Cyber incidents linked to third-party suppliers used by the New South Wales government have more than quadrupled in two years, revealing significant vulnerabilities in the state's digital supply chain. The surge highlights the growing threat of supply chain attacks to government services and data.
Sydney-based real estate firm The Property Business has been hit by the Kairos ransomware group, with 164GB of data reportedly stolen. The attack highlights the growing threat to Australia's property sector, which holds sensitive client financial and personal information.
The U.S. has charged Ukrainian national Volodymyr Tymoshchuk for his role in the LockerGoga, MegaCortex, and Nefilim ransomware attacks that targeted over 250 American companies and hundreds more worldwide. The State Department is offering a $10 million reward for information leading to his arrest.
Global law enforcement, including Australia, took down the ransomware group LockBit, seizing its dark web site. This marks a significant win in the fight against cybercrime and underscores the power of international collaboration.
A coalition of international law enforcement agencies, including the Australian Federal Police, have disrupted LockBit - a prolific ransomware group involved in recent cyber incidents such as the DP World hack and Citrix Bleed Vulnerability just to name a couple.
“As of today, LockBit are locked out. We have damaged the capability and most notably, the credibility of a group that depended on secrecy and anonymity.” Graeme Biggar, the NCA’s director general.
LockBit’s software is a malicious software notorious for disabling computer networks and facilitating ransomware demands. It infiltrates computer systems, encrypts files, and holds them hostage, demanding a ransom for their release.
It is most infamous for being used against hospitals and schools, but is dangerous against any organisation regardless of type.
LockBit operates as a trailblazer in the realm of "ransomware as a service" (RaaS), innovatively outsourcing target selection and attacks to a network of semi-independent "affiliates."
The organisation equips these affiliates with the necessary tools and infrastructure while earning a commission based on the ransoms collected in return.
This distinctive model enhances the scalability and efficiency of cyberattacks, presenting a formidable challenge for cybersecurity efforts.
By decentralising operations, LockBit not only facilitates a broader reach but also underscores the evolving and intricate nature of cyber threats in the modern landscape.
“A beautiful site [sic]“, said Ciaran Martin, former head of Britain’s National Cyber Security Centre
On Tuesday the 20th of February, 2024, LockBit’s website was replaced with a message from international police forces reading
“this site is now under the control of law enforcement”.
The law enforcement breach of LockBit's website, hosted on the "dark web" accessible through dedicated applications, stands as a rare public instance of Western countries intervening against hackers typically operating beyond their jurisdiction.
“Through our close collaboration, we have hacked the hackers; taken control of their infrastructure, seized their source code, and obtained keys that will help victims decrypt their systems,” said Graeme Biggar, the NCA’s director general.
This action highlights the challenge of addressing cyber threats that transcend geographical boundaries.
The incident underscores the significance of cross-border collaboration in combating cybercrime and serves as a reminder of the ongoing efforts by law enforcement agencies to disrupt illicit activities in the digital realm, particularly when dealing with sophisticated entities like LockBit.
ASIO’s $12.5 billion espionage warning is more than a tally of stolen secrets. It reveals a national digital crisis. With 24 major spy operations disrupted and identity systems exposed, Australia’s critical infrastructure and social services face a growing risk of collapse from unseen cyber threats.
Asia-Pacific faces escalating cyber threats: Qantas breach exposes 6M records, ransomware surges 57%, Japan doubles cybersecurity workforce by 2030. Singapore implements anti-scam laws, Indonesia establishes AI task force. Aviation sector under coordinated attack by Scattered Spider group.
Qantas has confirmed a cyberattack exposing data from six million customers. Cybersecurity experts link the breach to the Scattered Spider group, known for targeting critical infrastructure. The incident highlights rising threats across the global aviation sector.
Asia-Pacific faced over one-third of all cyberattacks in 2024, making it the world’s top target. From manufacturing breaches to talent shortages and rising ransomware, CNC investigates how a region of digital ambition became cybercrime’s global epicentre.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
