Welcome to the latest edition of the Neu Cyber Threats, a weekly series in which we bring attention to the latest cyber attacks, scams, frauds, malware including Ransomware and DDoS, in order to ensure you stay safe online.

Here are the most prominent threats which you should be aware of:

 

Dropbox

Cyber attack affecting Gloucester museum’s system one year on

A cyber attack is stopping a museum from accessing its artefact database more than a year after the initial breach.

Benefit payments, planning applications and house sales were all delayed when Gloucester City Council was hit by hackers in 2021.

A council report has now revealed the Museum of Gloucester is still being affected by the cyber incident.

The museum’s database had been used to create exhibitions at the venue.

Council officers first became aware their systems had been compromised on 20 December 2021.

Government Releases Details on Health Care Cyber Attack

The provincial government says a group known as Hive ransomware were responsible for the cyber attack that crippled the health care system back in October 2021.

Justice Minister John Hogan provided an update on the situation ahead of a report being tabled on the matter earlier today.

According to that report, he says the earliest evidence of attacker activity within the Newfoundland and Labrador Centre for Health Information Environment, which includes the regional health authorities, can be traced back to October 15, 2021, just over two weeks before health systems started going down on October 30.

Through conversations with other entities that have gone through similar attacks, Hogan says it is not unusual for the attacker to be in the system for a while before being detected. He says part of the investigation will be to mitigate the risk of such attacks in the future, but sometimes attackers can be one step ahead of government systems.

On that note, Hogan states that last year the FBI itself was the victim of a cyber attack.

Hogan says there is no evidence to indicate that the attack was specifically intended to target the province’s healthcare system. However, government does note that Hive Ransomware are known for their “aggressive and sophisticated capabilities” and their targeting of the health care sector.

He notes that in January of this year the US Department of Justice “extinguished” that group and they are no longer a threat.

He still cannot say whether a ransom was demanded or paid.

UK Crypto Firm Loses $200m in Cyber-Attack

UK crypto startup Euler Labs has suffered a devastating cyber-attack, in which threat actors managed to steal close to $200m from its DeFi lending protocol.

The firm provides a DeFi protocol on Ethereum that it claims allows users to lend and borrow almost any crypto asset.

However, yesterday hackers managed to exploit a vulnerability in its code which enabled them to steal around $199m in various digital currencies: USDC ($34.1m), Dai ($8.8m), Wrapped Bitcoin ($18.9m) and Staked Ether ($137.1m), according to blockchain analysis firm Elliptic.

“Flash loan attacks involve taking out large, short-term uncollateralized crypto loans from a DeFi service, and using the large sums involve to manipulate the market and other DeFi services in their favor,” the firm explained.

“The proceeds of the attack are already being laundered through Tornado Cash, a decentralized mixer that has been sanctioned by the US government.”

If you are concerned about any cyber security issues within your business, contact us today on 01283 753 333 or email hello@neuways.com.