Railway Chaos in Poland: Hack Disrupts Trains

Aug 29 2023

Gone Phishing Banner

Welcome to Gone Phishing, your daily cybersecurity newsletter that treats cybercriminals like Just Stop Oil protestors. I.e., violently. ๐Ÿ˜ก๐Ÿ’€๐Ÿ˜‚

Todayโ€™s hottest cybersecurity news stories:

  • ๐Ÿ•ต๏ธ Polish intel arrest two suspects following hack attack on state railways ๐Ÿš‚

  • ย ๐Ÿค– KmsdBot malware is now targeting IoT devices, following upgrade ๐Ÿ”Œ

  • ๐Ÿ‘ฎ โ€˜Incredible concern and angerโ€™ amongst Met Police following data breach ๐Ÿ“

Hackingโ€™s really gone off the rails lately ๐Ÿ˜

๐Ÿš† Railway Chaos in Poland: Hack Disrupts Trains ๐Ÿš†

๐Ÿ”ฅ Poland's state railway system faced a major disruption as hackers targeted the rail traffic management system near Szczecin. Trains ground to a halt, and reports suggest the Russian national anthem and announcements played on a staff radio frequency, sparking concerns of espionage. ๐Ÿ•ต๏ธโ€โ™‚๏ธ๐Ÿ‡ท๐Ÿ‡บ

๐Ÿ”“ Stanislaw Zaryn, head of security services, involved the ABW (Internal Security Agency) after Poland's state railway company revealed unauthorised access and signal activation. The incident follows a train derailment and collision near Warsaw, though officials haven't confirmed a link to the disruption. ๐Ÿš„๐Ÿ”“

๐Ÿ›ก๏ธ Poland suspects Russian involvement in attempts to destabilise the state and has been vigilant due to its support for Ukraine. Polish intelligence believes Russian agents aim to disrupt arms flow across the border. ๐Ÿ›‘๐Ÿ‡ต๐Ÿ‡ฑโžก๏ธ๐Ÿ‡บ๐Ÿ‡ฆ


๐Ÿ•ต๏ธโ€โ™€๏ธ Recent arrests of two Polish citizens in connection with the hack shed light on the incident. The suspects, aged 24 and 29, were apprehended in Bialystok with confiscated radio equipment. Though services resumed after initial disruptions, ongoing attacks occurred over the weekend. โš–๏ธ๐ŸŽ™๏ธ

๐ŸŒ Deputy coordinator Stanislaw Zaryn hinted at potential Russian and Belarusian collaboration in destabilisation efforts. While investigations continue, passenger safety remains unaffected. ๐ŸŒโœ‰๏ธ

๐Ÿ”’ Stay tuned for updates on this developing situation. Your safety is our priority. ๐Ÿ”’

I came across ZZZ money club during the crypto market bull run when everyoneโ€™s a winner, even during the bear market this discord group has been amazing at giving information on projects and ways to make passive income in various ways.

The group is very active and everyone in this private discord group is very chatty and helpful.

Its run by Yourfriendandy and Decadeinvestor, you can find them here on YouTube, both top guys with great content.

If you are interested in joining the group you can through the link below.

Move over, Skynet ๐Ÿ‘€

๐Ÿค– New KmsdBot Malware Update Targets IoT Devices ๐Ÿค–

An evolved version of the botnet malware KmsdBot is now honing in on Internet of Things (IoT) devices, broadening its attack potential and capabilities.

๐Ÿ” "The updated binary includes Telnet scanning support and extends compatibility to more CPU architectures," stated Akamai security researcher Larry W. Cashdollar in a recent analysis.

This recent iteration, spotted since July 16, 2023, follows the revelation that the botnet is available as a DDoS-for-hire service, indicating its continued effectiveness in real-world attacks.

KmsdBot initially surfaced in November 2022, primarily targeting private gaming servers and cloud hosting providers. It has since shifted focus to include Romanian government and Spanish educational sites.

The malware's tactic involves scanning random IP addresses for open SSH ports and launching a brute-force attack with a password list obtained from a controlled server. Updates now introduce Telnet scanning, expanding its reach to more CPU architectures typical of IoT devices.

๐Ÿ”’ "The ongoing KmsdBot campaign emphasises the prevalence and vulnerability of IoT devices, making them attractive targets for a network of infected systems," noted Cashdollar.

๐Ÿ“ก As the malware evolves and incorporates telnet scanning and broader CPU support, it poses an ongoing threat to internet-connected device security. ๐Ÿ›ก๏ธ

๐Ÿ—ž๏ธ Extra, Extra! Read all about it! ๐Ÿ—ž๏ธ

Each fortnite, we carefully select three hot newsletters to show you. Reputation is everything, so any links we share come from personal recommendation or carefully researched businesses at the time of posting. Enjoy!

  • ๐Ÿ’ฐThe Crypto Nutshell: Crypto News & Expert Predictions all in a nutshell ๐Ÿ’ช

  • ๐Ÿ“ˆThe Breakthrough: Receive one idea, one question, and one exercise each week that could spark your next breakthrough.

  • โœˆ๏ธViaTravelers: Get exclusive travel tips, news, and insider deals right in your inbox.

Let us know what you think!


Thatโ€™s the sound of da police(โ€˜s data) ๐Ÿ˜‚

๐Ÿ”’ Metropolitan Police Data Breach Sparks Concern ๐Ÿ”’

London's Metropolitan Police Service is grappling with a data breach impacting its personnel, after a supplier responsible for printing warrant cards suffered an IT breach. The breach potentially exposed the names, photos, and ranks of all 47,000 officers.

๐Ÿš“ While the breach did not include addresses or phone numbers, the National Crime Agency is involved in the investigation over concerns that the data might be exploited by organised crime or terrorists. The motive behind the attack remains unclear โ€” whether financially driven ransomware or targeted information gathering.

๐Ÿ•ต๏ธโ€โ™€๏ธ The Met, responsible for policing London and various national specialties, including counter-terrorism efforts, has faced significant challenges in safeguarding sensitive information. Rick Prior from the Metropolitan Police Federation voiced "incredible concern and anger" among officers and stressed the importance of accountability.

๐Ÿ›ก๏ธ This incident highlights the urgent need for robust cybersecurity measures to protect sensitive law enforcement data. Amen brother.

The Met faces a critical task in ensuring the security of its officers and maintaining public trust. ๐Ÿ“ˆ๐Ÿ‘ฎโ€โ™‚๏ธ

Thatโ€™s all for today, folks!

So long and thanks for reading all the phish!

Recent articles