Connect with us

Editors' Pick

Iranian Hackers Took 6 Terabytes Worth Of Data From Citrix

Published

on

Citrix was inflitrated by Iranian cybercriminals and accessed and downloaded 6 terabytes worth of crucial documents.

Another data breach has taken the tech world on its seat, as a leading American digital systems provider was infiltrated by hackers, taking terabytes of their clientele’s data.

According to the FBI, international cybercriminals have infiltrated the servers of Citrix, a global leader in computing systems, providing more than 400,000 companies with virtual private network access and credentials including 98% of the Fortune 500.

The company has assured its clients that they have already taken appropriate actions regarding the security breach. According to Stan Black, Citrix CSI, the company has “commenced a forensic investigation; engaged a leading cybersecurity firm to assist; took actions to secure our internal network; and continue to cooperate with the FBI.”

The global security firm, Resecurity, said that an Iranian-linked group called IRIDIUM perpetrates the attack. The group allegedly has already carried out an attack to more than 200 government agencies, oil and gas firms, and tech companies around the world.

The firm, Resecurity, said that they had given a preemptive warning to Citrix since December 28, 2018, regarding possible cyber attacks against its systems.

“Based on the timing and further dynamics, the attack was planned and organized specifically during Christmas period,” Resecurity says in a blog.

“Based our recent analysis, the threat actors leveraged a combination of tools, techniques, and procedures allowing them to conduct targeted network intrusion to access at least 6 terabytes of sensitive data stored in the Citrix enterprise network, including e-mail correspondence, files in network shares and other services used for project management and procurement.”

Resecurity says the group uses proprietary techniques to bypass 2FA authorization for critical applications and services for further unauthorized access to virtual private networks channels and single sign-on.

At this point, it is still not possible to pinpoint precisely the extent of the damage caused by the attack. It is possible that the cybercriminals were able to access and download crucial documents from Citrix’s servers.

“In investigations of cyber incidents, the details matter, and we are committed to communicating appropriately when we have what we believe is credible and actionable information,” says Black. “While our investigation is ongoing, based on what we know to date, it appears that the hackers may have accessed and downloaded business documents.”

“At this time, there is no indication that the security of any Citrix product or service was compromised,” Black added.

However, according to Ian Thornton-Trump, security head of AMTrust Europe: It’s possible the bad guys have the source code for older products, possibly the Citrix NetScaler Gateway, formerly known as the Citrix Access Gateway, or CAG, which is primarily used for secure remote access.

“Let’s look back to 2012 when Symantec had the source code for PC Anywhere stolen – let’s not forget that in this treasure trove of data Citrix may have given up the source code for Logmein as well as other products. PC Anywhere ceased to be a viable product, and it was one of the nails in the coffin; the same could happen for Logme in.”

The Federal Bureau of Investigation thinks that the attack was carried out by exploiting weak passwords in the system known as “password spraying.” The technique allows the hacker to gain limited control over the network and find a way to circumvent other remaining security layers.

According to UK’s National Cybersecurity Centre (NCSc), they have already warned tech companies of this method in the past where lists of a small number of common passwords are used to brute force large numbers of accounts.

“These attacks are successful because for any given large set of users there will likely be some who are using very common passwords, and these attacks can slip under the radar of protective monitoring which only look at each account in isolation,” the NCSC says.

The agency has previously conducted a study to determine who among the organizations and companies that participated are vulnerable to password spraying. It revealed that 75% of the participants had accounts with passwords that are featured in the top 1,000 most common passwords and 87% are highlighted in top 10,000.

This attack is another of the overwhelming sprout of data breaches and cyber attacks in multinational organizations and governments. Recently, the government of Singapore has named the group WhiteFly as the perpetrator of the notorious SingHealth data breach that affected thousands of Singaporean patients’ data.

