandatory disclosure bracket. The stolen data amounted to 1.2 GB or 0.0006% of the agency’s total data, and it primarily consisted of administrative documents without any citizens’ personal information,”

“Since the breach did not affect personal data or disrupt the agency’s operations, it likely doesn’t pose a significant risk to individuals’ rights and freedoms.”

“Despite the large number of cyberattacks, the agency successfully blocked attempts to exfiltrate data and thwarted further malicious activities. Such proactive approach helps maintain trust and demonstrates commitment to data protection, even if formal disclosure isn’t required,”

While I applaud this organization for shutting this down, it still blows my mind that the threat actors tried as hard as they did to try and set up shop and steal data. This illustrates why you need robust, multi layered defences to not only keep the bad guys out, but to respond if they get in.

Leave a comment »

Fubo Expands Soccer Coverage with 2024 DIRECTV Soccer Champions Tour

Posted in Commentary with tags on July 23, 2024 by itnerd

FuboTV Inc. announced today it has acquired live streaming rights to the 2024 DIRECTV Soccer Champions Tour in Canada. This collaboration will offer fans unparalleled access to six iconic matches featuring some of the world’s best football clubs in the coming weeks.

The tour will feature five elite European soccer clubs – Real Madrid, FC Barcelona, AC Milan, Manchester City FC, and Chelsea FC – competing across six legendary stadiums in the United States including Yankee Stadium in New York City and Soldier Field in Chicago.

DIRECTV Soccer Champions Tour Schedule:

●        Saturday, July 27: Yankee Stadium, New York City, 6 p.m. EDT

●        Tuesday, July 30: Camping World Stadium, Orlando, 7 p.m. EDT

●        Wednesday, July 31: Soldier Field, Chicago, 8:30 p.m. EDT

●        Saturday, August 3: MetLife Stadium, New Jersey, 7 p.m. EDT

●        Tuesday, August 6: M&T Bank Stadium, Baltimore, 7:30 p.m. EDT

●        Tuesday, August 6: Bank of America Stadium, Charlotte, 7 p.m. EDT

The agreement further solidifies Fubo’s position as Canada’s premier soccer streaming platform. Fubo also offers subscribers exclusive soccer content in Canada, including English Premier League available in 4K, and expansive sports coverage through partners like CBC, MLB.TV, NBA TV Canada and OneSoccer. Fubo’s growing entertainment and news offering includes dozens of live TV channels and over 12,000 TV shows and movies on demand.

Subscribers can stream Fubo programming in Canada anywhere and at any time, from their mobile device, connected TV or web browser. The Fubo app is available on Amazon Fire TV, Android, GoogleTV, Apple TV, Chromecast, Hisense, iOS, LG TV, Roku and Xbox One.

For more information, visit www.fubo.tv.

The DIRECTV Soccer Champions Tour was represented by Sportfive in deal negotiations with Fubo.

Leave a comment »

Equinix to Extend its Digital Infrastructure Platform to the Philippines

Posted in Commentary with tags on July 23, 2024 by itnerd

 Equinix, Inc. today announced its planned entry into THE PHILIPPINES with the acquisition of three data centers from Total Information Management (“TIM”), a leading technology solutions provider.

Following the recently announced expansions in MALAYSIA and INDONESIA, this strategic move aims to help businesses expand and capitalize on the digital opportunity of the fast-growing SOUTHEAST ASIA region. The all-cash transaction represents a multiple of approximately 15x the projected EBITDA at full utilization and is expected to close in 2H 2024, subject to customary closing conditions.

The acquisition of the three high-performance data centers will provide capacity for Equinix to address the digital needs of local and overseas businesses in the Philippines. Enterprises, cloud and IT service providers, and network service providers around the world can leverage Platform Equinix to interconnect and exchange data privately and securely within a vibrant ecosystem of business partners and customers. Existing customers of TIM, including network and financial services companies, will also gain access to Equinix’s global ecosystems of more than 10,000 companies, including more than 2,000 networks and 3,000 cloud and IT service providers.

Southeast Asia’s digital economy grew to $218 billion in gross merchandise value (GMV) in 2023.1 In particular, the Philippines’ digital economy is expected to continue its upward climb toward $35 billion by 2025, growing at a compound annual growth rate (CAGR) of 20%.2 The country is also seeing a surge in demand for digital infrastructure services, driven by a highly engaged digital population,  booming e-commerce adoption and various government initiatives to promote digitization, such as the E-Government Masterplan 2022 and the Digi-Ed 2028 program.

