The 9th of August, Cyber News
russia
News of the IT ARMY of Ukraine
The IT army conducted a successful attack on the platform for video communication and remote work – TrueConf, which is used by both private companies and state institutions of the russian federation1.
Data Leak of the Leading Microcircuit Design Center in russia
Unknown people posted 70,000 files (749 GB) of Elvees, a russian manufacturer of integrated circuits and security solutions, including anti-drone technology, online. Elvees also provides safety technology for oilfields, refineries and pipelines, as well as other energy industry needs2.
World
Twitter Hacker Steals 5 Million Celebrity, Company, and Anonymous Accounts’ Personal Information
A Twitter breach has allowed hackers to find the account names and email addresses associated with millions of accounts.
This includes accounts of people who would rather keep their information pseudonymous, such as whistleblowers and celebrity accounts.
«We want to let you know about a vulnerability that allowed someone to enter a phone number or email address into the log-in flow in the attempt to learn if that information was tied to an existing Twitter account, and if so, which specific account», Twitter said in a blog post confirming the attack.
It also said there is nothing that users can do to protect their information in this issue, but users should enable two-factor authentication on all accounts to better protect against future breaches.
Twitter received a report at the start of this year about a vulnerability in its system, whereby if someone submitted an email address or phone number to Twitter’s systems, Twitter’s systems would tell the person what Twitter account the submitted email addresses or phone number was associated with, if any3.
The British Architectural Bureau Has Been Attacked by Ransomware
Sheppard Robson’s IT team noticed unusual activity on their network on July 24 and publicly reported the incident on August 5. The company said it immediately took steps to mitigate the damage caused by the attack by shutting down all systems and servers that were still running. Currently, access to the servers of the architectural office has been restored.
Founded in 1938, Sheppard Robson employs almost 400 people and is one of the largest architectural firms in the UK.
«We take cyber security very seriously and have government-approved security practices and certification. However, despite all security measures, professional hackers were still able to attack our network. We understand that the technology and tactics used by cybercriminals are constantly evolving , so we continue to work with our IT professionals to protect our business from these types of attacks», said Sheppard Robson.
As is usually the case with a ransomware attack, cybercriminals contacted the company and demanded a ransom. However, Sheppard Robson refused to pay and reported the incident to law enforcement4.