CyberSec Roundup
A synopsis of the latest Cybersecurity News

Dark Web Vaccine

There are reportedly drug dealers selling the COVID-19 vaccine on the dark web. They are charging up to $1,300 for a dose of the Pfizer/BioNTech vaccine. However, these vendors have been unable to verify that what they are selling is the genuine article. And given that the vaccine is to be stored at 70°C to ensure its efficacy, it isn’t likely that these are real.

Vaccine Distribution Attacks

Hackers have recently been targeting the health care industry, from hospitals to companies developing the vaccine. Now that the vaccines are starting to be approved, they are targeting companies involved with storing and distributing the vaccine at its required temperature. According to IBM Security X-Force, they have launched sophisticated spear-phishing campaigns at key executives that work for these companies. The US Cybersecurity and Infrastructure Security Agency has warned companies involved to be on the alert.

Kmart Hacked

Kmart, the US department store was hit with a ransomware attack last week by the Egregor ransomware group. Several devices and Windows Domain backend servers were affected. The store website is still operational but some backend operations have been affected. The ransom amount was not disclosed

FINRA spoofs

The Financial Industry Regulatory Authority (FINRA) has alerted brokerage firms of a spear-phishing campaign using fake domain names which are spoofing the real FINRA domain name.  One of the fake domains “invest-finra.org” was used and firms are asked to be extra cautious when receiving emails from domains which look similar to the genuine “finra.org” domain.

By: David Pinder
IT & Security Consultant
Certified Ethical Hacker