Subj : An ancient Windows 7 PC is being blamed for cyberattack against U
To   : All
From : TechnologyDaily
Date : Tue Sep 05 2023 12:45:03

An ancient Windows 7 PC is being blamed for cyberattack against UK armed 
forces supplier

Date:
Tue, 05 Sep 2023 11:41:13 +0000

Description:
LockBit compromised Zaun through a Windows 7 device that was used for 
manufacturing.

FULL STORY
======================================================================

Zaun, a UK company that supplies military bases with high-security fencing, 
suffered a partially successful ransomware attack, with the hackers apparent 
point of entry a PC endpoint running the obsolete Windows 7 software. 

In a statement, Zaun admitted the LockBit threat actor managed to compromise 
the company's infrastructure and steal roughly 10GB of data. 

It did not manage to deploy the ransomware encryptor, and the company also 
said that the attackers didnt take any sensitive information. Staying safe 

"We do not believe that any classified documents were stored on the system or 
have been compromised," the announcement reads, adding that LockBit appears 
to have published the stolen data on the dark web. 

The National Cyber Security Centre (NCSC) and the UK's Information 
Commissioner's Office (ICO) were both notified of the incident. 

Ransomware is a relatively novel method of cybercrime thats only been around 
for a couple of years, but since hackers can extort the victims for millions 
of dollars, it quickly rose to fame. The wider cybersecurity community, as 
well as law enforcement, have since been urging organizations to keep their 
endpoints secure, not just by enforcing strong password policies and 
multi-factor authentication, but also by regularly deploying patches and 
updates. Read more 

> LockBit ransomware has cost victims millions in the US alone 


 > Data breached at LA Housing Authority after ransomware attack 


 > These are the best malware removal tools at the moment 

When software reaches its end-of-life date, like Windows 7 did back in early 
2020 , it no longer receives updates. Hence, if someone for example discovers 
a high-severity flaw that grants remote code execution capabilities, the 
softwares makers will not release a patch and users will be left at risk. For 
Windows 7, Microsoft offered Extended Security Updates for sale, but the 
service was shut down in early 2023. Mainstream support ended in 2015, and 
the OS end of life was in January 10, 2020. 

LockBit is one of the largest and most active ransomware operators around, 
which has so far assaulted dozens of organizations around the world. Here's 
our rundown of the best firewalls 

Via: TheRegister



======================================================================
Link to news story:
https://www.techradar.com/pro/security/an-ancient-windows-7-pc-is-being-blamed
-for-cyberattack-against-uk-armed-forces-supplier


--- Mystic BBS v1.12 A47 (Linux/64)
 * Origin: tqwNet Technology News (1337:1/100)

.