<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Cybercrime Archives - Cyber Security Plus</title>
	<atom:link href="https://cybersecurityplus.co.uk/tag/cybercrime/feed/" rel="self" type="application/rss+xml" />
	<link>https://cybersecurityplus.co.uk/tag/cybercrime/</link>
	<description></description>
	<lastBuildDate>Mon, 11 Sep 2023 16:13:25 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=7.0</generator>

<image>
	<url>https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/favicon-1-1-1-1.png</url>
	<title>Cybercrime Archives - Cyber Security Plus</title>
	<link>https://cybersecurityplus.co.uk/tag/cybercrime/</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>BBC, BA and Boots issued with ultimatum by cyber gang Clop</title>
		<link>https://cybersecurityplus.co.uk/bbc-ba-and-boots-issued-with-ultimatum-by-cyber-gang-clop/</link>
		
		<dc:creator><![CDATA[tonibennett]]></dc:creator>
		<pubDate>Thu, 08 Jun 2023 14:32:00 +0000</pubDate>
				<category><![CDATA[Hacker]]></category>
		<category><![CDATA[Security]]></category>
		<category><![CDATA[Blockchain]]></category>
		<category><![CDATA[Cyber Security]]></category>
		<category><![CDATA[Cybercrime]]></category>
		<category><![CDATA[Global News]]></category>
		<guid isPermaLink="false">https://cybersecurityplus.co.uk/?p=348</guid>

					<description><![CDATA[<p>A prolific cyber crime gang thought to be based in Russia has issued an ultimatum to victims of a hack that has hit organisations around the world.</p>
<p>The post <a href="https://cybersecurityplus.co.uk/bbc-ba-and-boots-issued-with-ultimatum-by-cyber-gang-clop/">BBC, BA and Boots issued with ultimatum by cyber gang Clop</a> appeared first on <a href="https://cybersecurityplus.co.uk">Cyber Security Plus</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph"><strong>A prolific cyber crime gang thought to be based in Russia has issued an ultimatum to victims of a hack that has hit organisations around the world.</strong></p>



<p class="wp-block-paragraph">The Clop group posted a notice on the dark web warning firms affected by the MOVEit hack to email them before 14 June or stolen data will be published.</p>



<p class="wp-block-paragraph">More than 100,000 staff at the BBC, British Airways and Boots have been told payroll data may have been taken.</p>



<p class="wp-block-paragraph">Employers are being urged not to pay up if the hackers demand a ransom.</p>



<ul class="wp-block-list">
<li><a href="https://www.bbc.co.uk/news/technology-65814104">BBC, BA and Boots among victims of mass payroll hack</a></li>



<li><a href="https://www.bbc.co.uk/news/technology-65820603">What action can those caught up in mass hacks take?</a></li>
</ul>



<p class="wp-block-paragraph">Cyber security research previously suggested Clop could be responsible for the hack which was first announced last week.</p>



<p class="wp-block-paragraph">The criminals found a way to break into a piece of popular business software called MOVEit and were then able to use that access to get into the databases of potentially hundreds of other companies.</p>



<p class="wp-block-paragraph">Analysts at Microsoft said on Monday they believed Clop was to blame, based on the techniques used in the hack.</p>



<p class="wp-block-paragraph">It has now been confirmed in a long blog post written in broken English.</p>



<p class="wp-block-paragraph">The post, seen by the BBC, reads: &#8220;This is announcement to educate companies who use Progress MOVEit product that chance is that we download a lot of your data as part of exceptional exploit.&#8221;</p>



<p class="wp-block-paragraph">The post goes on to urge victim organisations to send an email to the gang to begin a negotiation on the crew&#8217;s darknet portal.</p>



<p class="wp-block-paragraph">This is an unusual tactic as normally ransom demands are emailed to victim organisations by the hackers, but here they are demanding that victims get in touch. This could be because Clop itself can&#8217;t keep up with the scale of the hack which is still being processed around the world.</p>



<p class="wp-block-paragraph">&#8220;My take is that they just have so much data that it is difficult for them to get on top of it all. They&#8217;re betting that if you know then you will contact them,&#8221; says SOS Intelligence CEO Amir Hadžipasić.</p>



