threat updates
UK
Mermaids, a charity which supports
gender variant and transgender
children, young people and their
families, reported a data breach.
The scope of the breach was that
internal Mermaids emails from 2016
and 2017 in a private user group were
available on the Internet, if certain
precise search-terms were used.
Mermaids understands that the
information could not be found
unless the person searching for the
information was already aware that the
information could be found.
Mermaids notified the Information
Commissioners Office (ICO) and the
breach was also immediately remedied.
GLOBAL
Kaspersky researchers have uncovered a highly sophisticated
cyberespionage campaign aimed at stealing information from
South Asian diplomatic, government and military entities.
The campaign lasted almost six years and had ties to other
recent attacks detected in the region.
Further investigation into the tools and methods used in the
campaign led researchers to the conclusion that the attacker
behind it is the PLATINUM group, a cyberespionage actor that
they thought had gone.
For the activity to remain unseen for such a long time, the
group encoded its information using a technique called
steganography, which conceals the fact that there is any
information there at all.
24
Issue 15
|
www.intelligentciso.com