Cyber Weekly Digest - Week #49

Updated: Dec 11, 2020

It is the first week of December, and although 2020 is almost over, criminals are continuing to make the year difficult. In this week's digest, we will discuss how cyber criminals are trying to impact the covid-19 vaccine supply chain as the vaccine begins to be transported to the UK. For all the latest cyber security stories, keep reading.

1. Cyber criminals are attacking the international vaccine supply chain.

This week it was announced that the UK would be able to start rolling out the vaccine by the end of the year and there is no surprise that cyber criminals have begun targeting the vaccine supply chain. Researchers have hinted that the sophistication of the methods taken by attackers indicate the identity of the attackers could be nation-state attackers. The main target of the attack was organisations linked to the Cold Chain Equipment Optimisation Platform (CCEOP) of Gavi, the international vaccine alliance.

2. A 22-year old hacker has been jailed for eight years.

A 22-year-old from North Carolina has been jailed this week for eight years for conducting bomb threats against thousands of schools in the US and United Kingdom and running a service that launched distributed denial-of-service (DDoS) attacks. The hacker is known online under aliases including "WantedbyFeds" and "Hacker_R_US". It was revealed that the attacker was a key member of the Apophis Squad who sent bomb threats to over 2,400 schools and launched DDoS attacks against countless Web sites.

3. Over half of Docker Hub container images contain critical vulnerabilities.

Researchers have discovered that publicly available Docker Hub container images contain at least one critical flaw. It was discovered after all four million images hosted at Docker Hub were scanned, in total 51% of the images scanned contained critical vulnerabilities with 6000 rated as potentially harmful or malicious.