<p class="wp-block-paragraph">MOVEit is supplied by Progress Software in the US for many businesses to securely move files around company systems. Payroll services provider Zellis, which is based in the UK, was one of its users.</p>



<p class="wp-block-paragraph">Zellis has confirmed that eight UK organisations have had data stolen as a result, including home addresses, national insurance numbers and, in some cases, bank details. Not all firms have had the same data exposed.</p>



<p class="wp-block-paragraph">Zellis customers which has been breached include:</p>



<ul class="wp-block-list">
<li>BBC</li>



<li>British Airways</li>



<li>Aer Lingus</li>



<li>Boots</li>
</ul>



<p class="wp-block-paragraph">Nova Scotia Government and the University of Rochester is also warning staff that data may have been stolen through the MOVEit vulnerability.</p>



<p class="wp-block-paragraph">Advice from experts is for individuals not to panic, and for organisations to carry out security checks issued by authorities like the Cyber Security and Infrastructure Authority in the US.</p>



<p class="wp-block-paragraph">Clop claims on its leak site that it has deleted any data from government, city or police services.</p>



<p class="wp-block-paragraph">&#8220;Do not worry, we erased your data you do not need to contact us. We have no interest to expose such information,&#8221; it reads.</p>



<p class="wp-block-paragraph">However, researchers say the criminals are not to be trusted.</p>



<p class="wp-block-paragraph">&#8220;Clop&#8217;s claim to have deleted information relating to public sector organisations should be taken with a pinch of salt. If the information has monetary value or could be used for phishing, it&#8217;s unlikely that they will simply have disposed it,&#8221; said Brett Callow, threat researcher from Emsisoft.</p>



<p class="wp-block-paragraph">Cyber security experts have long tracked the exploits of Clop, which is thought to be based in Russia as it mainly operates on Russian speaking forums.</p>



<p class="wp-block-paragraph">Russia has long been accused of being a safe haven to ransomware gangs &#8211; which it denies.</p>



<p class="wp-block-paragraph">However, Clop runs as a &#8220;ransomware as a service&#8221; group, which means hackers can rent their tools to carry out attacks from anywhere.</p>



<p class="wp-block-paragraph">In 2021, alleged&nbsp;<a href="https://twitter.com/NPU_GOV_UA/status/1405080755722670080?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1405080755722670080%7Ctwgr%5Ec130a94df4fc342f2d34a15accf8310e257f2f5a%7Ctwcon%5Es1_&amp;ref_url=https%3A%2F%2Fwww.bleepingcomputer.com%2Fnews%2Fsecurity%2Fukraine-arrests-clop-ransomware-gang-members-seizes-servers%2F">Clop hackers were arrested in Ukraine</a>&nbsp;in a joint operation between Ukraine, US and South Korea.</p>



<p class="wp-block-paragraph">At the time, authorities claimed to have taken down the group which they said was responsible for extorting $500m from victims around the world.</p>



<p class="wp-block-paragraph">But Clop has continued to be a persistent threat.</p>



<figure class="wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-1 is-layout-flex wp-block-gallery-is-layout-flex">
<figure class="wp-block-image size-large"><img fetchpriority="high" decoding="async" width="750" height="500" data-id="339" src="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_1-1-1-1-1.jpg" alt="" class="wp-image-339" srcset="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_1-1-1-1-1.jpg 750w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_1-1-1-1-1-530x353.jpg 530w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_1-1-1-1-1-300x200.jpg 300w" sizes="(max-width: 750px) 100vw, 750px" /></figure>



<figure class="wp-block-image size-large"><img decoding="async" width="750" height="500" data-id="340" src="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_2-1-1-1-1.jpg" alt="" class="wp-image-340" srcset="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_2-1-1-1-1.jpg 750w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_2-1-1-1-1-530x353.jpg 530w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_2-1-1-1-1-300x200.jpg 300w" sizes="(max-width: 750px) 100vw, 750px" /></figure>



