There have been times over the last two months when Golan Ben-Oni has felt like a voice in the wilderness.
On April 29, someone hit his employer, IDT Corporation, with two cyberweapons that had been stolen from the National Security Agency. Mr. Ben-Oni, the global chief information officer at IDT, was able to fend them off, but the attack left him distraught.
In 22 years of dealing with hackers of every sort, he had never seen anything like it. Who was behind it? How did they evade all of his defenses? How many others had been attacked but did not know it?
Since then, Mr. Ben-Oni has been sounding alarm bells, calling anyone who will listen at the White House, the Federal Bureau of Investigation, the New Jersey attorney general’s office and the top cybersecurity companies in the country to warn them about an attack that may still be invisibly striking victims undetected around the world.
He is determined to track down whoever did it.
“I don’t pursue every attacker, just the ones that piss me off,” Mr. Ben-Oni told me recently over lentils in his office, which was strewn with empty Red Bull cans. “This pissed me off and, more importantly, it pissed my wife off, which is the real litmus test.”
Two weeks after IDT was hit, the cyberattack known as WannaCry ravaged computers at hospitals in England, universities in China, rail systems in Germany, even auto plants in Japan. No doubt it was destructive. But what Mr. Ben-Oni had witnessed was much worse, and with all eyes on the WannaCry destruction, few seemed to be paying attention to the attack on IDT’s systems — and most likely others around the world.
The strike on IDT, a conglomerate with headquarters in a nondescript gray building here with views of the Manhattan skyline 15 miles away, was similar to WannaCry in one way: Hackers locked up IDT data and demanded a ransom to unlock it.
But the ransom demand was just a smoke screen for a far more invasive attack that stole employee credentials. With those credentials in hand, hackers could have run free through the company’s computer network, taking confidential information or destroying machines.
Learn more: A Cyberattack ‘the World Isn’t Ready For”
The Latest on: Cyberattack
- Attempted cyberattack disrupts Louisiana state government on November 18, 2019 at 3:15 pm
BATON ROUGE, La. — Many of Louisiana's state government websites and email systems are shut down because of what the governor's office says is an attempted ransomware attack. The problem Monday ...
- The energy industry practices for a 'black swan' cyberattack that could take down the grid on November 16, 2019 at 11:30 am
Some of the biggest stakeholders in the energy sector came together this week to conduct a simulated cyberattack on the electrical grid. The event is called GridEx, and takes place every two years. It ...
- MEXICO'S FINANCE MINISTER SAYS CYBERATTACK AT MEXICAN STATE OIL FIRM PEMEX DID NOT AFFECT CORE AREA STORING CONFIDENTIAL INFORMATION on November 14, 2019 at 9:12 pm
MEXICO'S FINANCE MINISTER SAYS CYBERATTACK AT MEXICAN STATE OIL FIRM PEMEX DID NOT AFFECT CORE AREA STORING CONFIDENTIAL INFORMATION ...
- CORRECTED-UPDATE 1-Mexican minister says Pemex oil firm unaffected by cyberattack, workers disagree on November 14, 2019 at 4:36 pm
MEXICO CITY, Nov 14 (Reuters) - A cyberattack on computer networks of the Mexican national oil company Pemex is "totally under control" and did not have any negative consequences, Security Minister ...
- Mexican minister says Pemex oil firm unaffected by cyberattack, workers disagree on November 14, 2019 at 4:36 pm
A cyberattack on computer networks of the Mexican national oil company Pemex is "totally under control" and did not have any negative consequences, Security Minister Alfonso Durazo said on Thursday.
- Northern Indiana school district restoring system after cyberattack on November 14, 2019 at 1:12 pm
MISHAWAKA, Ind. (AP) — A northern Indiana school district is working to restore its computer system after hackers crippled the network by infecting it with ransomware. The Penn-Harris-Madison School ...
- Lessons from the cyberattack on India’s largest nuclear power plant on November 14, 2019 at 6:09 am
Indian officials acknowledged on October 30th that a cyberattack occurred at the country’s Kudankulam nuclear power plant. An Indian private cybersecurity researcher had tweeted about the breach three ...
- China hacked U.S. manufacturers group in summer cyberattack, report says on November 13, 2019 at 5:29 pm
The National Association of Manufacturers (NAM), an industry group representing U.S. companies, was hacked over the summer in an attack that a cybersecurity firm concluded came from China, Reuters ...
- Pemex claims victory over cyberattack; $4.9 million ransom reportedly demanded on November 13, 2019 at 12:22 pm
The claim made by the Mexican state-owned petroleum corporation Pemex that it had recovered from a Nov. 10 cyberattack was met with some skepticism, as published reports indicate the attack may be ...
- Mexico's Pemex won't pay ransom after cyberattack: energy minister on November 13, 2019 at 11:43 am
MEXICO CITY (Reuters) - Mexican national oil company Pemex will not pay a ransom demanded by suspected cyberattackers who targeted the firm’s computer systems, Energy Minister Rocio Nahle told ...
via Google News and Bing News