There have been times over the last two months when Golan Ben-Oni has felt like a voice in the wilderness.
On April 29, someone hit his employer, IDT Corporation, with two cyberweapons that had been stolen from the National Security Agency. Mr. Ben-Oni, the global chief information officer at IDT, was able to fend them off, but the attack left him distraught.
In 22 years of dealing with hackers of every sort, he had never seen anything like it. Who was behind it? How did they evade all of his defenses? How many others had been attacked but did not know it?
Since then, Mr. Ben-Oni has been sounding alarm bells, calling anyone who will listen at the White House, the Federal Bureau of Investigation, the New Jersey attorney general’s office and the top cybersecurity companies in the country to warn them about an attack that may still be invisibly striking victims undetected around the world.
He is determined to track down whoever did it.
“I don’t pursue every attacker, just the ones that piss me off,” Mr. Ben-Oni told me recently over lentils in his office, which was strewn with empty Red Bull cans. “This pissed me off and, more importantly, it pissed my wife off, which is the real litmus test.”
Two weeks after IDT was hit, the cyberattack known as WannaCry ravaged computers at hospitals in England, universities in China, rail systems in Germany, even auto plants in Japan. No doubt it was destructive. But what Mr. Ben-Oni had witnessed was much worse, and with all eyes on the WannaCry destruction, few seemed to be paying attention to the attack on IDT’s systems — and most likely others around the world.
The strike on IDT, a conglomerate with headquarters in a nondescript gray building here with views of the Manhattan skyline 15 miles away, was similar to WannaCry in one way: Hackers locked up IDT data and demanded a ransom to unlock it.
But the ransom demand was just a smoke screen for a far more invasive attack that stole employee credentials. With those credentials in hand, hackers could have run free through the company’s computer network, taking confidential information or destroying machines.
Learn more: A Cyberattack ‘the World Isn’t Ready For”
The Latest on: Cyberattack
- Is Your Risk Of Cyberattack Higher Amid The Pandemic?on June 26, 2020 at 5:25 am
You likely don’t have to worry about hacktivists fighting for a higher cause, cyber-mercenaries hacking you on someone else's behalf or cyberterrorists intent on watching the world burn. But you do ...
- Russia-based ‘Evil Corp’ could launch cyberattack on America’s election infrastructure: security expertson June 25, 2020 at 5:49 pm
The New York Times reported that experts are fearful that a group of Russian cybercriminals could launch an attack on the U.S. elections system. “A Russian ransomware group whose leaders were indicted ...
- America’s pandemic response doesn’t bode well for a potential cyberattackon June 25, 2020 at 4:00 pm
America’s botched response to the coronavirus pandemic is a warning that, unless our broken political and administrative systems are fixed, the country could experience a similar breakdown in future ...
- Iowa State University Emails Targeted by Racist Cyberattackon June 25, 2020 at 11:45 am
Staff and students affiliated with Iowa State University were targeted by an email spam campaign from a sender claiming to be Equity Prime Mortgage. Officials say the email made reference to white ...
- IDF honors troops for successful operation after Iran cyberattackon June 25, 2020 at 4:10 am
While the military didn't specify which attack, the head of military intelligence said the "mission was a first and significant step on a long path." ...
- Cyberattack Sends Racist Email to UC Davis, 5 Other Universitieson June 23, 2020 at 4:07 pm
A hate-mail campaign that targeted at least six U.S. universities, including UC Davis, resulted in the delivery of a racist message to several thousand UC Davis email accounts on Sunday (June 21). The ...
- Racist cyberattack email sent to thousands of UC Davis email accountson June 23, 2020 at 12:06 pm
The email stated that an Atlanta-based lender is “a lender for whites only. That’s how we have such low rates!” ...
- Cognizant Corporate Cards Targeted In Cyberattackon June 22, 2020 at 4:10 pm
A cyberattack from Maze ransomware against global business and tech firm Cognizant mostly hit the company’s corporate cards that had been issued to employees, the company told authorities, according ...
- Care New England Resolves Weeklong Cyberattack Impacting Serverson June 22, 2020 at 9:22 am
This week's breach roundup is led by a cyberattack on Care New England, which drove the Rhode Island provider into EHR downtime for almost a week and impacted its servers and payroll system.
- Australia is all but accusing China of a months-long cyberattack on its government systems and major companieson June 19, 2020 at 5:05 pm
An announcement by Prime Minister Scott Morrison pointedly avoided naming a culprit — but government sources immediately pointed the finger at China.
via Google News and Bing News