<figure class="wp-block-image size-large"><img decoding="async" width="750" height="500" data-id="338" src="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_6-1-1-1-1.jpg" alt="" class="wp-image-338" srcset="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_6-1-1-1-1.jpg 750w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_6-1-1-1-1-530x353.jpg 530w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_6-1-1-1-1-300x200.jpg 300w" sizes="(max-width: 750px) 100vw, 750px" /></figure>
</figure>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://cybersecurityplus.co.uk/bbc-ba-and-boots-issued-with-ultimatum-by-cyber-gang-clop/">BBC, BA and Boots issued with ultimatum by cyber gang Clop</a> appeared first on <a href="https://cybersecurityplus.co.uk">Cyber Security Plus</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>How schools can protect against cyber attacks</title>
		<link>https://cybersecurityplus.co.uk/how-schools-can-protect-against-cyber-attacks/</link>
		
		<dc:creator><![CDATA[tonibennett]]></dc:creator>
		<pubDate>Sun, 19 Jul 2020 16:51:25 +0000</pubDate>
				<category><![CDATA[Blockchain]]></category>
		<category><![CDATA[Hacker]]></category>
		<category><![CDATA[Cyber Security]]></category>
		<category><![CDATA[Cybercrime]]></category>
		<category><![CDATA[Global News]]></category>
		<guid isPermaLink="false">https://cybersecurityplus.co.uk/?p=125</guid>

					<description><![CDATA[<p>Cyber security in the education sector has become an increasingly pressing concern in recent years as hackers target the sensitive data of students, teachers and staff</p>
<p>The post <a href="https://cybersecurityplus.co.uk/how-schools-can-protect-against-cyber-attacks/">How schools can protect against cyber attacks</a> appeared first on <a href="https://cybersecurityplus.co.uk">Cyber Security Plus</a>.</p>
]]></description>
										<content:encoded><![CDATA[		<div data-elementor-type="wp-post" data-elementor-id="125" class="elementor elementor-125">
						<section class="elementor-section elementor-top-section elementor-element elementor-element-4cdcb74c elementor-section-boxed elementor-section-height-default elementor-section-height-default" data-id="4cdcb74c" data-element_type="section" data-e-type="section">
						<div class="elementor-container elementor-column-gap-default">
					<div class="elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-e63ae0c" data-id="e63ae0c" data-element_type="column" data-e-type="column">
			<div class="elementor-widget-wrap elementor-element-populated">
						<div class="elementor-element elementor-element-190a8a4b elementor-widget elementor-widget-text-editor" data-id="190a8a4b" data-element_type="widget" data-e-type="widget" data-widget_type="text-editor.default">
				<div class="elementor-widget-container">
									
<p class="wp-block-paragraph">Increasing concerns about cybersecurity are justified, says Jamie Moles, but there’s plenty schools can do to protect themselves and their students</p>

<p class="wp-block-paragraph"><a href="https://schoolsweek.co.uk/schools-hacked-cyber-incidents-advice-fraud-emails-results-day/" target="_blank" rel="noreferrer noopener">Cyber security</a> in the education sector has become an increasingly pressing concern in recent years as hackers target the sensitive data of students, teachers and staff. In the UK, the issue came to a head over the <a href="https://www.hulldailymail.co.uk/news/hull-east-yorkshire-news/hackers-demand-15-million-ransom-8008833" target="_blank" rel="noreferrer noopener">Christmas holidays</a> when a group of hackers demanded £15 million in ransom money after successfully attacking at least 16 British schools. As a result, teachers returning to work after Christmas were left unable to access their computer systems, causing major disruptions to their work.</p>

<p class="wp-block-paragraph">Similarly, in the United States, an apparent <a href="https://www.bleepingcomputer.com/news/security/iowa-s-largest-school-district-cancels-classes-after-cyberattack/">cyber attack</a> on Iowa’s largest school district, Des Moines Public Schools, led officials to cancel classes for 30,000 students for two consecutive days as technicians worked to restore the computer system and protect data. This highlights the vulnerability of schools to cyber attacks, particularly due to understaffed IT teams and a lack of cybersecurity education among staff and pupils. Last week this sentiment was echoed by a report from the National Cyber Security Centre (NCSC) and edtech charity LGfL, which revealed that 78 per cent of UK schools experienced at least one type of cyber incident in 2022, with 7 per cent reporting significant disruption.</p>

<p class="wp-block-paragraph">Given the findings of the NCSC’s report, it’s clear that the education sector is a prime target for cybercriminals. The NCSC warns schools are at “particular risk” of cyber attacks. Therefore, it’s crucial that schools take proactive measures to improve their cyber security defences and be better prepared to handle incoming attacks. So, how can schools protect themselves from these threats?</p>

