fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Hackers Target EU Commission, COVID-19 Cold Chain Supply Orgs

Hackers Target EU Commission, COVID-19 Cold Chain Supply Orgs

IBM X-Force warned of threat actors actively targeting organizations associated with the COVID-19 vaccine cold chain in a large scale spear-phishing campaign that has started three months ago, in September 2020.

Cold chain orgs are an essential part of storing and delivering the COVID-19 vaccine at safe temperatures, minus 70 degrees Celsius for the one made by Pfizer and minus 20 Celsius for the one developed by Moderna.

“Spear-phishing emails were sent to select executives in sales, procurement, information technology and finance positions, likely involved in company efforts to support a vaccine cold chain,” IBM X-Force threat analyst Claire Zaboeva said in a report published earlier today,

“We also identified instances where this activity extended organization-wide to include help and support pages of targeted organizations.”

European Commission target in attacks

The European Commission’s Directorate-General for Taxation and Customs Union is among the targeted entities, next to energy and manufacturing organizations, as well as companies from the software and internet security industry sectors.

Also Read: Website Ownership Laws: Your Rights And What These Protect

Successful attacks on this European Union entity could directly impact other targets across 27 EU member states and other similarly high-profile targets.

This phishing campaign has focused attacks on global organizations with headquarters around the world, ranging from Germany, Italy, South Korea, and the Czech Republic to greater Europe and Taiwan.

The hackers’ end goal seems to be the harvesting of credentials later to be used in further compromise and collection of information on COVID-19 vaccine distribution.

DHS-CISA also issued a warning coordinated with IBM X-Force’s report alerting organizations involved in COVID-19 vaccine storage and transport as part of the Operation Warp Speed (OWS) mission to review the indicators of compromise uncovered by IBM’s research team and include them in their defenses.

In their phishing messages, the attackers impersonate a business executive from Haier Biomedical, a Chinese company known as “the world’s only complete cold chain provider” and as a qualified supplier for The Vaccine Alliance’s Cold Chain Equipment Optimization Platform (CCEOP) program.

Phishing email (IBM X-Force)

“While firm attribution could not be established for this campaign, the precision targeting of executives and key global organizations hold the potential hallmarks of nation-state tradecraft,” Zaboeva added.

“Without a clear path to a cash-out, cyber-criminals are unlikely to devote the time and resources required to execute such a calculated operation with so many interlinked and globally distributed targets.

“Likewise, insight into the transport of a vaccine may present a hot black-market commodity, however, advanced insight into the purchase and movement of a vaccine that can impact life and the global economy is likely a high-value and high-priority nation-state target.”

Also Read: Best Privacy Certification: 3 Simple Steps On How To Achieve

COVID-19 cold chain also targeted by ransomware

Cold storage giant Americold was hit by a cyberattack as BleepingComputer reported last month which forced it to shut down its computing systems.

“On November 16, 2020, Americold Realty Trust [..] determined that its computer network was affected by a cybersecurity incident,” the company said.

“As a precautionary measure, the Company took immediate steps to help contain the incident and implemented business continuity plans, where appropriate, to continue ongoing operations.”

“Security, in all its forms, remains a top priority at Americold, and the Company will continue to seek to take all appropriate measures to further safeguard the integrity of its information technology infrastructure, data and customer information,” Americold later BleepingComputer in a statement.

While Americold was not publicly confirmed as being an organization involved in the COVID-19 cold chain, airport industry news website Air Cargo World has reported that the Chicago Rockford Airport wants to partner with Americold for storing COVID-19 vaccines before distribution.

Even though Americold has not provided further details regarding the November attack, numerous sources have told BleepingComputer that it was a ransomware attack. The ransomware gang behind the incident remains unknown.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us