The growing interest in cryptocurrency has led cybercriminals to apply their knowledge to mine Bitcoin and Ethereum. There were only 10% more attacks than in Q4 2020 YoY. However, there was a drop of 31% in attacks in the period against Q3 2020, according to Kaspersky. Due to the surge in cryptocurrency costs, some botnets might have been reprofiled by cybercriminals so that the C&C servers used in DDoS attacks could be used to mine cryptocurrencies.
Croma and Tata Sky had claimed to fix vulnerabilities in their websites which could have exposed sensitive information— names, addresses, phone numbers and purchase history —to cyber criminals even without hacking. The vulnerabilities were discovered by Rahil Bhansali and Ankit Pandey. Bhansali gave the detailed of the vulnerabilities, which was due to some problems with the APIs in both the website, in a blog post.
IBM has detected a cyber espionage campaign using phishing emails to try to collect vital information on the distribution of Covid-19 vaccine in developing nations. It is not sure who was behind the campaign which began in September, or how successful it was. But trends indicate a “nation-state tradecraft” behind the campaign which is targeting “cold chain” developed for nearly 3 bn people who live where temperature-controlled storage is insufficient.
Ransomware and fast-changing cybercriminal behaviours will shape the cybersecurity landscape in 2021, said Sophos. The cybersecurity firm said that ransomware groups will continue to refine, change tactics, and techniques to become more evasive and target firms with multimillion-dollar ransom demands. An increase in apprentice-type attackers and ransomware trend “secondary extortion” where attackers steal and threaten to publish sensitive data, is also anticipated.
Market Share and Consumer Data highlighting transaction, food habits and person identifiable information available with these food retailers has enormous potential for sale in the dark web. Big Data techniques applied to data sets captured could reveal strategic trends, buying patterns, demand lifecycle of consumers with geolocation and also their market strategy. This data is gold for any brands or funds looking to make inroads into the Indian Food retail market.
Cybersecurity experts said that pharma companies into the process of development or production of COVID-19 vaccine should expect a likely ‘Ryuk ransomware’ attack if they haven’t faced one so far. Hyderabad-based Dr Reddy’s Laboratories, on Thursday, faced a cyberattack and was now reviving its networks and data centre security. Vaccine developers and researchers in the US, UK, Canada, Spain and Japan, in the past few weeks, have witnessed cyberattacks.
Mumbai recorded maximum number (2,527) of cybercrime cases in 2019, after Bengaluru (10,555). Experts believe that the number should be much more than 2.5K but out of 50 complaints filed by the victims only 2 are converted into FIRs. The state-wise data labels Maharashtra to be at the 3rd place with 4,967 cases in 2019, preceded by UP with 11,416 cases and Karnataka with 12,020 cases. The Maharashtra cyber cell is constantly cyber awareness in the state.
A new type of KYC scam message is being sent to users, claiming that their eKYC document has expired and Paytm service will expire, unless they call them to reactivate it. The support execs ask users to download remote access software like AnyDesk and TeamViewer in the name of KYC status verification. This gives them access to users’ systems and whenever users make any online transactions, scammers can simply note their credentials.
Fortnite hackers are selling stolen accounts and in-game ‘skins for roughly $1.2M (about Rs 8.7 crore) per year. Lower-end sellers earn an average of $60K per year. Hackers collect a few thousand stolen Fortnite accounts together and auction in private Telegram channels selling anywhere between $10K – $40K per log. Firms make efforts to stop these by limiting a number of logins per IP address but have not been successful in slowing down this underground economy.