{"id":329,"date":"2019-08-09T13:06:51","date_gmt":"2019-08-09T13:06:51","guid":{"rendered":"http:\/\/news.nucleon.sh\/?p=329"},"modified":"2019-09-08T21:39:51","modified_gmt":"2019-09-08T21:39:51","slug":"9-8-19-cyber-news","status":"publish","type":"post","link":"https:\/\/news.nucleon.sh\/ko\/2019\/08\/09\/9-8-19-cyber-news\/","title":{"rendered":"9.8.19 \u2013 Cyber News"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">This week we cover unique cases that published around end of July 2019, <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The first cyber incident happened in Bulgaria \ud83c\udde7\ud83c\uddec a country in east Europe with population of nearly 7,000,000 citizens and is a member of the European Union.<\/p>\n\n\n\n<figure class=\"wp-block-embed-soundcloud wp-block-embed is-type-rich is-provider-soundcloud wp-embed-aspect-1-1 wp-has-aspect-ratio wp-embed-aspect-4-3\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"Cybercure News podcast - 9 - 8 - 19 by Cyber Intelligence Briefing\" width=\"660\" height=\"400\" scrolling=\"no\" frameborder=\"no\" src=\"https:\/\/w.soundcloud.com\/player\/?visual=true&#038;url=https%3A%2F%2Fapi.soundcloud.com%2Ftracks%2F663432488&#038;show_artwork=true&#038;maxheight=990&#038;maxwidth=660&#038;secret_token=s-5uO2z\"><\/iframe>\n<\/div><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">The&nbsp; Bulgarian authorities have arrested a 20-year-old man on suspicion of involvement in cyber attack against Bulgaria tax agency and it affected more than 5,000,000 citizens, around 70% of the country population, some experts say that it effected almost every adult living in Bulgaria.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large is-resized\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" data-attachment-id=\"338\" data-permalink=\"https:\/\/news.nucleon.sh\/ko\/architecture-building-bulgaria-1538534-2\/\" data-orig-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/architecture-building-bulgaria-1538534-2.jpg?fit=640%2C799&amp;ssl=1\" data-orig-size=\"640,799\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"architecture-building-bulgaria-1538534-2\" data-image-description=\"\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/architecture-building-bulgaria-1538534-2.jpg?fit=640%2C799&amp;ssl=1\" src=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/architecture-building-bulgaria-1538534-2.jpg?resize=467%2C583&#038;ssl=1\" alt=\"\" class=\"wp-image-338\" width=\"467\" height=\"583\"\/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Among the stolen data were names, addresses and even some details of personal income, local media reported.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The authorities acknowledged that Bulgaria\u2019s national tax agency was hacked after a news outlet received an email with a taunt and a claim of responsibility.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Since Bulgaria is member of the EU and it needs to comply with the GDPR, The General Data Protection Regulation in EU law on data protection and privacy for all individual citizens of the European Union. this means that Bulgaria\u2019s tax agency could face fines of up to $22.5 million over the breach from the EU.<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large is-resized\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" data-attachment-id=\"334\" data-permalink=\"https:\/\/news.nucleon.sh\/ko\/440px-vladislav_goranov_2017-11-15_cropped\/\" data-orig-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/440px-vladislav_goranov_2017-11-15_cropped.jpg?fit=440%2C556&amp;ssl=1\" data-orig-size=\"440,556\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"440px-vladislav_goranov_2017-11-15_cropped\" data-image-description=\"\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/440px-vladislav_goranov_2017-11-15_cropped.jpg?fit=440%2C556&amp;ssl=1\" src=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/440px-vladislav_goranov_2017-11-15_cropped.jpg?resize=264%2C333&#038;ssl=1\" alt=\"\" class=\"wp-image-334\" width=\"264\" height=\"333\"\/><figcaption>Vladislav Goranov, Finance Minister<\/figcaption><\/figure><\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Some experts estimated that this cyber attack was possible because of legacy systems that were used were not patched properly.&nbsp;and simple proper network maintenance would have solved this vulnerabilities that were exploited.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The country&#8217;s finance minister, Vladislav Goranov, has apologised in parliament for the breach. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Mr. Goranov said anyone who attempted to exploit the data &#8220;would fall under the impact of Bulgarian law&#8221;.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">And we ask Mr. Goranov, why not invest in proper cyber security measures instead making empty threats ? \ud83d\ude42<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Though the police cautioned that the investigation was in its early stages, some officials suggested that Russia might have been behind the attack, as retaliation for the country\u2019s recent purchase of American-made fighter jets.<br><\/p>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<p class=\"wp-block-paragraph\"><br><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Paige Thompson, a 33-year-old from Seattle, has been arrested and charged by the FBI with stealing personal data belonging to more than 100 million Capital One customers from the USA and another 6 Million from Canada.