fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

UK Govt Gives Malware Infected Laptops To Vulnerable Students

UK Govt Gives Malware Infected Laptops To Vulnerable Students

Some of the laptops distributed by the UK Department for Education (DfE) to vulnerable students have been found to be infected with malware as reported by the BBC.

The devices are given out for free by the government to support disadvantaged students unable to access remote education during the COVID-19 pandemic, including children and young people who have no digital devices, have only a smartphone, or share a single device with other family members.

DfE also partnered with the mobile network providers to give the students access to free data to be able to attend remote school while they learn from home.

Infection is not widespread

However, as revealed by Bradford Schools teachers, some of the files found on the government-provided Windows laptops were infected with malware as discovered while preparing the devices for delivery to students.

“Upon unboxing and preparing them, it was discovered that a number of the laptops were infected with a self-propagating network worm,” according to one of the teachers.

DfE has already delivered more than 800,000 laptops and tablets until January 2021 to schools, academy trusts (trusts), and local authorities (LAs) around the UK.

“We are aware of an issue with a small number of devices,” a DfE official told the BBC. “And we are investigating as an urgent priority to resolve the matter as soon as possible.”

Also Read: 15 Best Tools For Your Windows 10 Privacy Settings Setup

“DfE IT teams are in touch with those who have reported this issue. We believe this is not widespread.”

The Gamarue botnet malware

The malware found on the infected laptops is Gamarue (aka Andromeda), a modular malware strain known to be commonly used by Russian and Eastern European cybercriminals.

Gamarue is sold on underground cybercrime markets and it is capable of allowing attackers to take control of compromised devices using a Teamviewer plugin.

It also has support for keylogger, rootkit, Socks4/5 proxy server, and formgrabber plugins which allows it to look keystrokes, gain persistence, reroute malicious traffic, and steal web browser input data, respectively.

It’s also capable of modifying the computer’s settings, stealing user information and documents. PCs commonly get infected with Gamarue via previous infections, through exploit kits while browsing compromised websites, and via malicious email attachments.

Gamarue malware attack chain (Microsoft)

Some Gamarue variants have worm capabilities that enable the malware to spread to other devices via infected removable devices such as portable hard disks and USB flash drives.

However, since 2011 when the first samples were spotted in the wild, Gamarue has mainly been used to deliver a huge list of other malware payloads including but not limited to the Petya, Troldesh, and Cerber ransomware, the Kasidet malware (also known as Neutrino bot) used for DDoS attacks, the Lethic spam bot, as well as Ursnif, Carberp, and Fareit info-stealing malware.

Also Read: How Formidable is Singapore Cybersecurity Masterplan 2020?

While Microsoft disrupted the Andromeda botnet by taking down its servers in a coordinated global operation with law enforcement and other partners in 2017, the malware still infects devices on a daily basis to this day using the removable drive spreader module.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us