Safe Breach Labs cybersecurity experts: The threat actor infects victims via Farsi phishing emails with a PowerShell stealer malware.
During opening ceremonies in PyeongChang Winter Olympics, TV and web services were affected by a cyber attack (likely DDoS)
New Cyber attack hit PyeongChang Winter Olympics during the opening ceremonies, Yonhap reported. TV and web services were affected in the aggression, but officials in South Korea (Republic of Korea) said that no vital infrastructure had been damaged. It seems a DDoS attack, in which hackers flooded the targeted servers with tons of requests, that the machines were not able to handle. So they crashed for a period of near 12 hours. At the moment there are no official info on the source of the attacks. Only suspects. Russia, North Korea (DPRK), Iran or Syria. But Moscow denied any involvment of his cyber army. Pyongyang, as Tehran and Damascus, din’t release any comment. But at now Kim Jong-un’s regime doesn’t have interest in provocations at Winter Games. The two Middle East countries, instead, could have reasons to attack the Olympics. As hactivist. But everyone would have claimed. That not happened.
In January some hackers tried to steal credentials, sending fake with malware
The cyber attack against PyeongChang Winter Olympics, moreover, is not the first. An probably not the last. In january some hackers tried to steal credentials, sending fake mail to Ice Hockey organizations involved in the Games from National Counter-Terrorism Centre of Seul. The attachment, named “organized by Agricultural and Forestry Ministry and Winter Olympic Games of PyeongChang” contained a malware. The aggression had been denunced by McAfee in a report.
The US CERT, fearing cyber attacks during Olympic Games in South Korea, issued some suggestions for attendees
Fearing new cyber attacks for 2018 Olympic Games in PyeongChang, US Computer Emergency Response Team (NCCIC/US-CERT) has issued some suggestions on cybersecurity for attendees. On the official web site, NCCIC/US-CERT reminds travelers to be aware of cyber threats. At high-profile events, hactivists may take advantage of the large audience to spread their message. Moreover, members of cybercrime may attempt to steal personally identifiable information or harvest users’ credentials for financial gain. There is also the possibility that mobile or other communications will be monitored during the Games in Republic of Korea. It for security reasons or by cyber espionage groups. For that reasons, NCCIC/US-CERT encourages users to protect themselves against these risks. Especially associated with portable devices (mobile) such as smart phones and tablets.
The reccomendations of NCCIC/US-CERT to counter threats by hactivists, cybercrime and cyber spies
For the Olympic Games in Pyeongchang, NCCIC/US-CERT reccomends to switch off Wi-Fi and Bluetooth connections when not in use. It to avoid external intrusions or cyber attacks on devices. Moreover, to use a credit card to pay for online goods and services. It’s important also -when using a public or unsecured wireless connection-, avoid surfing sites and applications that require personal information like log-ins. Cybercrime could try to steal that informations. Finally, US CERT remembers that’s important to update mobile software and use strong PINs and passwords. It’s the best way to improve cybersecurity and avoid all problems related on a possible compromission.