Cyber News

Monday, 28th January 2019

As a valued member of the CIP network, you receive this information which is gathered from current, open source data supplied through contacts within diplomatic posts, law enforcement agencies & UK intelligence services.

This brief is supplied in partnership with Dilitas, a UK-based International Risk & Security Management company. This information is intended to keep you informed of current security situations and risks within the UK and internationally. Please forward this briefing to colleagues.

BRIEFING

• The drone manufacturer DJI has discovered millions of dollars worth of fraud committed by its employees, the company has announced (via Bloomberg). The company has said it expects the losses from the fraud to amount to around 1 billion yuan (around $150 million USD) and that “a number” of its employees have been fired over the discovery.

• The Ministry of Justice is rushing to fix IT issues affecting courts across England. Lawyers say trials have been delayed, jurors are unable to enrol and witness statements are inaccessible.

• Google has been fined 50 million euros (£44m) by the French data regulator CNIL, for a breach of the EU's data protection rules.

• A crypto-currency website has found that the virtual money exchange Cryptopia was still losing funds to hackers days after the police got involved. Elementus analysed a public database of crypto currency transactions, concluding that the total amount siphoned from the New Zealand exchange was closer to $23 million than the $5m previously reported. It found the hackers started draining Cryptopia's digital wallets late on 14 January, the day before the police began investigating.

• Trojan malware attacks against business targets have rocketed in the last year, as cyber criminals alter their tactics away from short-term gain and in-your-face ransomware attacks towards more subtle, long-term campaigns with the aim of stealing information including banking information, personal data and even intellectual property.

• MH370 was targeted and taken over by cyber hackers, according to an expert speaking in a new documentary ... ‘The Missing Plane: MH370’ features an interview with cyber defence expert Chris Roberts, where he claims the plane was the victim of hacking.

• The Federal Bureau of Investigations is investigating an attempt by hackers to withdraw money late last year from bank accounts held by the Midcoast Regional Redevelopment Authority.

• A new report is warning of an increase in the number of multivector attacks against cloud infrastructure over the past few months particularly targeting Hadoop databases. Detailed by researchers at security firm Securonix Inc., the attacks often combine cryptomining, ransomware and botnet malware all in one and primarily exploit unpatched vulnerabilities on cloud infrastructure.

ABOUT CIP

CIP are specialist cybersecurity and digital risk consultants, global leaders in PKI discovery and management via the Whitethorn product suite. CIP security consultants work across defence, financial services, CNI and manufacturing to address critical risk, protect hard-won assets and enable communities of trust.

To learn more about what CIP can do for your organisation, please visit CybersecIP.com

If you require more specific information or for assistance with your cybersecurity challenges, please contact Claire via info@cybersecip.com.