{"id":35255,"date":"2023-02-08T08:15:55","date_gmt":"2023-02-08T13:15:55","guid":{"rendered":"https:\/\/www.itworldcanada.com?p=525995"},"modified":"2023-02-08T09:46:48","modified_gmt":"2023-02-08T14:46:48","slug":"cyber-security-today-feb-8-2023-toyota-supplier-website-hacked-ransomware-gang-partner-pleads-guilty-and-more","status":"publish","type":"post","link":"https:\/\/technewsday.com\/staging\/cyber-security-today-feb-8-2023-toyota-supplier-website-hacked-ransomware-gang-partner-pleads-guilty-and-more\/","title":{"rendered":"Cyber Security Today, Feb. 8, 2023 \u2013 Toyota supplier website hacked, ransomware gang partner pleads guilty and more"},"content":{"rendered":"<p data-ar-index=\"0\">A website used by Toyota suppliers is hacked, a ransomware gang partner pleads guilty and more.<\/p>\n<p data-ar-index=\"1\">Welcome to Cyber Security Today. It\u2019s Wednesday, February 8th, 2023. I\u2019m Howard Solomon, contributing reporter on cybersecurity for ITWorldCanada.com and TechNewsday.com in the U.S.<\/p>\n<p data-ar-index=\"2\"><iframe style=\"border: none;\" title=\"Libsyn Player\" src=\"https:\/\/html5-player.libsyn.com\/embed\/episode\/id\/25862904\/height\/90\/theme\/custom\/thumbnail\/yes\/direction\/forward\/render-playlist\/no\/custom-color\/000000\/\" width=\"100%\" height=\"90\" scrolling=\"no\" allowfullscreen=\"allowfullscreen\"><\/iframe><\/p>\n<table style=\"width: 100%;\">\n<tbody>\n<tr>\n<td><a href=\"https:\/\/www.amazon.com\/ITWC-Cyber-Security-Today\/dp\/B07BRNG89P\/ref=sr_1_1?s=digital-skills&amp;ie=UTF8&amp;qid=1522688435\" rel=\"noopener noreferrer\"><img decoding=\"async\" class=\"aligncenter wp-image-396718 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-alexa-200.png\" alt=\"Cyb er Security Today on Amazon Alexa\" width=\"200\" height=\"74\" border=\"none\" \/><\/a><\/td>\n<td><a href=\"https:\/\/www.google.com\/podcasts?feed=aHR0cDovL2N5YmVyc2VjdXJpdHl0b2RheS5saWJzeW4uY29tL3Jzcw%3D%3D\" rel=\"noopener noreferrer\"><img decoding=\"async\" class=\"thumbnail aligncenter wp-image-408712 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2018\/09\/sub-gp-200.png\" alt=\"Cyber Security Today on Google Podcasts\" width=\"200\" height=\"74\" \/><\/a><\/td>\n<td><a href=\"https:\/\/itunes.apple.com\/ca\/podcast\/cyber-security-today\/id1363182054\" rel=\"noopener noreferrer\"><img decoding=\"async\" class=\"aligncenter wp-image-396720 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-itunes-200.png\" alt=\"Subscribe to Cyber Security Today on Apple Podcasts\" width=\"200\" height=\"74\" border=\"none\" \/><\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p data-ar-index=\"3\"><strong>\u00a0<\/strong><br \/>\n<strong>Threat actors<\/strong> are expected to focus this year on compromising supply chains, bypassing multifactor authentication (MFA) and taking advantage of misconfigured APIs. That\u2019s the <a href=\"https:\/\/newsroom.nccgroup.com\/pressreleases\/ransomware-attacks-take-slight-dip-in-2022-as-threat-actors-evolve-and-explore-new-tactics-ncc-group-annual-threat-monitor-report-3232074\" rel=\"noopener\">prediction of analysts at the NCC Group<\/a> in their annual Threat Monitor Report. Ransomware attacks were down slightly in 2022, the report says. But, it also warns ransomware gangs are effective in finding new ways to squeeze victims.<\/p>\n<p data-ar-index=\"4\"><strong>Speaking of ransomware and supply chains<\/strong>, last week I told you about a ransomware attack on a British-based company, ION Group, that makes applications for banks and financial trading firms. The latest news is a claim by the LockBit ransomware gang that a \u201cvery rich unknown philanthropist\u201d paid the ransom demand. Evidence of that, perhaps, is that ION Group\u2019s name has been removed from the gang\u2019s data leak site, <a href=\"https:\/\/www.cpomagazine.com\/cyber-security\/ion-group-ransomware-attack-impacts-derivative-trading-in-global-markets\/\" rel=\"noopener\">says CPO Magazine.<\/a> The unit of ION Group that was hit supplies solutions for the financial derivatives market. According to the news story, derivative trading has suffered long delays in processing transactions since the attack.<\/p>\n<p data-ar-index=\"5\"><strong>More on supply chain attacks:<\/strong> Supply chains are companies that link to your company\u2019s IT systems. Hack one and access is gained to many other companies. It\u2019s not necessarily hard. This week a<a href=\"https:\/\/eaton-works.com\/2023\/02\/06\/toyota-gspims-hack\/\" rel=\"noopener\"> security researcher for a company called Eaton Works<\/a> revealed they were able to hack into the web portal used by Toyota\u2019s parts suppliers. They did it after discovering four critical vulnerabilities. One was a backdoor login mechanism that allowed anyone to log in as a corporate Toyota employee or supplier by just knowing their email address. After finding a system administrator\u2019s email address the researcher was able to log in and take over full control of the entire system. That included access to Toyota projects and accounts of the car maker\u2019s suppliers, such as tire-makers Michelin and Continental, systems supplier Magna and other big-name firms. This is another reason why cybersecurity is every company\u2019s responsibility \u2014 and why web designers have to take security more seriously. The researcher found the holes in October and notified Toyota, which quickly plugged them. News was released only this week.<\/p>\n<p data-ar-index=\"6\"><strong>Attention<\/strong> application and web developers: <a href=\"https:\/\/www.securityweek.com\/openssl-ships-patch-for-high-severity-flaws\/\" rel=\"noopener\">The OpenSSL Project has released<\/a> a major security update. It closes eight security flaws threat actors can take advantage of. Developers using OpenSSL for secure communications in their applications or websites need to install the update fast.