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" width=\"660\" height=\"484\" data-attachment-id=\"333\" data-permalink=\"https:\/\/news.nucleon.sh\/ko\/erratic\/\" data-orig-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/erratic.png?fit=939%2C689&amp;ssl=1\" data-orig-size=\"939,689\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"erratic\" data-image-description=\"\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/erratic.png?fit=660%2C484&amp;ssl=1\" src=\"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/erratic.png?resize=660%2C484&#038;ssl=1\" alt=\"\" class=\"wp-image-333\"\/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Capital One is a bank holding company specializing in credit cards, auto loans, and other financial services.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The FBI complaint against Thompson revealed several interesting details about the cyber attack. Thompson worked in Amazon Web Services also known as AWS, AWS is one of the biggest providers of cloud computing services in the world.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The vulnerability the hacker exploited was related to specific mis configuration in the specific firewall that was used by Capital One and allowed the hacker to further sniff traffic and execute commands on servers in the network.&nbsp;<\/p>\n\n\n\n<figure class=\"wp-block-image is-resized\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/cbsnews1.cbsistatic.com\/hub\/i\/r\/2019\/07\/30\/b0bf2114-88a0-4c21-bf5e-9364a86c6e23\/thumbnail\/620x379\/ccab3cff584f9ad48aa50177bc65d9cf\/screen-shot-2019-07-30-at-2-27-16-pm.png?resize=292%2C178&#038;ssl=1\" alt=\"\" width=\"292\" height=\"178\"\/><figcaption>Some of the social msgs<\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">In order to successfully exploit and find such specific vulnerabilities in the firewall it usually means that the hacker had some inside knowledge, her work at AWS might have gave her the information she needed in order to take advantage of this vulnerability.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It seems that in this (rare) case the hacker got caught because she was bragging too much and not careful enough, the hacker thought that using the darknet and different anonymizing techniques will provide the needed protection to hide her identity and that confidence resulted in her posting files and tweets on the internet that were related to the hack and even she even consulted with others.<\/p>\n\n\n\n<figure class=\"wp-block-embed-youtube wp-block-embed is-type-video is-provider-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<span class=\"embed-youtube\" style=\"text-align:center; display: block;\"><iframe loading=\"lazy\" class=\"youtube-player\" width=\"660\" height=\"372\" src=\"https:\/\/www.youtube.com\/embed\/6t4i-u7WgSQ?version=3&#038;rel=1&#038;showsearch=0&#038;showinfo=1&#038;iv_load_policy=1&#038;fs=1&#038;hl=ko-KR&#038;autohide=2&#038;wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\"><\/iframe><\/span>\n<\/div><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">CapitalOne confirmed the hack and confirmed that they found out about it after receiving email that led them to the files the hacker started to publish on the internet. and that the vulnerability was immediately fixed.<br><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That\u2019s it for this podcast, I hope you found this brief overview interesting.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Stay safe and see you at the next podcast. Don\u2019t forget to visit<a href=\"http:\/\/www.cybercure.ai\"> www.cybercure.ai<\/a> for the latest podcasts and cyber intelligence.<br><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n","protected":false},"excerpt":{"rendered":"<p>This week we cover unique cases that published around end of July 2019, The first cyber incident happened in Bulgaria \ud83c\udde7\ud83c\uddec a country in east Europe with population of nearly 7,000,000 citizens and is a member of the European Union. The&nbsp; Bulgarian authorities have arrested a 20-year-old man on suspicion of involvement in cyber attack [&hellip;]<\/p>\n","protected":false},"author":143072865,"featured_media":333,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_coblocks_attr":"","_coblocks_dimensions":"","_coblocks_responsive_height":"","_coblocks_accordion_ie_support":"","_crdt_document":"","advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"#cybercure #cyber #news , new #podcast episode, this time covering the hacker that got caught in Seattle and the huge hack in #Bulgaria. checkout the full podcast on cybercure.ai blog!","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"_wpas_customize_per_network":false,"jetpack_post_was_ever_published":false},"categories":[646263560],"tags":[6602,144203,11109,4752642,2702,78999,68079,75691,103,1142,10759,4800,8862,599182,699],"class_list":["post-329","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybercure-ai","tag-amazon","tag-aws","tag-bulgaria","tag-capitalone","tag-eu","tag-exploit","tag-fbi","tag-nato","tag-news","tag-podcast","tag-russia","tag-seattle","tag-tax","tag-twitter","tag-usa","entry-image--landscape"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/news.nucleon.sh\/wp-content\/uploads\/2019\/08\/erratic.png?fit=939%2C689&ssl=1","jetpack_likes_enabled":true,"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/paa2yX-5j","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/posts\/329","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/users\/143072865"}],"replies":[{"embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/comments?post=329"}],"version-history":[{"count":9,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/posts\/329\/revisions"}],"predecessor-version":[{"id":384,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/posts\/329\/revisions\/384"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/media\/333"}],"wp:attachment":[{"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/media?parent=329"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/categories?post=329"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news.nucleon.sh\/ko\/wp-json\/wp\/v2\/tags?post=329"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}