A consumer tech and cybersecurity journalist who does content marketing while daydreaming about having unlimited coffee for life and getting a pet llama.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Editors' Pick

AMCA Breach: 20 Million Victims, 19 Class Actions

[bctt tweet=”AMCA previously reported that there were only 200,000 victims in the recent breach, but their partner labs said there were more than 20 million.” username=”Z6Mag”]

Published

on

AMCA previously reported that there were only 200,000 victims in the recent breach but the company, but their partner labs said there were more than 20 million.
AMCA previously reported that there were only 200,000 victims in the recent breach but the company, but their partner labs said there were more than 20 million. Photo: cbgrfx123 | Flickr | CC BY-SA 2.0

More than 20 million and not 200,000 have fallen victim to a massive data breach that has seen medical clients using the services of healthcare billing company, American Medical Collection Agency (AMCA), to pay for their laboratory tests in different blood testing labs across the U.S. were confirmed by the SEC filings of affected medical institutions amidst the earlier claims of AMCA that there were fewer victims.

The data breach was a result of a cyber attack that aims to phish for financial information from the website of the AMCA. The exposed data belongs to Americans who paid laboratory services at several clinical and blood testing labs and institutions and used the AMCA billing portal.

What happened in the AMCA breach?

Data that were stolen from the victims include their names, phone numbers, dates of birth, home addresses, social security numbers, credit card numbers, and other bank details. The said information was auctioned off by the hacker in several financial hacking forums.

According to DataBreaches.net, the organization who first reported about the incident, AMCA officials, following the notification of the breach confirmed that their system has been compromised and has remained undetected for more than eight months. AMCA corroborated that the breach took place between August 1, 2018, and March 30, 2019.

Notifications have been sent by several of AMCA’s corporate partners and clients to their customers following the disclosure of the security breach that has seen information from millions of Americans compromised.

Related: Hospitals Only Spend 5% Of Its Budget For Cybersecurity Amidst 82% Of Them Reporting To Have Been Attacked

The list of impacted testing laboratories includes Quest Diagnostics (11.9 million patients), LabCorp (7.7 million patients), BioReference Laboratories (Opko Health subsidiary, 422,600 patients), Carecentrix (500,000 patients), and Sunrise Laboratories (undisclosed number of patients).

However, neither the AMCA nor its five clients have yet to notify ALL impacted citizens by the breach making them vulnerable to a lot of cyber crimes and their financial data could be used by anyone who gets hold of the information against the persons of those who still don’t know that their financial information is floating around the internet.

The companies involved in the breach are facing several lawsuits

Appropriately, the lawsuit came into the direction of AMCA, Quest, and LabCorp regarding the incident. More than 11 class-suite actions have been filed against the three companies for their inability to protect consumer data. The 11 lawsuits were recorded at The United States Judicial Panel on Multidistrict Litigation (JPML) on June 3. Since then, eight more lawsuits were filed against the companies in federal courts from New Jersey, New York, and California.

According to litigation experts, “If many cases are filed in federal court, any of the lawyers on any of those cases can file a motion with the JPML [..] to centralize the various federal cases that have been filed by sending all of them to a single judge for coordinated pre-trial proceedings.”

“Healthcare companies are especially susceptible to data breaches not only because they aggregate a tremendous amount of important and sensitive data, but also because they tend to be less focused on cybersecurity protection than other industries,” said John Yanchunis of Morgan and Morgan, one of the firms who filed lawsuits against Quest Diagnostics.

“These companies, like Quest Diagnostics, know they are at an increased risk and yet have not taken the proper steps to protect their patients’ data. We will fight for justice on behalf of those impacted by this breach,” added Yanchunis.

Lawmakers are demanding an explanation

The U.S. government, led by attorneys general from Connecticut and Illinois has also opened an investigation on the matter. Furthermore, lawmakers and other politicians have sent letters to the responding companies to ask for an explanation of why an eight-month data breach remained undetected and to demand accountability from them.

In Washington, US Sen. Mark Warner (D-VA) also sent a letter to Quest Laboratories demanding the company explain its vetting process for selecting AMCA as a billing vendor, and what requirements a third-party vendor has to pass. Democratic New Jersey Sens. Cory Booker and Bob Menendez also sent letters to AMCA, Quest, and LabCorp, seeking official answers on how a breach of this severity went undetected for eight months.

