- August 30, 2018
- Posted by: Kerry Tomlinson, Archer News
- Categories: Archer News, Cyber Crime, Cyberattack, Hacking, Industrial Control System Security, Mobile Devices, Posts with image, Power Grid, Scam Alerts, Vulnerabilities
You may think you’re not a target.
But you are.
The bad guys want your computer so they can mine for crypto coin.
And they’re stepping up their game — even cracking industrial computers for digital gold.
Jump in Jacking
The bad guys are working even harder to get into your computer to make crypto coin.
A new report from security company Trend Micro says these cryptojacking attacks are up 141% over last year.
The hijackers even burrowed into computers at a water company.
Security company Radiflow said in February that they found cryptomining malware on industrial computers at a European water utility.
Radiflow said an employee downloaded a file they thought was safe but was not.
Cryptojackers took over industrial computers at a water company to mine for Monero, according to Radiflow. Image credit: Radiflow
The malware took hold and affected the processing power for the industrial computers, slowing down software.
The miners churned the industrial computers for the coin Monero for three weeks until they were caught and tossed out, according to Radiflow.
More Security Holes
The Trend Micro report shows another significant number — a 30% increase in the number of security holes researchers are finding in computers for industrial systems compared to last year.
You want these systems in places like power plants to run safely, keep your lights on and not explode.
So, a 30% jump might sound scary.
But Trend Micro says it also shows that security researchers are now focusing on these critical systems, which will help your critical infrastructure stay safer, according to eWeek.
After the drone explosion in Venezuela this month, security experts are alerting power plants to get ready for possible drone attacks in the U.S.
Video from The New York Times shows Venezuelan president Nicolás Maduro reacting to a drone exploding near him and crowds running after another drone crashed nearby.
Speakers at the EnergySec security conference in Anaheim this week told utilities that these kinds of attacks are relatively easy to carry out and could affect the power system and other critical infrastructure.
For now, the most likely drone attacks on the power system could be simply accidents.
Full disclosure: Archer News Network’s parent company, Archer International, is a sponsor of the conference.
“Wash” Your Car
If you’re selling your car, you could be giving away some buried treasure — your personal info hidden away.
The Federal Trade Commission is warning people to clear out your personal data before you hand over the keys.
Your car could have your names and numbers from phone contacts, your favorite locations like home, work and anywhere else you drive, plus garage door codes for your house or office and more.
So, you’ll want to do a factory reset for your car’s computers, plus cancel or transfer subscriptions for things like satellite radio and mobile Wi-Fi hotspots.
Check the owner’s manual or website for a how-to.
The Clutch University YouTube channel has a series of how-to videos for factory resets on many kinds of cars.
And if your car has its own app, make sure you disconnect so the new owners don’t have access to your life long after they drive away.
Deleting personal info from a Lexus. Image credit: Clutch University
Bad reviews can kill a company.
Now scammers are saying pay up — or they’ll drown you in one-star reviews.
A travel company called CheapAir says “cyber thugs” have demanded $10,000 in Bitcoin.
If CheapAir doesn’t pay, the scammers reportedly promise a smear campaign, posting thousands of negative messages on the company’s social media accounts, along with lousy reviews and other destructive stuff online.
CheapAir says scammers have posted fake comments on its Instagram account. Image credit: CheapAir/Instagram
CheapAir’s Instagram account shows comments the company says scammers have already posted, many of them saying simply “stay away from CheapAir.”
The travel site says it’s checking to see how to deal with this kind of threat, but one thing they do know — they won’t pay up.
See other scam alerts:
Scam Alert #26 — WhatsApp trap & shady phone employees
Scam Alert #25 — Gang arrests & cities under attack
Scam Alert #24 — Car sharing crooks & hackers in the control room
More scam alerts here at Archer News.
Main image credit: sebastiangoessl