ATM Skimmers, a Hacktivist, and an Attack on the WHO: May 24th-30th, 2020

Your Weekly Cybersecurity News Roundup

Another week wrapping up means another “Byte Sized News” roundup from the PlexTrac Team. This week we got many interesting stories and new developments in the industry that are sure to both entertain and inform our readers. As always, this series isn’t intended to provide readers with details on every story and topic, but rather to fill busy professionals in on the most compelling developments in the field.

You can learn more about PlexTrac as a company and useful cybersecurity platform here.

Without further ado, let’s get to this week’s biggest cybersecurity news stories!

Cybersecurity is Among Six Industry Sectors Booming During COVID-19

Our first story of the week from SCMagazine is one that many cybersecurity professionals will be pleased to hear. The COVID-19 pandemic has ravaged many companies and industries across the globe, but the cybersecurity industry is thriving. In fact, the cybersecurity industry exceeded $1.5 billion in funding in Q1 of 2020. The other five sectors in the top six were the following: Telehealth, Remote Meeting/Collaboration Software, Med/Biotech, Payments, and Edtech.

(Read the full article from SCMagazine here)

Stay-at-Home Orders Coincide with a Massive DNS Surge

The next article highlighted this week comes from Dark Reading and is also related to COVID-19. This article details that there has been a strong tie between national stay-at-home orders and the number of domain-name system (DNS) requests on websites. The analysis supporting this claim was conducted on 316 major sites across five industries. While the correlation could be due to many factors, many cybersecurity professionals believe that this spike is due to attackers attempting a massively heightened amount of denial-of-service (DDoS) attacks.

(Read the full article from Dark Reading here)

Researchers at Check Point Have Unmasked a "Hacktivist" Who Defaced Nearly 5000 Sites

Infosecurity Magazine brings us our next story for the week. This article focuses on someone who has been infamously known as “VandaTheGod” online. This individual had been posting his large string of exploits on social media since the year 2013. While his exploits were sometimes seen as altruistic in nature, they also strayed heavily into irredeemable actions like data and log-in theft. This breadcrumb trail of posts has ultimately led to the discovery of the attacker’s identity. VandaTheGod has now been identified by researchers at Check Point as an individual living in Uberlandia, a south-eastern municipality in Brazil.

(Read the full article from Infosecurity Magazine here)

ATM Skimmers Reportedly Had Protection from the Mexican Attorney General's Office

Our next story is a crazy one from Krebs on Security. The website claims that a group of Romanians operating an ATM company that bribed technicians to install bluetooth-skimmers in their ATMs had protection from a top anti-corruption official in Mexico. This news was brought to public attention by a formal complaint by several federal, state, and municipal officers. This complaint states that the attorney general’s office, which is responsible for combatting corruption, had initiated formal proceedings against them just for investigating the group’s participation in ATM skimming.

(Read the full article from Krebs on Security here)

Google Says That an Iran-Linked Hacker Targeted the WHO

Our last article of the week comes from Security Week. This article details a Wednesday report from Google which stated that an Iran-linked hacker group named “Charming Kitten” continues to target the World Health Organization (WHO) with attacks. These attacks, which reportedly have occurred since March 2nd, have been targeting account passwords. Additionally, it was reported that none of the attacks have been successful to this point, which is good news to hear. These statements come as yet another warning from Google that government-backed hackers are exploiting the COVID-19 pandemic with their attacks. These attacks have been carried out with many COVID-19 themed phishing and malware lures.

(Read the full article from Security Week here)

Check Out Our Latest Posts