My article this week is one that highlights the emergence of a new APT group targeting the fuel, energy, and aviation industries. This new group is disguising their malware under legitimate services of companies such as Microsoft, TrendMicro, McAfee, IBM, and Google. I find this interesting due to the recent pipeline hack. It seems that these sectors are some that have not been targeted very much so far but could be the focus of a lot of future attacks. This could be the beginning of a trend for the cybersecurity industry. The consequences for attacking these industries are severe in terms of financial and data loss.
https://thehackernews.com/2021/10/a-new-apt-hacking-group-targeting-fuel.html
Great article. The impersonation of legitimate services is concerning. I can see this fatiguing users that are already overwhelmed keeping up with new threats. It’s an ongoing challenge to inspire users to be vigilant.
I feel like these infrastructure attacks are a lot more dangerous than we are currently perceiving. It’s scary how the trickle effects will impact everyone from the immediate victim to the varying degrees out to the consumer. Yes there are financial and reputational consequences, but think of the impact that this could have on you and me as a result. Not only do I no longer trust, but The attack may impact my services. Without services, I may be impacted in my day to day, if my day to day is impacted, it can affect those that depend on me. In so many ways, technology has made us so interconnected that as security experts we need to look beyond the financial aspect and think of the downstream effects of attacks.
I feel like the past year ransomware attacks have surged due to the pandemic – a lot of people working from home and also due to the hard-to-trace cryptocurrency have resulted in new IT vulnerabilities. The cryptocurrency is easy for companies to purchase and the hackers kmow this and they leverage that when holding the data for ransom.