Russian hackers claim breach on major Canadian oil pipeline / Pentagon investigates Ukraine's military leak / Hackers charging up to $20,000 to deploy malicious Android apps

Plus: Yum Brands, the parent company of KFC, Taco Bell, and Pizza Hut, has been hacked

Inside.com Part of   Network April 11, 2023

Russian hackers tied to the Killnet group claim to have breached a major Canadian gas pipeline. The claims have not yet been officially confirmed or denied by either Canadian or U.S. intelligence authorities. More: The hacker group believed to be responsible for this breach is Zarya, a threat actor that allegedly has close ties with the infamous hacker group Killnet. The threat actor stated that it can increase valve pressure, disable alarms, initiate an emergency shutdown of the energy facility, and even cause an explosion. While these reports have not been denied by U.S. intelligence reports yet, there are researchers that are saying that the U.S. intelligence community may have indirectly confirmed the claims made by the group. Zarya has not named the affected Canadian energy company yet. Zoom Out: The 2021 Colonial Pipeline incident remains the most infamous attack on North American energy resources. In this attack, the DarkSide hacker group attacked the Houston-based Colonial Pipeline oil pipeline, shutting it down and causing a spike in prices at the pump. The cyberattack was the largest on an oil infrastructure organization in the history of the United States. Since the cyberattack, U.S. federal and local authorities have passed dozens of different bills to strengthen national cybersecurity capabilities. In March, the Biden administration published a new cybersecurity policy, recommending additional security for America’s industrial systems.

The Pentagon continues to investigate a military leak that ruined Ukraine's plans to launch an offensive against Russian troops. The leak has been considered the worst U.S. leak in the last 10 years. More: A few days ago, numerous highly classified slide presentations and documents leaked on platforms such as Discord and Telegram. The slides contained information such as: the quantity of armor and artillery held by each Ukrainian brigade, technical details on its air defenses and the location of missile batteries, the number of special operatives that are being trained by France and the U.K., etc.  According to leaked information, Ukraine could run out of crucial weapons by May. Specifically, the Ukrainian army could run out of: supplies of BUK SA-11 missiles, the S-300, and the shorter-range SA-8. According to reports, the U.S. Department of Justice has opened a probe to investigate the case.

Hackers are charging up to $20,000 to upload malicious apps to the Google Play Store, according to reports. These malicious apps are being advertised online to target more victims. More: Hackers negotiate the price of the apps depending on the difficulty of deploying them. These negotiations are usually held on Telegram channels, an app that was recently reported as having become the go-to app for threat actors. The hackers are promising to build malware apps that are presented as: antivirus programs, cryptocurrency asset managers, QR-code scanners, small games, and dating apps. According to the report, hackers are selling their malware apps for a range of prices: Google Play loaders are being sold for $7,000, Malware obfuscation services are being sold for as little as $8 up to $30 Google developer accounts are being sold for $60. The hackers claim that the apps will remain on Google Play for at least one week and have at least 5,000 downloads.

Yum Brands, the parent company of KFC, Taco Bell, and Pizza Hut, has announced that it has been hit by a cyberattack. The company, which holds the data of millions of users, has denied that hackers stole individual citizen data. More: The breach, which happened on Jan. 13 this year, forced Yum Brands to shut down around 300 locations in the U.K.  According to security researchers, the threat actor may have stolen information such as: names, driver’s license numbers, ID numbers, etc. The company has reached out to specific individuals that have been affected by the breach, offering free credit monitoring and identity protection for two years. Industry researchers believe that most of the affected individuals are company employees. The company has denied claims that customer data has been affected by the breach. The threat actor responsible for the breach remains unknown.

Latitude Financial has stated that it won't pay a ransom to the threat actor that hacked it earlier this year. The breach is one of the largest ever against a financial institution in Australia. More: The breach affected over 14 million customers, most based in Australia and New Zealand. Hackers stole data such as full names, addresses, and over 53,000 passport numbers. Latitude Financial claims that paying a ransom does not guarantee that the stolen data will be returned, a conclusion it reached in coordination with the Australian government. The latter plans to implement new cyber laws that could include giving expanded powers to federal agencies to intervene when private companies come under attack. The payment of ransoms could also be banned under these legislative changes.

Quick Hits They're "realigning" the $19.4B joint surgery market…with robotics. Invest in Monogram ahead of their planned Nasdaq listing.* Microsoft has released a new series of security patches that deal with several bugs, including a highly-risky flaw. tracked as CVE-2023-28252. Adobe has announced that it has fixed at least 56 security vulnerabilities. 3CX has confirmed that the threat actor responsible for breaching the company last month is a North Korean hacker group. CAT Labs has raised a $4.3M funding round led by Castle Island Ventures, Brevan Howard Digital, CMT Digital, RW3 Ventures, and Newark Venture Partners. Put your data where your compute is — close to your users. Turso brings the SQLite database experience to the Edge. Get Started Free.* *This is sponsored content.

Upcoming Events April 12 - Monthly Meditation guided by Nicholas Whitaker (Register Here) April 13 - Inside Interview with Lacework - The Evolution of Cloud Security w/ Ulfar Erlingsson (Watch On Demand) April 13 - Inside Marketing Coffee Break w/ Paolo Dello Vicario (ByTek) (Register Here) April 14 - Inside Interview with Landing - The Ultimate Corporate Housing Resource with Torger Philosophos (Register Here) April 18 - Human Resources Summit'23 (Register Here) April 18 - Inside Interview with TravelBank: Why Employee Happiness Is Falling More Into The Financial Sector (Watch On Demand)

Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. Editor Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords.

767 Bryant St. #203, San Francisco, CA 94107 Copyright © 2023 Inside.com

Did someone forward this email to you? Head over to inside.com to get your very own free subscription! You received this email because you subscribed to Inside Security. Click here to unsubscribe from Inside Security list or manage your subscriptions.