Scotland environmental regulator hit by ‘ongoing’ ransomware attack
By
11:22 AM
The Scottish Environment Protection Agency (SEPA) confirmed on Thursday that some of its contact center, internal systems, processes and internal communications were affected following a ransomware attack that took place on Christmas Eve. SEPA confirms ongoing ransomware attack likely to be by international serious and organised cyber-crime groups intent on disrupting public services and extorting public funds, the agency said.
SEPA added that, after isolating the compromised systems, recovery will probably take a significant period and some of the infected SEPA systems will have to be replaced with new ones.
A recent data breach at the Reserve Bank of New Zealand, known as Te Pūtea Matua, was caused by attackers exploiting a critical vulnerability patched the same day.
Multiple code repositories from Nissan North America became public this week after the company left an exposed Git server protected with default access credentials.
Citrix confirms ongoing DDoS attack impacting NetScaler ADCs
By
06:26 AM
Citrix has confirmed today that an ongoing DDoS attack pattern using DTLS as an amplification vector is affecting Citrix Application Delivery Controller (ADC) networking appliances with EDT enabled.
Datagram Transport Layer Security (DTLS) is a communications protocol for securing delay-sensitive apps and services that use datagram transport.
DTLS is based on the Transport Layer Security (TLS) protocol and it is designed to prevent eavesdropping and tampering, and to protect data privacy.
Reports of the attack have startedtrickling in on December 21st, with customers reporting an ongoing DDOS amplify attack over UDP/443 against Citrix (NetScaler) Gateway devices.