Episode #5 – 29th May

This is the Hut Six InfoSec Round-Up, where we look at some of the most pressing matters, latest trends, and industry news from across the world of information security.

This week we are looking at GitLab’s simulated phishing attacks, the Red Cross’ open letter on cyber security and the lawsuit over the easyJet customer data breach. Welcome to the Hut Six Infosec Round-Up.

GitLab Phishes its Employees

The DevOps platform, GitLab has announced that 20% of targeted employees have handed over credentials in a simulated phishing attack.

The mock phishing emails, which were sent to GitLab employees, were designed to tests the susceptibility of staff to online scams.

1 in 5 employees though, failed the test by not only clicking on links within suspicious emails, but also entering login details into a specially designed phishing website. Designed to mimic an official GitLab page, only 12% of email recipients reported the email to GitLab security.

 Johnathan Hunt, VP of Security at GitLab, stated “Initially, the team had the assumption that more people would fall for the phishing scam, but that assumption turned out to be false.”

The average failure to detect phishing emails is an issue of some dispute, with some estimates as low as 3.4%, whilst other as high as 45%.

Publishing the results publicly is a pioneering move by GitLab as usually these results are closely guarded by organisations and even employees themselves are kept in the dark.

Red Cross Urges Governments to Improve Cybersecurity

In an open letter the International Committee of The Red Cross has called upon governments across the world to work together to help stop cyber-attacks on health care institutions.

Along with over 40 other global leaders, the head of the International Committee of the Red Cross (ICVRS) has called upon governments to do more to safeguard critical healthcare institutions during this particularly critical time.

The plea comes following a number of attacks against medical research and health facilities, including one of the Czech Republic’s biggest Covid-19 testing centres, Brno University Hospital, which was held to ransom.

In the letter, ICRS president, Peter Maurer urged powers “to take immediate and decisive action to stop all cyber-attacks.” Adding “we must take action collectively to ensure this threat is addressed, and already fragile health care systems… are not put at further risk by cyber operations.”

easyJet Faces £18 Billion Lawsuit

Following on from last week’s coverage of the easyJet hack, which saw 9 million customer records breached, the budget airline is now facing a £18 billion class-action lawsuit.

The attack, which was made public only last week, has led to the filing of a lawsuit on behalf of the 9 million customers. The law firm filing the claim suggests that victims could be eligible for up to £2,000, depending on circumstances.

The stolen data, which contained full names, email addresses and travel data, may, as the law firm points out, could pose a security risk to affected individuals.; this kind of data often being sought out for the purposes of phishing.

The UK’s Nation Cyber Security Centre (NCSC), who were notified of the incident on the 19th May, have also stated that they “recommend anybody with accounts that could have been compromised to be especially vigilant against any unusual activity in their bank accounts or suspicious phone calls and emails”, as well as recommending users consider changing passwords for affected accounts.

If you are interested in finding out more about Hut Six’s information security awareness training, follow the link below.