fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Finnish Parliament Attackers Hack Lawmakers’ Email Accounts

Finnish Parliament Attackers Hack Lawmakers’ Email Accounts

Image: Magnus Fröderberg

The email accounts of multiple members of parliament (MPs) were compromised following a cyberattack as revealed today by the Parliament of Finland.

“Some parliament e-mail accounts may have been compromised as a result of the attack, among them e-mail accounts that belong to MPs,” Parliament officials said.

The malicious activity was detected by the parliament’s security team during the fall of 2020 and it is currently investigated by the National Bureau of Investigation (NBI).

Parliament Speaker Anu Vehviläinen said that this incident is a serious attack on Finnish society and democracy.

“We cannot accept any kind of hostile cyber activity, whether carried out by a governmental or non-governmental body,” Vehviläinen told yle.

“In order to strengthen cybersecurity, we need our own national measures as well as active action at the EU level and in other international cooperation.”

Also Read: PDPA For Companies: Compliance Guide For Singapore Business

Potential espionage attempt

Finland’s Central Criminal Investigation Department has begun looking into the Finnish Parliament data breach at the end of the autumn and the case is also being investigated as a suspected espionage incident.

“At this stage, an alternative is that unknown threat actors behind the data breach have been able to obtain information either to benefit a foreign state or to harm Finland,” NBI Detective Inspector Tero Muurman said in a statement.

“The intrusion has been directed at more than one person, but unfortunately we can not, without jeopardizing the ongoing investigation, tell how many people are involved.

“This incident is exceptional for Finland, serious because of the attack’s target and sad for the victims.”

Similar attacks against Norwegian and German Parliaments

Another Scandinavian country, Norway, disclosed a strikingly similar incident with attackers compromising email accounts belonging to Norwegian Parliament representatives and employees in August 2020.

Norway’s Minister of Foreign Affairs Ine Eriksen Søreide revealed in October that Russian state-sponsored hackers were behind the August 2020 cyber-attack, stealing data from each of the hacked email accounts.

After concluding the attack investigation, the Norwegian Police Security Service said earlier this month that the Russian state-sponsored APT28 hacking group was likely behind the attack.

APT28 operators hacked a large number of Stortinget email accounts via brute-force and logged into a limited number of accounts.

Russia officially denied Norway’s accusations saying that they aren’t based on evidence. “As usual, accusations are posed with no effort made to present any proof or to propose to discuss the incident at an expert level,” Konstantin Kosachev, the head of the Russian Federation Council Committee on Foreign Affairs, said in a statement.

In October, the Council of the European Union announced sanctions against multiple APT28 members for their involvement in the 2015 hack of the German Federal Parliament (Deutscher Bundestag) which also led to the breach of several parliament members’ email accounts.

Also Read: Trusted Data Sharing Framework IMDA Announced In Singapore

The same month, the US Cyber Command shared info on malware implants used by Russian hacking groups in attacks against several national parliaments, ministries of foreign affairs, and embassies.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us