Highlights / Key Facts

  • The three carrier-neutral and interconnection-rich data centers include more than 1,000 cabinets of capacity and land for further expansion. These data centers will support the digital transformation of local and global customers looking to expand into the Philippines.
  • As part of Equinix’s ambitious investment plans in the Asia-Pacific region, the company will expand in new markets including Jakarta, Indonesia (JK1) and Chennai, India (CN1) later this year. With the capacity allocation by the government, Equinix will also expand its footprint in Singapore. These expansions will reinforce Equinix’s leadership in the region and support the digital transformation of customers expanding into new markets.
  • Today, the global footprint of Platform Equinix spans 260 data centers across 71 metros and 33 countries. In Asia-Pacific, Equinix currently operates 56 data centers in 14 key metros across Australia, China, Hong Kong, India, Japan, Korea, Malaysia and Singapore, including the recently opened data centers in Johor (JH1) and Kuala Lumpur (KL1) in Malaysia.

Leave a comment »

TELUS Community Boards reach milestone with $100 million in donations to Canadian charities

Posted in Commentary with tags on July 23, 2024 by itnerd

TELUS is proud to announce a major milestone in charitable giving in Canada, with TELUS’ Community Board program reaching $100 million in donations to local charities across the country. Funded by the TELUS Friendly Future Foundation, TELUS’ Canadian Community Boards are composed of local business and community leaders and are empowered to make decisions about where charitable grants are best allocated based on need and maximum impact. As youth-serving organizations struggle to keep up with the demand for their services, and with the number of Canadians making charitable donations on the decline for the eleventh consecutive year, TELUS Community Board grants have remained an important source of funding for grassroots charities nationwide for over two decades. Each year, over $6 million in grants, made possible by TELUS Friendly Future Foundation, are contributed to support grassroots community-based health and education programs that help Canadian youth and their families thrive.

With 13 Community Boards across Canada, TELUS is continuing to expand into new communities, providing even more youth with new opportunities that help facilitate life-changing connections, nurture a sense of belonging, and empower them to thrive. Over the past two years alone, TELUS has expanded the geographical area of eight of its Community Boards including, Interior and Northern B.C., Vancouver and Coastal, Manitoba and Saskatchewan, Edmonton and Northern Alberta, Calgary and Southern Alberta, Ottawa and Eastern Ontario, Barrie and Central Ontario, and Greater Toronto and Hamilton Area.

To apply for a TELUS Community Board grant, organizations must be a Canadian registered charity and meet the eligibility funding criteria requirements, including support for youth, up to age 29, experiencing health or education barriers that inhibit their ability to reach their full potential. With the next round of funding opening on August 27 and closing October 8, local charities are encouraged to visit friendlyfuture.com/communityboards to learn more and submit an application.

Individuals and organizations across Canada are invited to partner with TELUS and TELUS Friendly Future Foundation in support of grassroots charities nationwide and our efforts to help address the ongoing and urgent needs facing underserved youth. Visit friendlyfuture.com/donate to give.

Leave a comment »

Oil rig data leaks raise terrorism threat

Posted in Commentary with tags on July 23, 2024 by itnerd

In November 2023, Cybernews researchers discovered an openly accessible storage with over 1.5 million sensitive files. The files contained personal employee information and operational data from multiple energy companies. 

The research team has been able to attribute the leak to WorldLive LLC, a Louisiana-based company that specializes in tracking employee training, managing assets, and creating maintenance schedules for energy companies.

Some of the examined files were connected to ExxonMobil and Guyana Revenue Authority, JP Oil Holdings, Broussard Brothers, and Noble Energy, acquired by Chevron Corporation. However, given the scope of the leak, more companies could be affected.

The leak was caused by missing authentication on Azure Cloud Storage Blob – a cloud-based service from Microsoft Azure that allows users to store and manage large amounts of unstructured data such as text, binary data, and media files.

The leaked data includes:

  • Employee names 
  • Addresses
  • Phone numbers
  • Dates of birth
  • Social Security numbers (SSN)
  • Physical examination and drug test forms
  • Scanned documents
  • Employee certificates
  • Templates for employee cards
  • Employee resumes with photos
  • On-site assessment forms with photos of critical infrastructure


The risk of attacks

Cybersecurity neglect by the companies’ service provider is highly concerning, as the energy sector is considered a critical infrastructure. Apart from the devastating effects in the case of an attack, the sector is highly targeted by malicious actors.

