Dublin Airport Staff impacted by MoveIT hack
More victims of the MOVEit cyber attack have been revealed. This time the financial details of some staff at Dublin airport have been jeopardised due to the airport’s third party professional service supplier, Aon being caught up in the MOVEit attack. The company used the file transfer tool resulting in the details of nearly 2,000 Dublin airport staff being compromised. Other businesses utilising Aon’s services have also been impacted.
"The DAA is providing support, advice and assistance to those employees affected by this criminal cyber-assault," the Irish airport authority declared, without providing any further information.
Dublin airport now joins an ever growing list of MOVEit hack victims and we can expect to see many more being revealed over the coming weeks and months.
Hackers claiming to be Wagner affiliated take down Russian Satellite Operator
Hackers, purporting to be affiliated with the mercenary Wagner Group that recently launched an attempted coup against the Russian government, have claimed responsibility for a cyberattack on Russian satellite communications operator, Dozor-Teleport.
The disruption affected services essential for energy firms and defence and security services. The authenticity of the claimed connection with the Wagner Group is dubious, however, the impact of the attack is undeniable.
Damage to satellite terminals and compromised data led to the release of 700 files on a leak site and Telegram channel. Included were documents suggesting an agreement allowing Russian security services access to Amtel Svyaz subscriber data, but these are yet to be verified. Post-attack, while services have largely been restored, a full network repair and equipment replacement will take several weeks, according to Dozor-Teleport. Following a similar breach of Viasat, the incident raises concerns about the vulnerability of satellite communication systems and future cyber warfare risks.
Major Apple Supplier hit by massive $70 million ransomware demand, Lockbit responsible
Apple supplier and semiconductor manufacturer, Taiwan Semiconductor Manufacturing Company (TSMC), has been impacted by a third-party ransomware attack launched by Russian ransomware group, LockBit, on TSMC’s own supplier, Kinmax Technology.
LockBit confirmed the attack on its dark web site, threatening to release stolen data, and network entry and login details, unless a US$70 million ransom was paid. To date, no concrete proof of the claimed stolen data has yet been provided.
Cyber security researchers have noted this to be one of the largest ransom demands recorded.
TSMC confirmed the attack, stating that it was a "cyber security incident" at Kinmax that led to leaked server setup and configuration details, but assured it didn’t affect business operations or compromise any customer data. Kinmax admitted to a data leak, expressing apologies to its affected customers but without specifying the number of affected parties.
BlackCat claims cyber attack on Barts NHS Trust
The Russian-speaking ransomware operation, ALPHV or BlackCat, has claimed a data breach involving Barts NHS Trust on its dark web leak site. The group alleges exfiltration of 7TB of data, which supposedly includes personal information of Trust employees and clinicians, financial reports, and insurance agreements. The operation threatened to make the data public if there was no contact from the Trust within three days.
Barts, a major NHS Trust operating five London hospitals and serving over 2.5 million people, has confirmed awareness of the claims and is urgently investigating. There's been no evidence to support the ransomware operation’s claims, nor visible disruption of Trust services, suggesting either non-deployment of ransomware or interruption of the attack.
