Wednesday, June 25, 2014

The cyber threats World Cup

"b5a2112014". You may wonder why in the world we started this post with such a strange code. Well, we are going to explain you the reason.

That is the password for the WiFi network of the Brazil’s World Cup security center. We shouldn’t know such information, right? But the passcode has run through Twitter like wildfire after a photo of the control center was published in a Brazilian newspaper. On one of the screens, both the network ID and its password were clearly appreciated. The most embarrassing thing is that the same issue happened four months ago at the Super Bowl.

We have to add human errors like this to the large number of software vulnerabilities that are detected every day. For example, the two of them discovered in the file and print sharing software called Samba. Such flaws would allow an attacker to perform denial of service attacks.

If we add malware to the mix, we will get an extremely dangerous cocktail. The last banking Trojan unmasked by Kaspersky Lab is called Luuuk. This malware targets a specific European banking institution. The cybercriminals have obtained half a million euros in just one week, after stealing different amounts of money to 190 of its customers previously infected by the mentioned Trojan.

Anyway, no one is safe from cyber threats. Not even if you're a farmer in a remote town in Montana (U.S.). In that American state, cybercriminals gained access to a server of the state Department of Public Health and Human Services (DPHHS) where the personal details of even more people than the number of inhabitants of the state - 1.3 million people - were stored.

Lately this type of information theft is often followed by a subsequent extortion. Hackers threaten to publish stolen information from affected organizations if they don’t receive a large sum of money. Another method is to conduct a DDoS attack against a company and demand a ransom to stop it. These have been cases of the attacks on Nokia, Code Spaces, Domino's Pizza, Feedly, One More Cloud or Durham Police Department.

To fight - as far as possible - against all the situations that we describe in this post, well-trained professionals are required. Since some time ago, the world of cybersecurity has been complaining about the global workforce gap in this field. The security company Symantec is willing to do its bit on the matter with the launch of an innovative training and employment program for not necessarily postgraduate people, which they called Symantec Cyber ​​Career Connection (SC3).

Training and, especially, information are key to address the hazards of the Internet. Therefore, we invite you to keep yourself updated about the world of cybersecurity through any of our social channels (find the links at the right sidebar) or here on our blog.


Post a Comment