CyberSec Roundup
A synopsis of the latest Cybersecurity News

COVID-19 Vaccine companies under cyber threat

As was mentioned a couple weeks ago, the healthcare sector is still under attack. This time from 3 state sponsored hacking groups originating from Russian (Fancy Bear) and North Korea (Zinc & Cerium). Microsoft discovered that these groups are targeting companies from around the world who are involved in developing vaccines for COVID-19. The attacks have ranged from password spraying to spear phishing employees. Although it will be difficult, Microsoft has made the call for governments to use international law to protect the healthcare industry from this type of criminal activity.

RedDoorz Hacked

RedDoorz, a hotel management & booking platform-based startup in Signapore was the victim of a data breach in September. Now almost 6 million user records from their company database are being sold online. RedDoorz users have been advised to change their passwords for that site, and for other sites if they shared that same password.

Hacker Outsourcing

Blackberry Researchers have discovered a “hackers for hire” operation (called CostaRicto) which is targeting south Asian financial institutions and entertainment companies. Given the effectiveness of Ransomeware-as-a-Service, cybercriminals are starting to outsource different stages of their attacks. This allows them to save time, resources and hide the true source of the attack.

By: David Pinder
IT & Security Consultant
Certified Ethical Hacker