“The months-long leak leaves sensitive personal and financial information vulnerable in the hands of criminal enterprises. Moreover, such breaches force victims to contend with identity theft that may lead to irreparable harm to their credit reports and financial future,” said the letter sent by the NJ senators.

Continue Reading

Arts & Entertainment

‘The Hunger Games’ Is Launching A Prequel And A Possible Movie

[bctt tweet=”Suzanne Collins is releasing a prequel to The Hunger Games storyline and Lionsgate is already looking forward in turning it into a blockbuster movie” username=”Z6Mag”]

Published

on

Source: Scholastic

Almost fours years after the last The Hunger Games movie (The Hunger Games: Mockingjay Part II) and almost nine years after the first book from the trilogy was released, Suzanne Collins is returning with the famed trilogy — but this time in a form of a prequel.

Scholastic, the publishing company that distributed Collins’ The Hunger Games trilogy, announced today that it is publishing a prequel novel to the series, currently untitled, which will hit shelves on May 19, 2020.

“Suzanne Collins is a master at combining brilliant storytelling, superb world-building, breathtaking suspense, and social commentary,” Scholastic Trade Publishing President Ellie Berger said in a statement. “We are absolutely thrilled — as both readers and publishers — to introduce the devoted fans of the series and a new audience to an entirely new perspective on this modern classic.”

Collins’ original Hunger Games trilogy—The Hunger GamesCatching Fire, and Mockingjay—altogether, sold more than 100 million copies and has been translated into more than 50 languages. Moreover, The Hunger Games books appeared on the New York Times bestseller list for more than 260 consecutive weeks (more than five straight years).

After writing the last installment in 2010, Collins teased in 2013 that she was working on a new series, but did not say whether it was related to The Hunger Games.

This time, the novel will be set in the world of Panem, 64 years before the events of the original Hunger Games trilogy—the morning where Katniss Everdeen volunteered as a tribute on the 74th Hunger Games. Presumably, Katniss Everdeen played by Jeniffer Lawrence will not be involved in the upcoming novel.

Based on the previous novels in the series, 74 years before the main novels, the 13 Districts of Panem already tried to initiate a rebellion against the Capital. In the aftermath of the failed attempt, 12 Districts remained to leave District 13 to rubbles. The Hunger Games was a result and served as a reminder that all the other Districts should obediently comply with the Capital’s rule.

The novel will take place 10 years after the first rebellion and will tell the story of Panem during the “Dark Days following a failed rebellion in Panem “With this book, I wanted to explore the state of nature, who we are, and what we perceive is required for our survival,” Collins told the Associated Press in the announcement. “The reconstruction period 10 years after the war, commonly referred to as the Dark Days — as the country of Panem struggles back to its feet — provides fertile ground for characters to grapple with these questions and thereby define their views of humanity.”

On other news, the Lionsgate film studio, who adapted The Hunger Games trilogy into movies, is already looking forward to the next addition to Collins’ franchise given that it received praise and public attention for producing them.

“As the proud home of the Hunger Games movies, we can hardly wait for Suzanne’s next book to be published,” said Joe Drake, chairman of the Lionsgate Motion Picture Group, in a recent statement to the Associated Press. “We’ve been communicating with her during the writing process and we look forward to continuing to work closely with her on the movie.”S

Lionsgate turned Collins’ Hunger Games novels into a series of four films, dividing the last novel, Hunger Games: Mockingjay, into a two-part finale. Over the course of the four movies, it earned almost $3 billion dollars an the worldwide box office with the last movie earning $653.4 million.

Collins helped with the movies as an executive producer and a co-screenwriter on the first 2012 movie but distanced herself after she finalized Mockingjay in 2010.

Lionsgate is also known to have produced Twilight, which is one of their platinum franchises along with Collins’ trilogy. The studio earlier licensed The Hunger Games to theme parks and live concert tours being built around the movie franchise.

Additionally, it starred Jenniffer Lawrence who played the main character as Katniss Everdeen in all of the four movies, which helped catapult her acting career in 2012.

