(CNN Español) — Hackers have been active this year attacking government and business targets in the United States.
The most recent case was unveiled this week when it was learned that the computer systems of more than 150 US government agencies have been breached, according to Microsoft.
The tech firm has said the latest illegal hack into computer systems was perpetrated by the group it calls “Nobelium” this week.
This is the most recent attack in a series of acts that have violated cybersecurity and raised alerts from the United States government.
In fact, President Joe Biden last month launched an effort to bolster cybersecurity on the nation’s power grid, calling on industry leaders to install technologies that could thwart supply attacks.
Only this year, more than two dozen government agencies in the United States they have been affected, according to experts.
The Secretary of National Security, Alejandro Mayorkas, sounded the alarm about these attacks last week, in a speech to the United States Chamber of Commerce before the Colonial Pipeline was attacked, calling them an “existential threat” to business.
Here we present a list of the most recent cyberattacks against different entities that have set off the alarms.
A cyberattack on May 8 forced the temporary closure of one of the pipelines largest in the United States, highlighting already growing concerns about vulnerabilities in the country’s critical infrastructure.
The operator, Colonial Pipeline, said the incident involves ransomware.
Colonial, which transports more than 100 million gallons of gasoline and other fuels a day from Houston to the port of New York, according to its website, said its operations were paused in the face of the attack.
This even caused long lines to form at various service stations in various states.
“In response, we proactively shut down certain systems to contain the threat, which has temporarily halted all pipeline operations and affected some of our IT systems,” the company said in a statement at the time.
The US government was rocked late last year by a cyberattack that compromised the systems of a third-party software provider and led to data breaches in various federal agencies, including the Department of Commerce, the Department of Energy, and the cyber arm of the Department of Homeland Security.
SolarWinds said in an investor presentation that up to 18,000 of its clients – out of a total of 300,000 – may have been running software containing the vulnerability that allowed hackers to penetrate the Commerce Department. US officials suspect that hackers linked to Russia are behind the hack.
SolarWinds offers services to more than 425 companies in the US Fortune 500, it says on a page on its website that has since been withdrawn but remains accessible in the Wayback Machine internet archive.
The firms listed on the page included big names like Cisco, AT&T, Microsoft, Comcast and McDonald’s, as well as financial giants Visa and Mastercard. Several of these firms told CNN Business that they are currently conducting investigations. At least two said they were affected to some degree.
Even security guards are not safe from hackers.
The personnel files of some Washington Metropolitan Police Department officers were caught in a ransomware attack earlier this month, the department’s acting chief of police said late last month.
Robert Contee wrote in an email to staff: “I can confirm that HR-related files containing personally identifiable information (PII) were obtained. As we continue to determine the size and scope of this violation, please note that the mechanism that allowed unauthorized access was blocked. “
The attackers had released a ransom note claiming that they had stolen more than 250GB of data and threatening to publish the material if they were not paid. The Babuk ransomware group claimed credit for the attack, posting screenshots of the note that were flagged by cybersecurity researchers.
Pulse Secure VPN
At least five federal civil agencies appear to have been attacked, according to a senior official from the Cybersecurity and Infrastructure Security Agency.
Hackers with suspected ties to China repeatedly exploited vulnerabilities in Pulse Secure VPN, a widely used remote connectivity tool, to gain access to government agencies, defense companies and financial institutions in the United States and Europe, a report published to early this month.
“CISA is aware of at least five federal civilian agencies that have run the Pulse Connect Secure Integrity Tool and identified indications of possible unauthorized access,” said Deputy Executive Director for Cybersecurity Matt Hartman in a statement.
For its part, In a blog post, Pulse Secure said the flaw affected a “very limited number of customers” and that a more permanent software update to address that vulnerability will be released in early May.
Users learned that the information stolen from about 500 million LinkedIn user profiles is part of a database posted for sale on a website popular with hackers, the company confirmed earlier this month.
The sale of the data was first reported by cybersecurity research and news site CyberNews, which said that a file that includes user IDs, names, email addresses, phone numbers, genders, professional titles, and links to other social media profiles were being auctioned on the forum for a four-figure sum.
According to LinkedIn, the database for sale “is actually an aggregation of data from a number of websites and companies.” LinkedIn user data includes only information that people who appear publicly on their profiles, the professional social networking site, which is owned by Microsoft (MSFT), said in a statement.
“This is not a LinkedIn data breach, and no private LinkedIn member account data was included in what we were able to review,” the company said.
Personal information about 500 million Facebook users– including their phone numbers – has been posted on a website used by hackers, cybersecurity experts say.
There are records of more than 32 million accounts in the United States, 11 million in the United Kingdom and 6 million in India, according to Alon Gal, the CTO of cyber intelligence firm Hudson Rock.
Details in some cases included full name, location, birthday, email addresses, phone number and relationship status, he said.
«This is old data that is previously reported in 2019. We found and fixed this issue in August 2019, “Facebook spokesman Andy Stone told CNN.
Cloud-based security camera company Verkada confirmed that recorded a cybersecurity incident after multiple reports that hackers had breached customer video feeds across a wide range of businesses.
The incident, which was first reported by Bloomberg, allowed intruders to access the sources of up to 150,000 security cameras from Verkada customers, including automaker Tesla, fitness company Equinox, and security company Verkada. Internet Cloudflare.
Cloudflare told CNN Business that it uses Verkada systems to monitor entry points to the office and roads, and that Verkada had contacted to notify the company that its cameras may have been compromised. Cloudflare said none of its own customer data had been affected by the Verkada leak.
“The cameras were located in offices that have been officially closed for almost a year,” the company said.
George is Digismak’s reported cum editor with 13 years of experience in Journalism