InfoSec Round-Up May 21st

Play Video

Pipeline Pay-out, Russia Denial & Crypto Scams

This is the Hut Six InfoSec Round-Up, where we look at some of the most pressing matters, latest trends, and industry news from across the world of information security.

Colonial Pipeline Pays Ransom

The Chief Executive Officer of Colonial Pipeline has confirmed that it has paid $4.4 million (£3.1 million) to the cyber-criminal gang behind the recent ransomware attack.

Speaking to the Wall Street Journal, CEO Joseph Blount confirmed the controversial decision, a response reportedly undertaken after having consulted with experts experienced in dealing with the DarkSide gang.

With operations temporarily halted, causing spiking fuel prices and shortages, the payment made to attackers did result in the company being supplied with a decryption key, though it is reported the company continued restoring its systems from their backups.

Colonial Pipeline, which carries around 45% of the US’s East Coast fuel supply, has estimated that the attack would ultimately cost the company tens of millions of dollars, and though control of their systems has been regained, a complete recovery will likely take months.

Speaking on the decision to pay the attackers, the Colonial Pipeline CEO noted, “I didn't make [that decision] lightly. I will admit that I wasn't comfortable seeing money go out the door to people like this.” Adding “But it was the right thing to do for the country.”

Russia Denial ‘Unconvincing’

Following statements made by Russia’s Foreign Intelligence Service (SVR) director, regarding the state’s involvement with the recent SolarWinds hack, the former head of GCHQ’s National Cyber Security Centre has described the denial as “unconvincing.”

Questioned this week by a BBC journalist, SVR director Sergei Naryshkin referenced the attack, stating that he could not “claim the creative achievements of others as his own”, even going as far to suggest that the attack may have been orchestrated by entities in the West.

The SolarWinds attack, which was uncovered late last year, has been described as the largest and most sophisticated cyber-attack in history, affecting organisations and government agencies across the world.

With those affected including Microsoft, the UK Ministry of Defence and the US Treasury Department, Professor Ciaran Martin (formerly of the NCSC) refuted the claims, citing “compelling” evidence that tactics, techniques, and tools used by the hackers matched “many years of SVR activity.”

Going further, Martin noted: “There is compelling evidence pointing to Russia. The targets they carefully selected and exploited… were mostly high value, high prestige, strategically important American targets. So, if it was America doing it to itself, why?” Adding “It doesn't make any sense.”

$80 Million Lost to Crypto Scams

The United States Federal Trade Commission (FTC) has reported that since October of 2020, over $80 million has been lost to cryptocurrency scams.

Having received around 7,000 reports, these figures represent a ten-fold increase across the last year, with research also specifying that impersonators of Elon Musk alone have pocketed more than $2 million in a six-month period.

With those between 20 and 49 years of age, five times more likely than older groups to report losing money to fraudulent crypto investment schemes, the FTC has provided advice on avoiding such scams.

Often lured in with promises of high-returns, one UK victim lost her entire life savings of £9,000 after having fallen to a scam which misled her into believing she could double her money in an online giveaway.

Julie Bushnell, a Brighton teacher stated on the loss: “I think about it every minute of every day... They have robbed me of my dignity, self-respect, self-worth and strength.” Adding “I want to raise awareness of this scam, so it doesn't happen to other vulnerable people”.

Thank you for reading this edition of Infosec Round-Up. Please be sure to subscribe to the Hut Six YouTube Channel to keep up to date with the latest news and see all our latest information security videos.

Security Awareness for your Organisation

Enjoyed our blog? Learn more about how Hut Six can help improve you security awareness with training and simulated phishing. Start a free trial now, or book a meeting with one of our experts.


InfoSec Round-Up May 14th

InfoSec Round-Up May 14th - Hut Six

Devastating attack hits Colonial Pipeline fuel supplier. Company criticised for 'unethical' phishing campaign. NSCS warns international cyber criminals.

InfoSec Round-Up May 7th

InfoSec Round-Up May 7th - Hut Six

“Aggressive and Urgent” action against ransomware needed. Romance fraudster steals $113K from victim. Household router flaws leave 6 million vulnerable.

InfoSec Round-Up: April 30th

InfoSec Round-Up: April 30th - Hut Six

Washington DC’s Metro Police Department has lost 250GB of unencrypted data which could be leaked to criminal gangs. exposes personal data of millions of customers. Massive Merseyrail ransomware attack.

InfoSec Round-up: April 23rd

InfoSec Round-up: April 23rd - Hut Six

TikTok Data Lawsuit, Apple Attack & Spy Warning - Infosec Round-Up April 23rd

The importance of an email security policy

Why Organisations Need an Email Security Policy

An email security policy is a document describing how an organisation's email system should, and most importantly, should not be used.

Infosec Round-Up: April 16th

Infosec Round-Up: April 16th - Hut Six

Nuclear Cyber Attack, Capcom Hack & Ransomware Food Shortage - Infosec Round-Up April 16th

Preventing Human Error in Information Security

Human Error in Information Security

When Human Error is found in information security, it is often avoidable errors that allow much larger consequential problems to arise.

InfoSec Round-Up April 9th

InfoSec Round-Up: April 9th - Hut Six

Facebook Leak, Fined & University Attacks - Infosec Round-Up April 9th

Security Awareness - Return on Investment

Investing in Information Security Awareness Training

Investing in Information Security Awareness Training - educating people against cyber threats should be considered essential for any organisation operating in 2021

InfoSec Round-Up: March 26th

InfoSec Round-Up: March 26th - Hut Six

Inside Attacker, FOREX Data Leak & NCSC Warning - InfoSec Round-Up March 26th