For the full report, visit: https://cybernews.com/security/worldlive-oil-rig-data-leak/

Leave a comment »

Premier East Coast Cybersecurity Event Returns to New York City in September

Posted in Commentary on July 23, 2024 by itnerd

Cybertech NYC 2024, the largest East Coast event for the cyber industry, will take place on September 5, 2024, at the Metropolitan Pavilion in Chelsea, New York. This prestigious conference will gather over 1,500 attendees, including CISOs and other industry professionals, key solutions providers, high-ranking government officials, and innovative startups.

The event will feature an exhibition hall, a record-breaking Startup Pavilion, and sector-specific special events covering critical topics such as:

  • AI and cybersecurity
  • Bridging the gap in cyber talent
  • Cyber and law enforcement
  • Cyber crisis management
  • Cyber in healthcare
  • Data security
  • Fake news and elections
  • Fintech security
  • Successful entrepreneurship
  • Supply chain security
  • Threat intelligence
  • Women in cyber
  • and more!

A literal who’s who in cybersecurity, government, and investing are set to present, including speakers from Nasdaq, NBC News, Nvidia, The Wall Street Journal, Visa and many others. The conference includes innovative breakouts such as:

  • Invest in the Best – This unique closed-door event provides pre-selected startups with an unparalleled opportunity to connect with leading global investors. Participation is by invitation only and space is limited. Startups and investors can apply at: https://nyc.cybertechconference.com/Invest_in_the_best.
  • Startup Pavilion – The record-breaking Startup Pavilion will showcase over 100 innovative startups from around the globe, highlighting groundbreaking solutions and technologies in cybersecurity. The pavilion offers a unique platform for startups to connect with industry leaders, investors, and potential partners, fostering collaboration and driving innovation in the cybersecurity sector. The record participation underscores the growing importance and dynamism of the cybersecurity landscape. To apply, visit: https://nyc.cybertechconference.com/startupreg.
  • Cybertech Talent Arena: In collaboration with TechDay, the talent arena will explore the future of cyber talent development with workshops, a competition, and talent zone focused on human capital in the cyber age. For more information, visit: https://nyc.cybertechconference.com/talent_arena.

Cybertech NYC 2024 promises to be a hub for networking, knowledge exchange, and showcasing groundbreaking cybersecurity solutions. With participants ranging from business decision-makers to C-level executives, this event is an unparalleled opportunity for professionals to connect and collaborate.

Event Details:

For media wishing to attend, register for a press, here: https://nyc.cybertechconference.com/registration.

To become a sponsor or exhibitor: https://nyc.cybertechconference.com/becomeasponsor.

For special rates and services: https://nyc.cybertechconference.com/delegationformnyc.

Leave a comment »

New Olympics Cyber Threat Targets VIP Transport Companies

Posted in Commentary with tags on July 23, 2024 by itnerd

Abnormal Security has revealed that French businesses, particularly those in the hospitality, transport, and tourism sectors, are at high risk of being targeted as they experience an influx of customers and transactions, making them prime targets for cybercriminals seeking to exploit the situation.

Abnormal Security researchers have additionally identified a worrying trend in online chat rooms as the threat extends beyond Olympic ticket buyers with an observation of an uptick in data offered for sale and trade.

In an example of the growing cyber threat that emerged at the beginning of this month, a user on a popular cybercrime forum contacted an undercover security researcher, offering access to VIP transport companies in the Paris area. The seller highlighted the expected booking surge as the Olympics drew closer and disclosed they had access to the company’s Stripe, email, and invoice software.

Cybercriminals can exploit this type of access to send fraudulent emails impersonating Stripe, making customers susceptible to phishing attacks. They can also target employees within the business, exposing the company to risks such as invoice fraud, compromised financial information, and operational disruptions.

You can read the details here: https://abnormalsecurity.com/blog/french-companies-olympics-threats

Leave a comment »

L.A. County Courts Pwned In Ransomware Attack

Posted in Commentary with tags on July 22, 2024 by itnerd

This isn’t a good look. The L.A. County Courts, as in all of them, have been shut down because they were hit with a pretty devastating ransomware attack:

The attack was detected Friday and doesn’t appear to be related to the CrowdStrike software update that paralyzed Windows computers around the world and affected governments, airlines and other agencies last week, court officials said in a Sunday news release. 

This closure extended to all 36 courthouses in the county, and officials did not expect it to last beyond Monday.

“While the Court continues to move swiftly towards a restoration and recovery phase, many critical systems remain offline as of Sunday evening,” presiding Judge Samantha Jessner said in the release. “One additional day will enable the court’s team of experts to focus exclusively on bringing our systems back online so that the Court can resume operations as expeditiously, smoothly and safely as possible.”

