Latest developments and events in data centre cybersecurity.
DATA CENTRE CYBER SECURITY INSIGHTS
Protecting critical infrastructure top priority in new US cybersecurity strategy
MARCH 2023 – On 01 March 2023, President Joe Biden launched the US National Cybersecurity Strategy. This release describes the digital challenges facing the United States in recent years and how they are acting on them. Interesting to see that protecting critical infrastructure is at the top of the US government’s cybersecurity priority list
Ukrainian datacenters moved outside their borders
Novemver 2022, The latest OT/IoT Security Report from Nozomi Networks, which was published this month, showed some remarkable developments within the cybersecurity domain. The main take-away is the fact that the Ukraine/Russia conflict influenced the industry significantly.
Siemens industrial devices in datacenters vulnerable to hackers
October 2022 – Siemens industrial devices in datacenters vulnerable to hackers
Recently, a research team of the cybersecurity company Claroty discovered a method to extract private encryption keys from Siemens industrial devices and compromise whole Siemens product lines.
Lloyd’s ends coverage for state cyber attacks
September 2022 – Lloyd’s of London will no longer provide cover for catastrophic state cyber attacks through its standard cyber policies from March 31 next year. Lloyd’s is a marketplace where insurance brokers from around the world negotiate directly with the insurers covering their clients’ risks.
Pentester says he broke into datacenter via hidden route running behind toilets
July 2022, Many security breaches involve leaks, but not perhaps in the same way as one revealed by noted security consultant Andrew Tierney, who managed to gain unauthorized access to a datacenter via what he delightfully terms the “piss corridor.”
UK government gathers insights on how to make data centers and cloud platforms more resilient
June 2022, as part of the UK’s National Data Strategy and National Cyber Strategy, the UK government is currently gathering insights from data center operators, cloud platform providers and cybersecurity experts to understand how to improve the security and resilience of the country’s data centers and online platforms.
Management liable for non-compliance with cybersecurity obligations
May 2022, The European Parliament and EU Member States reached a political agreement on May 13 on the Directive on measures for a high common level of cybersecurity across the Union (NIS 2 Directive).
Physical Infrastructure Cybersecurity: A Growing Problem for Datacenters
April 2022, Physical Infrastructure Cybersecurity: A Growing Problem for Datacenters. Datacenters are becoming faster, more scalable, and more efficient. But with this comes a greater risk of cyberattacks against physical infrastructure.
Zero-Click Flaws in Widely Used UPS Devices Threaten Critical Infratructure
March 2022, Zero-Click Flaws in Widely Used UPS Devices Threaten Critical Infratructure. The ‘TLStorm’ vulnerabilities, found in APC Smart-UPS products, could allow attackers to cause both cyber and physical damage by taking down critical infrastructure.
Oil terminals in several European ports were hacked
January 2022, oil terminals in several European ports were hacked. There are a total of 17 terminals, 11 in Germany and the other six in Belgium and the Netherlands. The hacks caused the terminals to struggle to load and unload the oil.
EU considers data centers as critical infrastructure
December 2021 – The European Commission is tackling cyber resilience through NIS2 legislation. Digital infrastructure such as Internet Exchange Point (IXP) providers, Domain Name System (DNS) service providers, Top Level Domain (TLD) registries, and cloud and data center providers would be considered “essential” entities.
Gas stations out of service
November 2021 – Insufficient security of industrial components pose a serious threat to the availability of critical facilities was again proven on October 26th by the cyberattack on the petrol distribution network in Iran.
Cyber insurance makes the ransomware crisis worse
October 2021 – Ransomware is one of the biggest cybersecurity problems facing businesses today. To cover financial risks, including the handling of cyber incidents, it is now easy to take out Cyber insurance.
T-Mobile data center hacker ‘Their Security was Awful’
September 2021 – A 21 year old hacker told the Wall Street Journal he was able to hack into T-Mobile’s datacenter. He was the main force behind exposing the sensitive information of more than 50 million people.
IoT killer bees are swarming the industrial control and operational systems
August 2021 – Entire botnets of IoT devices are targeting decades-old and legacy equipment that resides widely in the systems that power critical infrastructure.
Critical vulnerability discovered PLC’s Schneider Electric
July 2021 – Critical vulnerability discovered in PLC’s Schneider Electric. The ‘ModiPwn’ bug lays open production lines, sensors, HVACs and more that use Schneider Electric PLCs.
Food giant JBS Foods has paid $11 million ransom after cyberattack
June 2021 – JBS Foods, a leading food company and the largest meat producer globally, had to shut down production at multiple sites worldwide following a cyberattack.
The consequence of the Colonial Pipeline hack – US department of Justice equates ransomware attacks with terrorism
June 2021 – Cyber criminals have announced that they will avoid critical infrastructure in the future. Several ransomware developers declare that their malicious software should no longer be used to attack
Colonial Pipeline paid hackers a $4.4 million ransom
The cyber attack on oil pipeline company Colonial Pipeline is attributed by the FBI to the Russian cybercriminal gang ‘DarkSide’. The hackers used ransomware
Cyber criminals target facility infrastructure with ransomware
Cyber criminals are now targeting the facility infrastructure with ransomware and the damage can be extensive and long-lasting.
Cyber warfare: China possibly behind 2020 power outage India
The cyber war between Israel and Iran dates back to June 2010. Iran was the victim of a cyber attack when its nuclear facility in Natanz was infiltrated by the cyberworm ‘Stuxnet’.
Technical datacenter infrastructure, the ‘forgotten security risk’
On May 9, all systems controlling shipping and road traffic around the Iranian port of Sharid Rejaee crashed simultaneously.