Global Cyber Pulse: 23 September, 2024

September 23, 2024 | Cybersecurity
By Ashwani Mishra, Editor-Technology, 63SATS

Lancashire schools hit by a ransomware attack disrupting IT systems, hacktivist group ‘Twelve’ wages cyber warfare on Russian targets, LinkedIn halts AI model training in the UK amid privacy concerns, Ukraine bans Telegram app over fears of Russian espionage, and Wells Fargo notifies consumers of a data breach affecting sensitive information—stay tuned for more global cyber updates and trends.

Lancashire Schools Hit by Ransomware Attack: IT Systems Disrupted

Schools across Lancashire are facing major disruptions after a ransomware attack targeted their computer systems, affecting most of their IT infrastructure. Dean Logan, CEO of Fylde Coast Academy Trust, confirmed that the trust had been compromised by ransomware, severely limiting system access.

While it remains unclear whether the ransomware attack demanded payment from the schools, Logan stated that it may take days to fully assess the damage and restore operations. This incident highlights the increasing threat of ransomware attacks on educational institutions.

Hacktivist Group ‘Twelve’ Wages Cyber Warfare on Russian Targets

The hacktivist group known as Twelve has been launching destructive cyber attacks against Russian entities, leveraging publicly available tools. Unlike typical ransomware attacks, Twelve encrypts victims’ data and then uses a wiper to destroy infrastructure, leaving no chance for data recovery, according to Kaspersky.

The group, which formed after the onset of the Russo-Ukrainian conflict, focuses on causing maximum damage rather than seeking financial gain. Twelve has also been involved in hack-and-leak operations, sharing exfiltrated data on their Telegram channel.

Dell Investigates Data Breach After Hacker Leaks Employee Information

Dell is investigating claims of a data breach after a hacker, identified as “grep,” leaked information about over 10,000 employees on a hacking forum. The data allegedly includes employee names, unique identifiers, and partner information. The hacker claims this breach occurred in September 2024.

Dell has yet to confirm the full extent of the breach but has stated that it is actively investigating the situation. The leaked data can reportedly be purchased for a minimal fee on BreachForums.

Ukraine Bans Telegram App Over Fears of Russian Espionage

Ukraine has officially banned the use of Telegram by government officials and critical workers due to concerns that Russian intelligence services could be using the platform to spy on communications. The National Security and Defence Council made the decision after receiving intelligence from Ukraine’s GUR military agency regarding Russia’s ability to intercept Telegram messages.

This move comes amid growing fears that the platform is vulnerable to espionage during the ongoing conflict with Russia.

LinkedIn Halts AI Model Training in the UK Amid Privacy Concerns

LinkedIn has temporarily stopped using UK-based data to train its generative AI models after privacy watchdogs and experts raised concerns. The Information Commissioner’s Office (ICO) flagged potential breaches in user privacy related to the platform’s use of personal data for AI training.

LinkedIn has agreed to halt the practice while it engages with the ICO and reevaluates its data handling practices, especially concerning the ethical use of AI.

Wells Fargo Notifies Consumers of Data Breach Affecting Sensitive Information

Wells Fargo Clearing Services has reported a data breach affecting consumer names, Social Security numbers, and brokerage account information. The company discovered unauthorized access to its IT network, prompting the notification to impacted individuals and an investigation by the Attorney General of Massachusetts.

This breach marks yet another incident in a growing trend of financial institutions facing cybersecurity vulnerabilities.