Hackers Targeted Solarwinds Earlier than Previously Known

The hackers who carried out the massive SolarWinds intrusion were in the software company’s system as early as January 2019, months earlier than previously known, the company’s top official said Wednesday. SolarWinds had previously traced the origins of the hack to the fall of 2019 but now believes that hackers were doing “very early recon activities” as far back as the prior January, according to Sudhakar Ramakrishna, the company’s president and CEO. “The tradecraft that the attackers used was extremely well done and extremely sophisticated, where they did everything possible to hide in plain sight, so to speak,” Ramakrishna said during a discussion hosted by the RSA Conference. The SolarWinds hack, which was first reported last December and which U.S. officials have linked to the Russian government, is one in a series of major breaches that has prompted a major cybersecurity focus from the Biden administration. By seeding the company’s widely used software update with malicious code, hackers were able to penetrate the networks of multiple U.S. government agencies and private sector corporations in an apparent act of cyber-espionage. The U.S. imposed sanctions against Russia last month. Also Wednesday, Ramakrishna apologized for the way the company blamed an intern earlier this year during congressional testimony for poor password security protocols. That public statement, he said, was “not appropriate.” “I have long held a belief system and an attitude that you never flog failure. You want your employees, including interns, to make mistakes and learn from those mistakes and together we become better,” he added. “Obviously you don’t want to make the same mistake over and over again. You want to improve.” 

В офісі Зеленського назвали винних у зростанні цін на автозаправках

«Зростання цін на заправках зумовлене як подорожчанням сировини на світових ринках, так і нелегальним ринком нафтопродуктів всередині країни, а також системним ухиленням від сплати податків нафтопереробниками», – ідеться в повідомленні сайту президента

Irish Health Service Hit by ‘Very Sophisticated’ Ransomware Attack 

Ireland’s health service operator shut down all its IT systems Friday to protect them from a ransomware attack, which crippled diagnostic services and disrupted COVID-19 testing.An international cybercrime gang was behind the attack, said Ossian Smyth, Ireland’s minister responsible for e-government. Smyth described it as possibly the most significant cybercrime attempt against the Irish state.Ireland’s COVID-19 vaccination program was not directly affected, but the attack was affecting IT systems serving all other local and national health provisions, the head of the Health Service Executive (HSE) said.Ransomware attacks typically involve the infection of computers with malicious software, often downloaded by clicking on seemingly innocuous links in emails or other website pop-ups. Users are left locked out of their systems, with the demand that a ransom be paid to restore computer functions.No payment”We are very clear we will not be paying any ransom,” Prime Minister Micheál Martin told reporters.The HSE’s chief described the attack as “very sophisticated.” Officials said the gang exploited a previously unknown vulnerability. Authorities shut down the system as a precaution after discovering the attack early Friday morning and will seek to gradually reopen the network, although that will take “some days,” Martin said.The attack was largely affecting information stored on central servers, and officials said they were not aware that any patient data had been compromised. Hospital equipment was not impacted, with the exception of radiography services.”More services are working than not today,” HSE Chief Operations Officer Anne O’Connor told national broadcaster RTE.”However, if this continues to Monday, we will be in a very serious situation and will be canceling many services. At this moment, we can’t access lists of people scheduled for appointments on Monday so we don’t even know who to cancel.”

Facebook Faces Prospect of ‘Devastating’ Data Transfer Ban After Irish Ruling

Ireland’s data regulator can resume a probe that may trigger a ban on Facebook’s transatlantic data transfers, the High Court ruled Friday, raising the prospect of a stoppage the company warns would have a devastating impact on its business.
 
The case stems from EU concerns that U.S. government surveillance may not respect the privacy rights of EU citizens when their personal data is sent to the United States for commercial use.
 
Ireland’s Data Protection Commissioner (DPC), Facebook’s lead regulator in the European Union, launched an inquiry in August and issued a provisional order that the main mechanism Facebook uses to transfer EU user data to the United States “cannot in practice be used.”
 
Facebook had challenged both the inquiry and the Preliminary Draft Decision (PDD), saying they threatened “devastating” and “irreversible” consequences for its business, which relies on processing user data to serve targeted online ads.
 
The High Court rejected the challenge Friday. “I refuse all of the reliefs sought by FBI [Facebook Ireland] and dismiss the claims made by it in the proceedings,” Justice David Barniville said in a judgment that ran to nearly 200 pages.
 
“FBI has not established any basis for impugning the DPC decision or the PDD or the procedures for the inquiry adopted by the DPC,” the judgment said.
 
While the decision does not trigger an immediate halt to data flows, Austrian privacy activist Max Schrems, who forced the Irish data regulator to act in a series of legal actions over the past eight years, said he believed the decision made it Inevitable.
 
“After eight years, the DPC is now required to stop Facebook’s EU-U.S. data transfers, likely before summer,” he said.
 
A Facebook spokesman said the company looked forward to defending its compliance with EU data rules as the Irish regulator’s provisional order “could be damaging not only to Facebook, but also to users and other businesses.”
 Privileged access
 
If the Irish data regulator enforces the provisional order, it would effectively end the privileged access companies in the United States have to personal data from Europe and put them on the same footing as companies in other nations outside the bloc.
 
The mechanism being questioned by the Irish regulator, the Standard Contractual Clause (SCC), was deemed valid by the European Court of Justice in a July decision.
 
But the Court of Justice also ruled that, under SCCs, privacy watchdogs must suspend or prohibit transfers outside the EU if data protection in other countries cannot be assured.
 
A lawyer for Facebook in December told the High Court that the Irish regulator’s draft decision, if implemented, “would have devastating consequences” for Facebook’s business, affecting Facebook’s 410 million active users in Europe, hitting political groups and undermining freedom of speech.
 
Irish Data Protection Commissioner Helen Dixon in February said companies more broadly may face massive disruption to transatlantic data flows as a result of the European Court of Justice decision.
 
Dixon’s office welcomed the decision on Friday but declined further comment.