ICYMI: Russian bank attack; UK CISO?; banks suspended; Crypto hack, hospital ransom
The latest In Case You Missed It (ICYMI) looks at Rusian bank attack thwarted; need for UK CISO?; banks hack themselves; Cypto key hack; US hospital ransomed.
Criminals get hold of 'Russian state malware'
The Russian Interior Ministry's department of cyber-crimes says it has uncovered a criminal group which had planned a series of massive cyber-attacks on the Russian banking system and international payment systems.
In the US the Federal CISO “establishes the direction of Federal cyber-security policy and strategy [with the Federal Chief Information Officer], to include management practices, budget priorities ..., overseeing implementation across the entire government.” Should UK plc now follow suit?
Following a recent investigation, the Russian Central Bank suspects that certain national banks have directly participated in using hackers to withdraw funds from the accounts of their clients illegally. The un-named banks and financial institutions have had their licences revoked as they are believed to have used fake cyber-attacks to help them to cover up previous crimes or violations, as well as to withdraw money from the accounts of their clients.
An Israeli security research team has described how to steal a cryptographic key from a computer simply by monitoring the radio waves it emits while decrypting a cipher. They hacked a standard laptop ostensibly protected by the latest ECDH commercial encryption, in an attack carried out in seconds and through a wall.
Computer systems at the Hollywood Presbyterian Medical Center (HPMC) have been taken down by a ransomware attack with US$ 3.6 million (£2.4 million) demand from attackers. The outage at the southern California hospital has lasted over a week at the time of reporting.