Welcome to the latest edition of the Neu Cyber Threats, a weekly series in which we bring attention to the latest cyber attacks, scams, frauds, malware including Ransomware and DDoS, in order to ensure you stay safe online.

Here are the most prominent threats which you should be aware of:


New Linux Malware Framework Allows Rootkit Installs

A new piece of malware dubbed the “Swiss Army Knife” due to its modular architecture and capabilities has been recently discovered within the wild.

The malware is used to target Linux machines and employs a previously undetected threat called Lightning Framework. The core module for this framework acts on two tasks, maintaining persistency and establishing a connection to the command-and-control (C2) server, allowing for the ability to fetch commands.

This gives the attacker access to run remote code and traverse the network. It is the fifth malware strain discovered for Linux machines within three months. The other 4 are BDFDoor, Symbiote, Syslogk and OrBit.

To stay protected against this malware, ensure security measures are in place. Deploying network monitoring and using reputable anti-virus systems all assist with defending against attacks like this.

Neu Cyber Threats

Ukrainian Radio Station Hacked

The Ukrainian Radio station TAVR Media became the latest victim of a cyber attack last Thursday. The hack resulted in broadcasting a message from the Ukrainian president stating he was seriously ill. As confirmed, later on, it was a fake broadcast.

The Radio station confirmed the attack had targeted their servers and network. Their systems were still down due to the attack, but they were working on getting them back up and running.

The fake broadcast also got the president’s attention, forcing him to release a statement on Instagram stating that his health was not in bad stead. Whilst it is unclear how the attackers gained access to the Radio Stations Network, in a related development, the Computer Emergency Response Team of Ukraine (CERT-UA) warned of macro-laden PowerPoint documents that are being used to deploy Agent Tesla malware targeting state organisations of the country.

Plymouth based Clarion still inoperable, after major cyber attack

The housing company responsible for 125,000 homes within the UK found itself still not operational after a large cyber attack back in June. This attack has caused chaos for the organisation and has ended in significant financial losses.

The Government has been urged to step in and remove the organisation from being responsible for these homes. The organisation is now also being investigated by the Housing Ombudsman after the regulator found severe failings. The cyber attack and the computer systems being down have created confusion with their client base and led to a damaged reputation.

Although it is still unclear how the cyber attack happened, the amount of damage has been brought to light. Cyber security hygiene is vital to prevent your business from such a disaster. Things like Cyber Essentials can protect a company from 80% of cyber attacks.

If you are concerned about any cyber security issues within your business, contact us today on 01283 753 333 or email hello@neuways.com.