<h2 class="wp-block-heading"><strong>Educating educators</strong></h2>

<p class="wp-block-paragraph">Perhaps fittingly, education is the sector’s best bet. One of the most effective, low-cost measures to ensure safety is through staff training and awareness efforts. By educating staff on how to spot and avoid phishing attempts and providing training on best practices, schools can significantly improve their defences against these types of attacks. This is particularly important as phishing is a major threat to staff members who may have a lack of awareness about how hackers gain access to systems, steal data or spread malware.</p>

<p class="wp-block-paragraph">However, education may not be enough. In today’s digital age, schools are faced with the constant threat of cyber attacks. With intruders attempting to breach networks at a near-constant rate, it is essential for schools to have extra levels of defence in place. It isn’t only a question of how and when a bad actor will breach the network, but also how much damage they will cause once inside.</p>

<h2 class="wp-block-heading"><strong>Network Detection and Response</strong></h2>

<p class="wp-block-paragraph">To combat these threats, schools must act quickly and efficiently. A few seconds can mean the difference between a minor inconvenience and a major disaster.</p>

<p class="wp-block-paragraph">One way to keep schools’ computer networks safe is by using advanced technology like Network Detection and Response (NDR) systems. These systems use real-time information to watch over the network, determining whether or not something is a problem. These tools measure the risk level of a problem and how often it has happened before, which helps to filter out false alarms and lets the security team focus on the most serious threats.</p>

<p class="wp-block-paragraph">NDR systems are powered by AI and machine learning, which means they can work on their own and take some of the burden off a school’s IT team.</p>

<h2 class="wp-block-heading"><strong>Endpoint protection and updates</strong></h2>

<p class="wp-block-paragraph">Another important technology to consider is endpoint protection. This helps protect devices like laptops, desktop computers and mobile phones from harmful software and viruses. Additionally, schools can keep networks safe by diligently making sure software is always up-to-date with the latest patch and using two-factor authentication for sensitive information access.</p>

<p class="wp-block-paragraph">Ultimately, the education sector will continue to be a target for cyber criminals. Hackers are constantly evolving and developing new methods to penetrate networks. To stay ahead of these threats, schools must implement robust cyber security measures such as staff training, advanced technology solutions and regular software updates and monitoring.</p>

<p class="wp-block-paragraph">In particular, utilising smart technologies like machine learning and artificial intelligence can help improve defences and help schools keep up at a time when resources are stretched.</p>

<figure class="wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-3 is-layout-flex wp-block-gallery-is-layout-flex">
<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="750" height="500" data-id="339" class="wp-image-339" src="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_1-1-1-1-1.jpg" alt="" srcset="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_1-1-1-1-1.jpg 750w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_1-1-1-1-1-530x353.jpg 530w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_1-1-1-1-1-300x200.jpg 300w" sizes="(max-width: 750px) 100vw, 750px" /></figure>

<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="750" height="500" data-id="340" class="wp-image-340" src="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_2-1-1-1-1.jpg" alt="" srcset="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_2-1-1-1-1.jpg 750w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_2-1-1-1-1-530x353.jpg 530w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_2-1-1-1-1-300x200.jpg 300w" sizes="(max-width: 750px) 100vw, 750px" /></figure>

<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="750" height="500" data-id="338" class="wp-image-338" src="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_6-1-1-1-1.jpg" alt="" srcset="https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_6-1-1-1-1.jpg 750w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_6-1-1-1-1-530x353.jpg 530w, https://cybersecurityplus.co.uk/wp-content/uploads/2020/07/blog_img_6-1-1-1-1-300x200.jpg 300w" sizes="(max-width: 750px) 100vw, 750px" /></figure>
</figure>

<p class="wp-block-paragraph"> </p>
								</div>
				</div>
					</div>
		</div>
					</div>
		</section>
				</div>
		<p>The post <a href="https://cybersecurityplus.co.uk/how-schools-can-protect-against-cyber-attacks/">How schools can protect against cyber attacks</a> appeared first on <a href="https://cybersecurityplus.co.uk">Cyber Security Plus</a>.</p>
]]></content:encoded>
					
		
		
			</item>
	</channel>
</rss>
