Weekly Cybersecurity Recap April 22
Table of Contents
- By Steven
- Published: Apr 22, 2022
- Last Updated: May 18, 2022
From ransomware attacks to phishing scams, spyware, malware, and beyond, businesses in the United States and elsewhere were slammed by digital offenses of every type in the third week of April. You can do your part to prevent a potentially devastating digital attack by updating your digital defenses. Below, we provide a recap of the week's most notable attacks.
UK Government Struck by NSO Spyware
The NSO hacking collective appears to have successfully hacked the United Kingdom's federal government. The hackers placed spyware on phones and other computing devices used by UK federal officials. The details of the attack were recently revealed by Citizen Lab,a team of cyber security professionals at the University of Toronto.
The digital offensive against the UK government commenced in 2020 and has continued through the spring of the new year. The initial attack centered on the use of Pegasus spyware that compromised computing devices at the UK's Foreign and Commonwealth Office as well as those used in Prime Minister Boris Johnson's office. The spyware placed on the devices relayed sensitive information to the hacking collective.
It is alleged that the NSO Group forwarded the stolen information to Israel's federal government. As a result, the European Union is pushing for a blanket ban on software used by the NSO Group.
Zegna Attack
The menswear company Zegna was breached by a ransomware attacker. The Italian fashion house fell victim to the RansomExx hacking collective.
RansomExx digital criminals broke the law when obtaining access to the company's financials. The hackers released the stolen data to the internet, setting the stage for other criminals to use the information for manipulation and personal gain. There is also a high likelihood that the stolen financial information will make its way to Zegna's competitors.
It is interesting to note that Zegna's brass refused to pony up the funds to satisfy the ransom demand. Furthermore, Zegna's leadership also highlighted the fact that the attack occurred in August yet was not revealed to the public until this week.
UEFI Firmware Compromises Millions of Lenovo Laptops
Unified Extensible Firmware Interface (UEFI) firmware is jeopardizing the safety of Lenovo laptops used by consumers and businesses. The firmware implants alter firmware drivers, ultimately making the computers that much more vulnerable. If the weakness is exploited, there is the potential for a cybercriminal to disable the laptop's SPI flash protections and plant malware that remains on the system even after a reboot of the operating is performed. UEFI flaws are a major issue as they are launched when the laptop boots and before shifting control to the operating system, meaning the threats can bypass safeguards that are put in place to thwart the execution of OS payloads.
Axie Infinity Hacked
Axie Infinity has been hacked by the Lazarus hacking group. The digital attack resulted in a loss of more than $500 million. Lazarus is also the hacking collective responsible for other digital security breaches of companies in the chemicals space. Though $540 million was initially taken from Axie Infinity, the hackers ended up getting away with less than 20% of the funds. The final tally resulting from the hack was a loss amounting to slightly less than $100 million.
The hackers moved the Ethereum and United States Dollar Coins through a conduit of the cross-chain variety. This conduit set the stage for crypto holders to transfer the digital money to a new network by hacking the private keys necessary to perform withdrawals. The United States Dollar Coins were then exchanged for crypto through a decentralized exchange to prevent interference from governing bodies.