The affected court systems span the My Jury Duty Portal and the court’s website, as well as the court’s case management systems, according to the release.

Rogier Fischer, CEO, Hadrian had this to say:

It was prudent from the court’s side to clarify that the whole incident is unrelated to the Crowdstrike-Microsoft incident, noted Rogier Fischer, CEO of Netherlands-based cybersecurity company Hadrian.”Apart from the legal obligations, it becomes a moral obligation of the key stakeholders of a cybersecurity incident to clear the air and shut the possibilities of any form of miscommunication,” he said.According to him, organizations hit by a ransomware attack must immediately execute these basic defense steps: isolate the infected systems and notify the respective IT department, senior management, and relevant authorities such as the FBI or CISA.”Investigate the scope of the attack, document your actions, and carefully decide whether to pay the ransom, consulting legal counsel and cybersecurity experts. Finally, restore systems from clean backups, implement stronger security measures, and communicate transparently with stakeholders while reviewing the incident to improve future responses,” he added. 

It appears that even the justice system isn’t immune from cybercrime. Thus it reinforces that everyone needs to take action to make cybercrime less devastating than it is now.

Leave a comment »

A New And Slightly Different Canada Post Delivery #Scam Email Is Making The Rounds

Posted in Commentary with tags on July 22, 2024 by itnerd

Today in my inbox I got a new Canada Post delivery scam email that I want to share with you. Let’s dive in.

Let’s start with what’s wrong with this email. For starters, Canada Post would never send you an email like this. Besides that, that there’s no name, address or tracking number on this email. Those should be immediate red flags. Then there’s this:

    An email address that isn’t Canada Post. #Fail.

    So far this is a pretty low effort scam email that is likely to have a success rate that is close to zero. But what would they be after. Not that you should, but I clicked on the “My Package” button and I got taken to this website.

    The first #Fail with this website is that if you look at the address bar, this website isn’t Canada Post as the real website is https://www.canadapost-postescanada.ca. So that should scare you into running from this website as quickly as possible. But let me go deeper to find out what their game is.

    I haven’t typed in a single thing and it somehow knows that a delivery attempt was made. How is that possible? It isn’t is the correct answer. But if you ignore that, I apparently owe $2.99. Seeing as there’s nothing that identifies me, I don’t know how that is possible as well.

    First it asks for your name and address. You can see that I filled in some information.

    And here we go. It’s asking for my credit card info. That’s interesting seeing as the email that I got said this.

    I guess they’re hoping that you won’t notice that part. Now I couldn’t get past this point as this website had code to validate that the credit card was legitimate. But I think that you get the point. It’s one of many Canada Post delivery scams that has a slightly different flavour in order to fool you. Thus if you see this email hit your inbox, delete it and move on with your life.

    Leave a comment »

    769 Million Records Exposed in Mexico’s Largest ERP Software Provider Data Breach 

    Posted in Commentary with tags on July 22, 2024 by itnerd

    Documents belonging to ClickBalance, Mexico’s largest Enterprise Resource Planning (ERP) technology providers, were exposed as reported by cybersecurity researcher Jeremiah Fowler.

    What happened: 769,333,246 records with a total size of 395 GB were exposed. The database contained email addresses, API keys, IP addresses, payments indicating the bank name, account number, ID numbers, and much more.

    Why it matters: A data breach of any company that provides ERP or data services can have severe potential long term consequences, as cyber criminals could exploit exposed credentials to gain unauthorized access to applications, databases, and other services.

    If you want to know more about Jeremiah’s findings you can read the full report here: https://www.websiteplanet.com/news/clickbalance-breach-report/

    UPDATE:  BullWall Executive, Carol Volk had this comment:

    “There is no escaping our reliance on the supply chain. The fact that so many links in that chain have not even the most basic cyber defenses in place, assures us that our data will be used against us and our networks in future attacks. Being prepared for that eventuality is our only option if we wish to remain in business. 

       “With the average recovery cost from a ransomware attack exceeding $2.7 million in 2024, events such as the ClickBalance data exposure remind us that Cyber defensive systems are table stakes and not optional. Seriously, when your data is freely available to hackers, including access tokens, API keys, secret keys, bank account numbers, tax identification numbers, and email addresses, you’d better be following best practices in your defensive stack and make sure you’ve included a ransomware containment system for the day your exposed data comes back to attack you.”

    Leave a comment »

    « Older Entries
    Newer Entries »