Aug 29 2023
Welcome to Gone Phishing, your daily cybersecurity newsletter that treats cybercriminals like Just Stop Oil protestors. I.e., violently. ????????????
Today’s hottest cybersecurity news stories:
????️ Polish intel arrest two suspects following hack attack on state railways ????
???? KmsdBot malware is now targeting IoT devices, following upgrade ????
???? ‘Incredible concern and anger’ amongst Met Police following data breach ????
???? Poland's state railway system faced a major disruption as hackers targeted the rail traffic management system near Szczecin. Trains ground to a halt, and reports suggest the Russian national anthem and announcements played on a staff radio frequency, sparking concerns of espionage. ????️♂️????????
???? Stanislaw Zaryn, head of security services, involved the ABW (Internal Security Agency) after Poland's state railway company revealed unauthorised access and signal activation. The incident follows a train derailment and collision near Warsaw, though officials haven't confirmed a link to the disruption. ????????
????️ Poland suspects Russian involvement in attempts to destabilise the state and has been vigilant due to its support for Ukraine. Polish intelligence believes Russian agents aim to disrupt arms flow across the border. ????????????➡️????????
????*UPDATE: TWO SUSPECTS ARRESTED*????
????️♀️ Recent arrests of two Polish citizens in connection with the hack shed light on the incident. The suspects, aged 24 and 29, were apprehended in Bialystok with confiscated radio equipment. Though services resumed after initial disruptions, ongoing attacks occurred over the weekend. ⚖️????️
???? Deputy coordinator Stanislaw Zaryn hinted at potential Russian and Belarusian collaboration in destabilisation efforts. While investigations continue, passenger safety remains unaffected. ????✉️
???? Stay tuned for updates on this developing situation. Your safety is our priority. ????
I came across ZZZ money club during the crypto market bull run when everyone’s a winner, even during the bear market this discord group has been amazing at giving information on projects and ways to make passive income in various ways.
The group is very active and everyone in this private discord group is very chatty and helpful.
Its run by Yourfriendandy and Decadeinvestor, you can find them here on YouTube, both top guys with great content.
If you are interested in joining the group you can through the link below.
An evolved version of the botnet malware KmsdBot is now honing in on Internet of Things (IoT) devices, broadening its attack potential and capabilities.
???? "The updated binary includes Telnet scanning support and extends compatibility to more CPU architectures," stated Akamai security researcher Larry W. Cashdollar in a recent analysis.
This recent iteration, spotted since July 16, 2023, follows the revelation that the botnet is available as a DDoS-for-hire service, indicating its continued effectiveness in real-world attacks.
KmsdBot initially surfaced in November 2022, primarily targeting private gaming servers and cloud hosting providers. It has since shifted focus to include Romanian government and Spanish educational sites.
The malware's tactic involves scanning random IP addresses for open SSH ports and launching a brute-force attack with a password list obtained from a controlled server. Updates now introduce Telnet scanning, expanding its reach to more CPU architectures typical of IoT devices.
???? "The ongoing KmsdBot campaign emphasises the prevalence and vulnerability of IoT devices, making them attractive targets for a network of infected systems," noted Cashdollar.
???? As the malware evolves and incorporates telnet scanning and broader CPU support, it poses an ongoing threat to internet-connected device security. ????️
Each fortnite, we carefully select three hot newsletters to show you. Reputation is everything, so any links we share come from personal recommendation or carefully researched businesses at the time of posting. Enjoy!
????The Crypto Nutshell: Crypto News & Expert Predictions all in a nutshell ????
????The Breakthrough: Receive one idea, one question, and one exercise each week that could spark your next breakthrough.
✈️ViaTravelers: Get exclusive travel tips, news, and insider deals right in your inbox.
Let us know what you think!
???? Metropolitan Police Data Breach Sparks Concern ????
London's Metropolitan Police Service is grappling with a data breach impacting its personnel, after a supplier responsible for printing warrant cards suffered an IT breach. The breach potentially exposed the names, photos, and ranks of all 47,000 officers.
???? While the breach did not include addresses or phone numbers, the National Crime Agency is involved in the investigation over concerns that the data might be exploited by organised crime or terrorists. The motive behind the attack remains unclear — whether financially driven ransomware or targeted information gathering.
????️♀️ The Met, responsible for policing London and various national specialties, including counter-terrorism efforts, has faced significant challenges in safeguarding sensitive information. Rick Prior from the Metropolitan Police Federation voiced "incredible concern and anger" among officers and stressed the importance of accountability.
????️ This incident highlights the urgent need for robust cybersecurity measures to protect sensitive law enforcement data. Amen brother.
The Met faces a critical task in ensuring the security of its officers and maintaining public trust. ????????♂️
That’s all for today, folks!
So long and thanks for reading all the phish!