There have been times over the last two months when Golan Ben-Oni has felt like a voice in the wilderness.
On April 29, someone hit his employer, IDT Corporation, with two cyberweapons that had been stolen from the National Security Agency. Mr. Ben-Oni, the global chief information officer at IDT, was able to fend them off, but the attack left him distraught.
In 22 years of dealing with hackers of every sort, he had never seen anything like it. Who was behind it? How did they evade all of his defenses? How many others had been attacked but did not know it?
Since then, Mr. Ben-Oni has been sounding alarm bells, calling anyone who will listen at the White House, the Federal Bureau of Investigation, the New Jersey attorney general’s office and the top cybersecurity companies in the country to warn them about an attack that may still be invisibly striking victims undetected around the world.
He is determined to track down whoever did it.
“I don’t pursue every attacker, just the ones that piss me off,” Mr. Ben-Oni told me recently over lentils in his office, which was strewn with empty Red Bull cans. “This pissed me off and, more importantly, it pissed my wife off, which is the real litmus test.”
Two weeks after IDT was hit, the cyberattack known as WannaCry ravaged computers at hospitals in England, universities in China, rail systems in Germany, even auto plants in Japan. No doubt it was destructive. But what Mr. Ben-Oni had witnessed was much worse, and with all eyes on the WannaCry destruction, few seemed to be paying attention to the attack on IDT’s systems — and most likely others around the world.
The strike on IDT, a conglomerate with headquarters in a nondescript gray building here with views of the Manhattan skyline 15 miles away, was similar to WannaCry in one way: Hackers locked up IDT data and demanded a ransom to unlock it.
But the ransom demand was just a smoke screen for a far more invasive attack that stole employee credentials. With those credentials in hand, hackers could have run free through the company’s computer network, taking confidential information or destroying machines.
Learn more: A Cyberattack ‘the World Isn’t Ready For”
The Latest on: Cyberattack
TaskRabbit back online after cyberattack, warns users to monitor their accounts
on April 18, 2018 at 7:43 pm
TaskRabbit is now back online following a self-imposed outage that began earlier this week as it investigated a cyberattack on its systems. The company is advising anyone with a TaskRabbit account to change their password as a precaution. It also told ... […]
The Basics Of A Cyberattack
on April 18, 2018 at 4:45 am
CTO and Co-Founder at ERPScan. President of EAS-SEC. SAP cybersecurity evangelist. Speaker. Trainer. Geek. Time has shown there is no parameter that can warrant a company’s cyber immunity. Nonetheless, forewarned is forearmed, and it is essential to ... […]
Facebook, Microsoft and others sign anti-cyberattack pledge
on April 18, 2018 at 12:00 am
Microsoft, Facebook and Cloudflare are among a group of technology firms that have signed a joint pledge committing publicly not to assist offensive government cyberattacks. The pledge also commits them to work together to enhance security awareness and ... […]
DHS secretary: US could cyberattack countries sponsoring hacks
on April 17, 2018 at 3:43 pm
The US hasn't ruled out cyberstrikes against foreign countries and has "a full spectrum of response options" available, Department of Homeland Security Secretary Kirstjen Nielsen said Tuesday. Speaking to the RSA cybersecurity conference in San Francisco ... […]
Russia behind ‘malicious’ Grizzly Steppe cyberattack, U.S. officials say
on April 17, 2018 at 2:49 pm
Government and ISPs have been targeted, according to officials. United States and United Kingdom officials said on Monday that state-sponsored actors from Russia are behind a cyberattack that targets “network infrastructure devices” such as government ... […]
U.S. and Britain jointly accuse Kremlin of massive cyberattack on millions of routers, internet providers
on April 17, 2018 at 1:00 am
On Monday, the U.S. and British governments accused the Kremlin of conducting a huge cyberattack on routers and other internet hardware around the world, with the presumed aim being economic and political espionage and possibly sabotage. In a first-ever ... […]
Russia targeting 'millions' of routers in global cyberattack, UK and US officials warn
on April 17, 2018 at 12:10 am
RUSSIA HAS HIJACKED 'millions' of network devices worldwide in an effort to 'conduct espionage and intellectual property theft', UK and US officials warned on Monday. According to the NCSC, the FBI and the DHS, state-sponsored Russian hackers have targeted ... […]
U.S. pins yet another cyberattack on Russia
on April 16, 2018 at 10:25 am
The U.S. on Monday accused Russia of yet another global cyberattack, pinning a mounting assault on networks on the Kremlin. The announcement, made jointly with the United Kingdom, is the latest in a growing string of cases where Western governments have ... […]
UK reportedly preparing for a Russian-backed cyberattack
on April 16, 2018 at 7:51 am
Tensions have intensified since this weekend’s strikes on Syria. As tensions between the UK and Russia continue to mount, both sides appear to be bolstering themselves for retaliatory cyberattacks. The Times reports that Prime Minister Theresa May has ... […]
Uber expands settlement with FTC related to cyberattack
on April 12, 2018 at 1:20 pm
WASHINGTON (Reuters) - The U.S. Federal Trade Commission said on Thursday the ride-hailing company Uber Technologies Inc had agreed to expand its proposed settlement with the agency over charges it deceived consumers about its privacy and data security ... […]
via Google News and Bing News