Scholastic acquired world English rights to the prequel novel and it will publish in print, digital and audio formats in the US, Canada, the UK and Ireland, Australia, and New Zealand next year. The deal was negotiated by Rosemary Stimola of the Stimola Literary Studio for Suzanne Collins and David Levithan, VP, Publisher, and Editorial Director, for Scholastic.

Continue Reading

Editors' Pick

Global Ice Melting At Rates Faster Than Expected

Published

on

Photo by Sergey Kuznetsov on Unsplash

The global ice, or the size and number of glaciers located across cold spots around the world, is a clear indicator of the effects of global warming. With human’s excessive and consistent use of o-zone depleting resources such as fossil fuels — the rate of global ice is melting will only keep accelerating.

The National Snow and Ice Data Center reported that based on data they have gathered since the1900s, glaciers around the globe are shrinking and melting at an alarming rate.

Arctic sea ice has been in constant general low over the years following the increasing trend of greenhouse gas. Additionally, as the frozen ground across the Arctic melts, it releases a massive amount of methane, a potent greenhouse gas. Scientists say that this effect could make global ice melt accelerate even faster.

A separate study found that parts of the Canadian Arctic are experiencing a rate of permafrost thaw six times the long-term average.

Meanwhile, melted ice is especially notable both in and around Greenland — home to the second largest ice sheet on the planet.

“Communities in #Greenland rely on the sea ice for transport, hunting, and fishing. Extreme events, here flooding of the ice by abrupt onset of surface melt call for increased predictive capacity in the Arctic,” Steffen Olsen, a climate researcher at the Danish Meteorological Institute said in a tweet.

Olsen was referring to Greenland losing 2 billion metric tons of ice. “The high melt is unusual so early in the season but not unprecedented,” Greenland Ice said in a tweet.

Experts are calling the lost ice “not normal” considering that it equates to almost half of Greenland. Roughly 45 percent of the ice sheet surface has been melting. Usually, less than 10 percent of the ice sheet surface is melting at this time of year. According to data from the National Snow and Ice Data Center, Wednesday set a daily record for the widest melt area on that date, with 275,000 square miles.

“I’m losing the ability to communicate the magnitude [of change],” Jeremy Mathis, a longtime Arctic researcher and a current board director at the National Academies of Sciences told Mashable. “I’m running out of adjectives to describe the scope of change we’re seeing.”

On other parts of the globe, a city in western Alaska is experiencing drastic changes to its land formations as the state’s ice and permafrost are starting to thaw away.

“Springtime in Alaska isn’t what it used to be. This is the 3rd time past 21 years we can say” warmest spring of record.” 1998 was the warmest to date, exceeded in 2016 and now 2016 exceeded in 2019. Trend +4.0F (+2.2C) since the 1970s.” Rick Thoman said in a tweet.

The continued ice and permafrost melting in Iceland are causing significant damages in terms of requiring towns and villages like Newtok in western Alaska to relocate to avoid dangers.

“It’s a real challenge because in the US there isn’t the precedence to deal with this and there isn’t the political framework to deal with it either,” said Susan Natali, a scientist and Arctic expert at the Woods Hole Research Center in Massachusetts. “The numbers needing relocation will grow, the costs are going up and people’s lives and cultural practices will be impacted.

“Every year there’s a new temperature record, it’s getting worse and worse and you feel like a broken record saying it. This should be the number one urgent conversation happening right now because it’s not just going to be Alaska, it’s going to be other communities all over the US,” Natali added.

The problem does not only persist in Greenland, the Arctic or Alaska. Global ice is melting all across the globe. “The famed snows of Kilimanjaro have melted more than 80 percent since 1912. Glaciers in the Garhwal Himalaya in India are retreating so fast that researchers believe that most central and eastern Himalayan glaciers could virtually disappear by 2035 […] From the Arctic to Peru, from Switzerland to the equatorial glaciers of Man Jaya in Indonesia, massive ice fields, monstrous glaciers, and sea ice are disappearing, fast,” the National Geographic reported.

This week, the Pope has talked to oil executives in the Vatican to find solutions in the growing problem of global warming. He called for a “radical energy transition” from conventional fossil fuels and develop greener energy alternatives.

Continue Reading

Trending