By Ashwani Mishra, Editor-Technology, 63SATS
Critical Start reports escalating global cyber threats in 2024, with Russian hackers targeting German Air Traffic Control, Toronto schools hit by ransomware, South Korea investigating Telegram’s role in sex crimes, a major cyber-espionage campaign uncovered, and a security researcher sued for sharing ransomware-leaked data.
Stay tuned from more such global news and updates in the cyber space.
Global Cybercrime Surge: Critical Start Reports on Escalating Threats in 2024
Global cybercrime continues to rise, with no signs of slowing down, as projected to grow steadily over the next five years. The Critical Start Cyber Research Unit (CRU) conducted an in-depth analysis of 3,438 high-priority alerts from 20 leading EDR solutions and 4,602 reports on ransomware and database breaches across 24 industries in 126 countries during the first half of 2024.
Key findings from the report highlight alarming trends:
Manufacturing and Industrial Products: This sector remains the most targeted, with 377 confirmed ransomware and data leak incidents in H1 2024.
Professional Services: A 15% increase in database leaks and ransomware attacks compared to 2023, with legal services and supply chains being primary targets.
Healthcare & Life Sciences: A significant surge in ransomware and data leak incidents, spiking by 180% in February 2024, driven by attacks on entities like Change Healthcare.
Russian Hackers Suspected in Cyberattack on German Air Traffic Control
German Air Traffic Control, Deutsche Flugsicherung (DFS), recently fell victim to a cyberattack suspected to be the work of the Russian-linked APT-28 hacking group, also known as Fancy Bear. While air traffic operations remained unaffected, the attack paralyzed DFS’s office communications, highlighting the ongoing cyber threats faced by critical infrastructure.
Toronto School Board Confirms Student Data Compromised in LockBit Ransomware Attack
The Toronto District School Board (TDSB) confirmed that a ransomware attack discovered in June compromised student information. The attack targeted a technology testing environment, impacting data from the 2023/2024 school year, including student names, grades, and birthdates. TDSB, Canada’s largest school board, is now addressing the breach’s implications.
South Korean Police Investigate Telegram’s Role in Online Sex Crimes
South Korean authorities have launched an investigation into Telegram’s potential involvement in the distribution of sexually explicit deepfake content. The investigation follows public outrage over digital deepfake pornography, often found in Telegram chatrooms, and aims to determine whether the encrypted messaging platform has been complicit in these illegal activities.
Major Cyber-Espionage Campaign Uncovered, Impacting 70+ Organizations Globally
Security researchers have uncovered a significant international cyber-espionage campaign targeting over 70 organizations across 18 industries. Beginning in August 2024, the campaign used phishing emails disguised as tax authority communications to deliver the “Voldemort” backdoor, with insurance, aerospace, and transportation sectors being heavily impacted.
Security Researcher Sued for Sharing Ransomware-Leaked Data
The City of Columbus, Ohio, has filed a lawsuit against security researcher David Leroy Ross, also known as Connor Goodwolf, for allegedly downloading and sharing data stolen during a ransomware attack. The attack, which occurred in July 2024, led to service outages and potential exposure of sensitive information, prompting the legal action against Ross.