Cyber Weekly Digest - Week #11
Updated: Mar 19
In this week's digest, we discuss the latest update on the Microsoft Exchange vulnerabilities as more hacking groups rush to hack systems before they are patched. Also, we dive into the cyber attack on Molson Coors Brewery Company and how hackers were able to access the feeds of 150,000 surveillance cameras inside hospitals, jails and Tesla. Keep reading to find out about the biggest cybersecurity stories from across the world.
The Storting confirmed it had suffered another cyber-attack in which threat actors were able to steal data. The Storting does not yet know the full extent of the attack and is currently investigating the incident. The Parliament does not believe this incident is related to the APT 28 group December 2020 cyberattack. This week, the European Banking Authority revealed they had also fallen victim to the Exchange Server hacking campaign. In a recent report by ESET, at least ten hacking groups are taking advantage of the Microsoft Exchange vulnerabilities and rushing to hack systems before they are patched.
OVH is the largest hosting provider in Europe and the third-largest in the world. Its French data centres, SBG1, SBG2, SBG3, and SBG4 located in Strasbourg, were shut down to contain the damage from a fire that started in SBG2. As a result of this incident, major customers of OVH state their web services are inaccessible. The company is advising customers to enact their disaster recovery plans after the fire has rendered multiple data centres unserviceable.
West Ham's club website was found to display several error messages this week and later showed other supporters profile information. Multiple fans' details, including full names, dates of birth, telephone numbers, address and email address, were displayed when supporters attempted to log into their accounts on the club's ticketing website. West Ham was able to resolve the issue with their third-party service provider.
Molson Coors is well-known for its iconic beer brands, including Coors Light, Miller Lite, Molson Canadian, Blue Moon, Peroni, Killian's, and Foster's. On Thursday, Molson Coors revealed that they had suffered a cyberattack, causing significant disruption to their operations, including the production and shipment of beer. Many speculate that this incident is a ransomware attack; however, the attack's extent is still unknown.
Hacktivists claim to have breached a massive trove of security-camera data collected by startup Verkada, gaining access to live feeds of 150,000 surveillance cameras inside hospitals, companies, police departments, prisons and schools. Companies whose footage was exposed include carmaker Tesla Inc. and software provider Cloudflare Inc. The hacktivists accessed the feeds by finding logins for a privileged account exposed on the internet. This gave them root access to the cameras to execute their own code and, in some cases, obtain broader access to customer networks.
Join cybersecurity expert Lisa Forte and Cynet Security UK Technical Sales Engineering Lead Anthony Roberts in this live webinar to learn the practical steps your cross-industry peers have taken to quickly and affordably improve their companies’ security posture.
Wednesday 17th March 2:00PM GMT