German industrial engineering and steel production giant Thyssenkrupp has again confirmed being targeted by cybercriminals. The company told SecurityWeek that ‘organized crime’ is believed to be behind the attack. “Parts of the Materials Services and Corporate segment of Thyssenkrupp are currently affected. The possibility of the other segments and business units being affected can be ruled out at this time,” a spokesperson of Thyssenkrupp Materials Services said in an emailed statement. According to the same statement, the company’s IT security team detected the incident at an early stage and the attackers did not manage to cause any damage. In addition, there is no evidence that data has been stolen or modified.
In predicting what will transpire in cybersecurity in 2023, the best method is to look at past experience. As with any security and criminal activity, threat actors tend to build upon what they have done in the past, adding new twists to keep their tactics fresh and effective. So, taking this into consideration, it is no surprise that Trustwave’s security experts see much of the same type of attacks that plagued 2022 continuing. Ransomware shows no signs of abating, attackers will target operational technology, and security teams will be forced to do more with less financial support. The major differentiator from last year is the Russia-Ukraine War. The war has not only caused unmeasurable levels of human suffering but is the fulcrum on which a large cyberwar is being fought between the two opponents. This war has manifested itself through attacks centered on each nation and in some cases, striking targets in countries supporting their enemy.
The Guardian has been hit by a serious IT incident, which is believed to be a ransomware attack. The incident began late on Tuesday night and has affected parts of the company’s technology infrastructure, with staff told to work from home. There has also been some disruption to behind-the-scenes services. Online publishing is largely unaffected, with stories continuing to be written and published to the Guardian website and app. The company said it was confident it could still produce Thursday’s print newspaper.
The FCC is going after an alleged prolific robocall company, with a proposed record-breaking fine in the hundreds of millions of dollars. The regulator said an operation run by Roy Cox, Jr. and Michael Aaron Jones made billions of illegal robocalls via their Sumco Panama company and numerous other entities located in the US, Panama and Hungary. Although in operation since 2018, this “Cox/Jones Enterprise” made over five billion robocalls to more than half a billion phone numbers during a three-month period in 2021, according to the FCC. It apparently used pre-recorded voice calls to pressure victims into speaking to a “warranty specialist.” The size of the fine, close to $300m, is a result of “egregious violations” of both spoofing and robocalling provisions, the regulator said.
During the holiday season, it is essential to take extra precautions when it comes to cybersecurity. Cybercriminals may be more active than usual, looking for ways to exploit unsuspecting users. Protect yourself and your loved ones, ensure that you and they are up to date with the latest security software, and be mindful of potential scams. Furthermore, only visit trusted websites and know the risks before making technological purchases. Cyber security can seem complicated, but anyone can protect themselves from common cyber threats with the correct information. Additionally, be aware of the various scams aimed at senior citizens during the holidays, such as fake holiday deals, phishing emails, fake charities, sweepstakes, or even threats to disconnect a senior’s utilities. Taking these extra precautions can help ensure a safe and secure holiday season.