'Shocking' hack of psychotherapy records in Finland affects thousands

Private Finnish psychotherapy firm Vastaamo has seen tens of thousands of patients sensitive treatment records leaked online after a cyber attack. Many patients reported being contacted via email with a ransom demand for €200 (£181) in bitcoin to prevent the contents of their private conversations with therapists being made public. Security experts say that a 10GB data file containing confidential notes between at least 2,000 patients and their therapists had appeared on websites on the dark web. Vastaamo has reportedly started an internal enquiry and noted that the actual theft of the data is believed to have happened two years ago.
Japanese Nuclear Regulator Suffers Cyber Attack

The Nuclear Regulation Authority in Japan suffered a cyber attack that took down their official website for several hours and caused the company to temporarily disable its email systems. The incident has now been resolved but according to a highly placed source the attack has the potential to devastate the entire email network of the nuclear agency of Japan.
Two Charged in SIM Swapping, Vishing Scams

Two young men from the US have been charged with identity theft and conspiracy after allegedly stealing social media and bitcoin accounts. The pair hijacked accounts using a mixture of phishing attacks, voice phishing (vishing) attacks and SIM swapping, which is a type of fraud that involves tricking or bribing employees at phone companies. Through this they managed to gain credentials of wireless phone companies needed to remotely access and modify customer accounts. 
With their access to wireless phone company tools the duo reassigned the SIM's tied to a target’s mobile device, this allowed them to take control over a victims incoming calls and texts, which were used to reset passwords for email, social media and cryptocurrency accounts tied to those numbers.
IoT Safety 
IoT, or Internet of Things, refers to appliances or devices that are connected to the internet or to each other via your home network. In today’s technical era it is not uncommon to have multiple appliances/devices connected to the internet, anything from smart kettles to watches to doorbells can utilise connectivity to make our day more convenient, provide home security or give us information about ourselves that we would, in the past, need medical devices to know. However, IoT security has become a growing concern as these useful gadgets have created new points of entry for cyber criminals.

What’s the Risk?
Some cybercriminals target IoT devices as they usually have limited built in security if any at all, this makes them especially vulnerable to malware. Once a cyber-criminal has infiltrated a connected device, this gives them an entry point into your IoT network that may include devices like your smartphone or home router. One of the main concerns with IoT security is that connect devices often record, store or have access to personal data such as the users name, age, location, health data etc.
The theft of sensitive data is not the only security issue an IoT network faces, cybercriminals can also utilise compromised devices to hack into other connected devices, install ransomware, send malicious or spam emails, interfere with financial transactions or even hijack cameras on devices such as baby monitors, security systems and smart doorbells compromising not only your safety but your privacy.
Tips to Protect Your Devices and Network
  • Research before you buy- Purchase IoT devices from reputable companies, do not overlook what types of data these devices collect, how it’s stored and protected, if it is shared with third parties, and the policies/protections regarding data breaches.
  • Install reputable security software on all computers, laptops, smartphones and tablets and keep up to date with software patches.
  • Be mindful when it comes to downloading apps. Often these IoT devices are managed via an app on a smartphone, it is important to read the privacy policy. This way you can be fully informed on what will happen to the data you share with the app. If the app requires access to data on your devices that seems unnecessary or risky- deny permission.
  • Check the device manufacturer’s website frequently for any firmware updates.
  • Always change a devices default passwords to something strong and secure, preferably use a unique password for each device. Default passwords are easily discoverable and can compromise security. It is also important to ensure that your Wi-Fi router has a strong password and encryption.
  • Disable Universal Plug and Play (UPnP) on routers so that devices require authentication to connect.
  • Don’t become complacent- a single vulnerable device can create a hole in your security.
Weekly Threat Report 30th October 2020
US advisory on ransomware targeting of US health sector
Credential stuffing attack impacts Nando’s customers
Smart irrigation systems left exposed

Maze ransomware is shutting down its cybercrime operation
The cybercrime group 'Maze' is ceasing operations after become one of the most prominent groups orchestrating ransomware attacks. 
Alert: Risk of SharePoint vulnerability to UK organisations
The NCSC is raising awareness for new remote code execution vulnerability (CVE-2020-16952) that effects Microsoft SharePoint. The vulnerability has the potential to allow an attacker to run arbitrary code and carry out security actions in the context of the local administrator if successfully exploited.
The NCSC Annual Review 2020
The NCSC has released its fourth Annual Review that looks back at the last 12 months and highlights key developments and aspects of their work with the aim of helping to make the UK the safest place to live and work online.
Cyberattacks target international conference attendees
Microsoft has stated that they have detected and stopped a series of cyberattacks fromthe Iranian threat actor Phosphorus (also known as APT35 or Charming Kitten) spearphishing emails where sent to influential people thought likely to attend the Munich Security Conference and the Think 20 Summit.
What can we offer you?
Click here to subscribe to the Cyber Crime Sentinel Newsletter!
Get in Touch

Our lives are relying on technology more every day. Join us each week for your bitesize cybersecurity podcast. In this increasingly technical world we deliver non-technical cyber news, and identify the current threats we’re facing.

The WMCRC work with local Universities and Police forces in Staffordshire, West Midlands, West Mercia and Warwickshire to provide you access to the latest information on emerging cyber threats, criminal trends and best practice to protect your business.
Apple Podcast
Copyright © 2020 West Midlands Regional Cyber Crime Unit, All rights reserved.

Want to change how you receive these emails?
You can update your preferences or unsubscribe from this list.

Email Marketing Powered by Mailchimp