Weekly Cyber News: 25th - 29th Nov 2024
The cyber security landscape keeps changing, with new threats and tools emerging every week. It can be easy to lose track of what’s happening, but we’ve rounded up the latest news you need to know about - keep reading to learn more.
Justice Concerns over Breached Prison Details
The Ministry of Justice has said it is aware of a data breach of prison blueprints, but has “taken immediate action to ensure prisons remain secure.”
According to media reports over the weekend, detailed layouts of prisons - said to include the locations of cameras and sensors - were leaked online. It is not clear which prison plans were affected.
UK Businesses Have Lost £55BN to Cyber-attacks In 5 Years
The report revealed trends in ransomware, genAI, and geopolitics in the cyber landscape.
UK businesses have lost around £44 billion in the past five years in revenue due to cyber-attacks, new research from Howden shows.
Over half (52%) of private sector firms reported at least one cyber-attack in the past five years as well, the research revealed.
Hackers Weaponize Old Avast Driver to Install Windows Malware
An old Avast Anti-Rootkit driver is being abused to deliver Windows malware, according to a report from cybersecurity firm Trellix.
This "Kill Floor" malware drops a copy of the kernel-level Avast driver, which allows it to continue its attack by disabling critical security systems on Windows PCs. The malware then runs different processes to assume control over the computer.
Nuclear Decommissioning Authority opens cyber security facility
The Nuclear Decommissioning Authority (NDA) group has launched a specialised cyber facility to accelerate collaboration across nuclear operators and the supply chain.
It said the Group Cyberspace Collaboration Centre (GCCC), situated in Herdus House in Cumbria, is a multi-functional space for partners to explore how new technologies can support mission delivery and facilitate security operations, cyber exercising and training.
David Peattie, NDA Group CEO, said: “The GCCC is further enhancing our collective ability to keep us safe, secure, resilient and sustainable in cyberspace.
“Enabling us to work together more closely means we can defend as one, benefitting the collective security of the individual organisations we serve.
'Major incident' declared at Merseyside hospital after 'cyber security' issue
A"major incident" has been declared at Arrowe Park Hospital this evening for "cyber security reasons". The Wirral hospital has told people to only attend the emergency department if they have a genuine emergency, stating that business continuity processes are in place and its focus remains on maintaining patient safety.
An email, seen by the ECHO and sent to staff members on Monday evening, said: "A major incident has been declared at the Trust due to a cyber incident and we are working to downtime processes."
One patient said that a message was announced on the hospital's overhead speakers which said they are declaring a major incident and non-emergencies should consider going home and coming back tomorrow.
领英推荐
Blue Yonder ransomware attack disrupts supply chains across UK and US
Blue Yonder, a supply chain software company serving clients across the UK and the US, has disclosed a ransomware attack that disrupted its private cloud services. The attack on 21 November 2024 impacted several key customers, including major grocery chains and Fortune 500 companies.
The Arizona-based firm, acquired by Panasonic in 2021, stated that the incident impacted its managed services hosted environment, but its Azure public cloud services remained unaffected. Blue Yonder confirmed the attack in an initial statement released last week and provided updates over the weekend, reporting “steady progress” in recovery efforts, but without providing a specific timeline for restoration.
More than 100 jobs to be created in West Midlands STEM skills drive
More than 100 specialist jobs are being created at two innovation-led companies as part of the West Midlands' goal of supporting the UK's digital and STEM skills drive. The investments include the opening of a new campus for a coding and AI educator.
Wolverhampton-based School of Coding & AI has confirmed plans to expand its operations into Birmingham, creating up to 100 tech-focused higher education jobs over the next three years. Established in 2017, the company works with hundreds of schools, colleges and businesses each year to strengthen digital skills by delivering courses in STEM, coding, computer science, AI and cyber security.
Over 17,000 Gamers May Be Hit by GodLoader Malware
Attackers use Godot Engine to execute crafted GDScript code to deliver malware.
More than 17,000 gaming systems may have been breached in attacks involving the new GodLoader malware.
According Check Point, since at least June 29, 2024, “cyber-criminals have been taking advantage of Godot Engine to execute crafted GDScript code which triggers malicious commands and delivers malware.”
Undetected by most anti-virus tools on VirusTotal, it is possible that more than 17,000 machines have been infected in just a few months.
Ransomware Strikes when Organizations Unknowingly Open the Door
How holidays, weekends and events such as mergers leave systems vulnerable.
The cyber threat landscape never sleeps, but threat actors are always looking to catch their victims napping.
Ransomware gangs are relentless and increasingly sophisticated, but they still look for the path of least resistance, regularly taking advantage of opportunities when organizations drop their guard, such as on weekends, holidays, or other times of distraction, according to new research by Semperis.
New cyber centre opens in UK
The UK's Nuclear Decommissioning Authority group has launched a specialised cyber facility in Cumbria to accelerate collaboration across nuclear operators and the supply chain, on the adoption of innovative technologies such as AI and robotics and enhancing their collective ability to successfully defend against cyber threats.
It said the Group Cyberspace Collaboration Centre (GCCC) provides a space for experts in cyber, digital and engineering to come together and share knowledge and learning on how best to adopt new technologies and defend against evolving threats.
If you want to keep your data safe from the latest cyber threats, then we can help - don’t hesitate to get in touch with the dedicated cyber experts at CSA.