Popular Airline Hacked; COVID-19 Attacks Near 200,000 Per Week

May 21, 2020

Popular Airline Hacked; COVID-19 Attacks Near 200,000 Per Week

BY Courtney Heinbach

Cybersecurity

As if the global health crisis hasn’t impacted the business community enough in the last 10-plus weeks, bad actors continue to exploit businesses at any possible opportunity. Here’s a roundup of some top cyber security news from the past week.

Budget airline EasyJet attack affects nearly nine million customers. The company confirmed they were hit with a “highly sophisticated” attack, with customers’ travel information and email addresses exposed. Of those nine million, over 2,000 also had their credit card information accessed. The airline plans to notify all affected by May 26th.

Check Point Security research finds 192,000 COVID-19 related attacks per week. A common campaign involves hackers posing as the World Health Organisation, spoofing their actual domain, and hooking readers with a “vaccine test/result update”. If a reader clicked on the file attachment, they were infected with AgentTesla malware.

REvil Ransomware 2.2 Encrypts Locked and Opened Files. The ransomware uses Windows Restart Manager API to terminate processes that open the file targeted for encryption. Attackers also included a command-line option that skips blacklisted processes, services, and shadow copy deletion.

UK Power Grid Company Elexon internal IT network hit with a cyber attack. The attack left the organisation unable to send or receive emails. Luckily, two of the company’s other mission-critical systems were unaffected. Power grids have long been a target of attackers, with the United States seeing a 'first of its kind' attack in 2019.

MSPs, maybe now more than ever, are a crucial partner for businesses of all sizes in ensuring preparedness for malicious attacks. During the current global health crisis, MSPs are seeing an increased need for their services. We’re here to help. Take a look at our MSP Help Center for resources on staying secure during the current business environment.

Subscribe to the Blog