<\/p>\n<p data-ar-index=\"7\"><strong>A Russian man<\/strong> is facing sentencing in the United States <a href=\"https:\/\/www.justice.gov\/usao-or\/pr\/russian-cryptocurrency-money-launderer-pleads-guilty\" rel=\"noopener\">after pleading guilty<\/a> to laundering cryptocurrency received from victim companies hit by the Ryuk ransomware gang. The man was extradited to the U.S. last year after being arrested in Amsterdam in 2021. According to the U.S. Justice Department, the man was one of several who laundered ransom funds through multiple financial transactions. He faces prison time of up to 20 years.<\/p>\n<p data-ar-index=\"8\">Here are a few consumer-related cybersecurity news items:<\/p>\n<p data-ar-index=\"9\"><strong>It\u2019s time to start preparing<\/strong> your income tax in Canada and the U.S. Crooks are preparing, too. <a href=\"https:\/\/twitter.com\/SophosXOps\/status\/1622964868071706628\" rel=\"noopener\">Researchers at Sophos this week tweeted<\/a> about seeing email messages to individuals pretending to be from the Canada Revenue Agency. The messages claim you are owed a refund. To collect you have to create a CRA account. Smart people who hover their mouse over the link for signing into or creating an account will see it doesn\u2019t go to a Government of Canada site. This is a warning that governments don\u2019t send messages like this. Another tip: The sender\u2019s full email address obviously doesn\u2019t come from the government. For more about protecting yourself against CRA fraud <a href=\"https:\/\/www.canada.ca\/en\/revenue-agency\/corporate\/security\/protect-yourself-against-fraud.html\" rel=\"noopener\">see this article.<\/a><\/p>\n<p data-ar-index=\"10\"><strong>Crooks are also sending<\/strong> fake package delivery notices to Canadians. This takes advantage of the fact that many people are expecting packages after making online purchases. <a href=\"https:\/\/toronto.citynews.ca\/2023\/02\/06\/canada-post-texts-delivery-fraud-phishing-scam-toronto\/\" rel=\"noopener\">City-TV News reports<\/a> a Toronto-area woman recently received a text supposedly from Canada Post saying it couldn\u2019t deliver a package to her. It needed a debit card payment of $1.25 to reschedule the delivery, plus her date of birth. No legitimate delivery service will demand a delivery fee or your date of birth.<\/p>\n<p data-ar-index=\"11\"><strong>With the Super Bowl coming<\/strong> this Sunday there\u2019s another reminder that crooks will try to take advantage of the event. <a href=\"https:\/\/www.synopsys.com\/blogs\/software-security\/cyrc-special-report-gaming-apps-security-analysis\/?cmp=pr-sig&amp;utm_medium=referral\" rel=\"noopener\">Researchers at Synopsys looked<\/a> at 10 popular Android sports and betting apps and found a number have vulnerabilities, including outdated open-source components. These apps aren\u2019t necessarily suspicious. Their developers may be lazy. But these apps are risky. Before you put money down, be sure what you\u2019re betting on.<\/p>\n<p data-ar-index=\"12\"><strong>Valentine\u2019s Day,<\/strong> which is next Tuesday, is another event crooks try to take advantage of through dating apps. <a href=\"https:\/\/www.fbi.gov\/contact-us\/field-offices\/columbia\/news\/fbi-warns-of-romance-scams-ahead-of-valentines-day\" rel=\"noopener\">The FBI this week warned<\/a> people that criminals use personal information for fraud and romance scams. The goal is to steal either personal information that can be used for credit card or bank theft, or to get victims to send them money. Beware of meeting people online who promise to meet you in person but give excuses why they can\u2019t. Beware of people you meet online and then ask for money. Take things slow with people you meet online and ask a lot of questions.<\/p>\n<p data-ar-index=\"13\">Follow Cyber Security Today on Apple Podcasts, Google Podcasts or add us to your Flash Briefing on your smart speaker.<\/p>\n<p data-ar-index=\"14\">The post <a href=\"https:\/\/www.itworldcanada.com\/article\/cyber-security-today-feb-8-2023-toyota-supplier-website-hacked-ransomware-gang-partner-pleads-guilty-and-more\/525995\">Cyber Security Today, Feb. 8, 2023 \u2013 Toyota supplier website hacked, ransomware gang partner pleads guilty and more<\/a> first appeared on <a href=\"https:\/\/www.itworldcanada.com\/\">IT World Canada<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This episode reports on ransomware, supply chain attacks and the latest cons<\/p>\n","protected":false},"author":17,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[360,16],"tags":[389],"class_list":["post-35255","post","type-post","status-publish","format-standard","hentry","category-podcasts","category-security","tag-cyber-security-today"],"acf":[],"_links":{"self":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/35255","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/users\/17"}],"replies":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/comments?post=35255"}],"version-history":[{"count":3,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/35255\/revisions"}],"predecessor-version":[{"id":35258,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/35255\/revisions\/35258"}],"wp:attachment":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media?parent=35255"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/categories?post=35255"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/tags?post=35255"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}