LifeNewsShowbizSocietyEntertainmentSuperstitions

Major Firms Targeted by Emerging Cybercrime Campaign

By Jurassic JennAug 20, 2024 19:28 PMTech
Share:
Cybersecurity. Source: https://www.techradar.com/

Experts are sounding the alarm on the growing threat posed by poor cybersecurity practices among large organizations, which fail to properly secure their infrastructure. Key weaknesses such as exposed environment variable files (.ENV), long-lived credentials, and lack of least privilege architectures have made multiple companies susceptible to ransom attacks.

Cyber Extortion Strategy

According to a report by cybersecurity researchers Unit 42, an unidentified threat actor has orchestrated a formidable extortion scheme by exploiting exposed environment variable files that contain vital information like login credentials. The attackers established their operational base within AWS environments of targeted firms and proceeded to scan over 230 million unique targets to harvest sensitive information. This campaign impacted over 110,000 domains and exposed more than 90,000 unique variables.

Impact and Methodology

Among these variables, 7,000 pertained to cloud services, though this figure is not indicative of the number of affected organizations, as single enterprises may own several variables. Nonetheless, attackers obtained at least 1,500 variables from social media accounts, suggesting a significant number of victims. Additionally, the cybercriminals utilized multiple source networks for executing this operation.

Shift Away from Encryption

Interestingly, the attackers opted not to encrypt their victims’ IT infrastructures. This shift highlights a broader trend where cybercriminals are moving away from cumbersome encryption malware towards straightforward data ransom schemes. As researchers noted, managing encryptors is costly and complicated, whereas simply holding data for ransom appears equally effective.

"The campaign involved attackers successfully ransoming data hosted within cloud storage containers," Unit 42 elaborated. "Instead of encrypting the data for ransom, they exfiltrated it and left a ransom note in the compromised cloud storage container."

The researchers concluded that the attackers did not exploit any system vulnerabilities but instead leveraged human error and carelessness as entry points.

Earlier, SSP wrote that Huawei’s triple-screen folding phone leaked again.

ScientistTech
Share:
Home/Tech/Major Firms Targeted...
Top Articles

The meaning of the name Ava and its spiritual meanings

Sep 13, 2024 16:15 PM

Symbolism and power of the mockingbird totem animal: your spiritual encounter

Sep 13, 2024 12:16 PM

Twitching left or right eyebrow: spiritual meanings of the omen

Sep 13, 2024 08:41 AM

Symbolism and spiritual meaning of centipede encounter

Sep 11, 2024 15:21 PM
More News

Marseille Confirm Agreement with Free Agent Adrien Rabiot

Sep 17, 2024 21:59 PM

Justin Timberlake Pleads Guilty and Urges Against Drinking and Driving

Sep 17, 2024 21:38 PM

Influential Friendships Await Three Zodiac Signs

Sep 17, 2024 21:16 PM

Want to Get into Vinyl? 3 Great Beginner Turntable Systems to Get You Started

Sep 17, 2024 20:53 PM

5 of the Best Fall Movies

Sep 17, 2024 20:12 PM

Engaging in relaxation activities: horoscope for the second part of September

Sep 17, 2024 19:54 PM

A Shy Penguin Wins New Zealand’s Bird Election Amid Memes and Tattoos

Sep 17, 2024 19:08 PM

Tottenham Hotspurs Manager Postecoglou Confident in Second-Year Succes

Sep 17, 2024 18:25 PM

Three Zodiac Signs Set for New Opportunities

Sep 17, 2024 18:03 PM

The Secret Behind Your Cat's Sense Of Smell

Sep 17, 2024 17:42 PM

Is It Safe to Eat Sprouted Potatoes? What Experts Say

Sep 17, 2024 17:21 PM

The 5 Weirdest and Wildest Stunts Crowned by Guinness World Records in 2024

Sep 17, 2024 16:59 PM

Matter is Revolutionizing Your Smart Home – What You Need to Know

Sep 17, 2024 16:39 PM

Prioritising practical aspects of love: horoscope for the second part of September

Sep 17, 2024 16:18 PM

5 Funny Horror Movies to Watch for a Bloody Good Time

Sep 17, 2024 15:56 PM

Doja Cat's Artistic Evolution: Striving Beyond Pop to Explore Diverse Genres

Sep 17, 2024 15:36 PM

Chicken with Peaches – One-Pan 30-Minute Meal

Sep 17, 2024 15:13 PM

Tech Billionaire Returns to Earth After Historic Spacewalk

Sep 17, 2024 14:51 PM

Significant Self-Discoveries Await Three Zodiac Signs

Sep 17, 2024 14:08 PM

Adorable Baby Hippo Moo Deng Becomes Overnight Celebrity

Sep 17, 2024 13:47 PM

Europe's Solheim Cup Comeback Falls Short as Pettersen Faces No Regrets

Sep 17, 2024 13:25 PM

Teenager Builds Robot to Solve Rubik's Cube

Sep 17, 2024 13:03 PM

Three zodiac signs will embrace humor and light-heartedness: horoscope for September 17

Sep 17, 2024 12:42 PM

Radiating a sense of warmth and encouragement with family: horoscope for the second part of September

Sep 17, 2024 12:23 PM

Celestial Phenomenon and Cultural Beliefs About Solar Eclipses

Sep 17, 2024 12:04 PM

Spot the Snake: A Challenge for Keen Observers

Sep 17, 2024 11:37 AM