The UK government confirmed that hackers recently broke into the country’s Ministry of Defence and accessed part of the Armed Forces payment network. The system that was attacked contained personal data of active and reserve personnel and some recently retired veterans.
MoD core network unaffected:
By infosecbulletin
/ Monday , May 20 2024
SonicWALL SSL-VPN provides secure remote access to an organization's internal network and resources through an encrypted SSL connection. This kind...
Read More
By infosecbulletin
/ Monday , May 20 2024
The banking trojan "Grandoreiro" is spreading widely through a phishing campaign in over 60 countries, aiming at customer accounts of...
Read More
By infosecbulletin
/ Saturday , May 18 2024
Australian police are investigating a big data breach in a healthcare company after a ransomware attack on Thursday. The website...
Read More
By infosecbulletin
/ Saturday , May 18 2024
he U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced that two security flaws in D-Link routers have been added to...
Read More
By infosecbulletin
/ Saturday , May 18 2024
The "Antidot" Android Banking Trojan pretends to be a Google Play update app and targets Android users in different regions....
Read More
By infosecbulletin
/ Saturday , May 18 2024
CISA published a guide on using Encrypted Domain Name System (DNS) for federal civilian agencies to improve cybersecurity and meet...
Read More
By infosecbulletin
/ Friday , May 17 2024
Cyble Research and Intelligence Labs found that two cyber threat groups, Transparent Tribe (APT36) and SideCopy, are using advanced strategies...
Read More
By infosecbulletin
/ Friday , May 17 2024
Recorded Future's Insikt Group has discovered a major cyber threat campaign carried out by Russian-speaking hackers, possibly located in the...
Read More
By infosecbulletin
/ Friday , May 17 2024
ISA issued seventeen advisories about Industrial Control Systems (ICS) on May 16, 2024. These advisories give important information about security...
Read More
By infosecbulletin
/ Thursday , May 16 2024
Intel released 41 security advisories this Patch Tuesday, which contain information about over 90 vulnerabilities in their products. The company...
Read More
Defense Secretary Grant Shapps announced yesterday (7 April) in the House of Commons that the intrusion was detected “recently.” The MoD isolated the system and stopped processing all payments.
Despite this, the incident did not have a significant impact on salaries, expense payments, and veterans’ pensions. “I can confirm in the meantime all April salaries have been paid,” said Shapps.
The UK defense secretary clarified that the hackers targeted an external system managed by a contractor that was “completely separate” from MoD’s core network, and had no connection to the “main military HR system.”
The compromised host contained mainly names and banking details, with a few addresses. It is believed that around 270,000 payroll records were exposed.
The incident is being investigated but it is still not known how the unauthorized access happened. However, Shapps mentioned that there are signs of possible mistakes by the contractor that may have made the access possible.
There is no evidence that the hacker stole any data, but the affected service personnel has been notified of the risk through the chain of command.
Impacted veterans will receive letter notifications about the breach and the exposed data. Shapps stated that the attack was conducted by a malicious actor and that it is possible that a foreign state is involved.
(Media Disclaimer: This report is based on research conducted internally and externally using different ways. The information provided is for reference only, and users are responsible for relying on it. Infosecbulletin is not liable for the accuracy or consequences of using this information by any means)