Fidelity bank banner Bayelsa State banner
Hackers sell codes to access airport security systems

By News Express on 16/07/2018

Share on facebook Yahoo mail icon Gmail icon Share on Google+

Views: 241

•Masked Cyber fraudster
•Masked Cyber fraudster

Criminals have been caught selling codes to access an airport’s security systems on the dark web for just £7 ($10/N35,000), according to a new investigation.

The stolen passwords could allow anyone to access the airport’s remote desktop protocol (RDP). This allows employees to work access airport systems outside the local network.

Had the codes fallen into the wrong hands, they could have compromised passenger safety, allowing criminals to create havoc at the airport.

For instance, if hackers had airport RDP access, it would allow them to control security cameras from anywhere in the world. They could also potentially change the airport’s heating, lighting ventilation and air conditioning systems remotely.

The airport affected has not been named and it appears the codes have now been taken offline. The codes were unearthed on the dark web by McAfee’s Advanced Threat Research team.

“[The codes] could allow cybercriminals to do essentially anything they want - create false alerts to the internal security team, send spam, steal data and credentials, mine for cryptocurrency or even conduct a ransomware attack on the organization,’’ McAfee said.

The credentials facilitated control of “systems linked to security and building automation systems’’ according to the worrying report. It’s still unclear how the airport’s credentials were obtained. McAfee suggests the hackers may have used brute force, simply guessing random passwords until they were able to log in. According to researchers, RDP administrators often do not have two-factor authentification to prevent such brute force attacks.

“Remotely accessing systems is essential for system administrators to perform their duties. Yet they must take the time to set up remote access in a way that is secure and not easily exploitable’’, researchers wrote.

‘’RPD shops are stockpiling addresses of vulnerable machines and have reduced the effort of selecting victims by hackers to a simple online purchase’’.

‘‘The dark web contains RDP shops, online platforms selling remote desktop protocol (RDP) access to hacked machines, from which one can buy logins to computer systems to potentially cripple cities and bring down major companies’’, researchers wrote. The airport was not the only system to have been infiltrated. According to the report ‘’multiple government systems’’ and ‘’dozens of connections linked to health care institutions’’ had had their security systems breached. For security reasons, the report did not mention the names of the systems but notified the relevant institutions.

‘‘Governments and organisations spend billions of dollars every year to secure the computer systems we trust’’, researchers wrote.

‘‘But even a state-of-the-art solution cannot provide security when the backdoor is left open or carries only a simple padlock.

‘‘Just as we check the doors and windows when we leave our homes, organisations must regularly check which services are accessible from the outside and how they are secured.’’

How can you protect your information online?

1. Make your authentication process two-pronged whenever possible. You should choose this option on websites that offer it because when an identity-specific action is required on top of entering your password and username, it becomes significantly harder for fraudsters to access your information.

2. Secure your phone. Avoiding public Wifi and installing a screen lock are simple steps that can hinder hackers. Some fraudsters have begun to immediately discount secure phones altogether. Installing anti-malware can also be beneficial.

3. Subscribe to alerts. A number of institutions that provide financial services, credit card issuers included, offer customers the chance to be notified when they detect suspicious activity. Turn those notifications on to stay informed about credit card activity linked to your account.

4. Be careful when issuing transactions online. Again, some institutions offer notifications to help with this, which will alert you when your card is used online. It might also be helpful to institute limits on amounts that can be spent with your card online.

Culled from Daily Trust

Source News Express

Posted 16/07/2018 12:28:28 PM

 

Share on facebook Yahoo mail icon Gmail icon Share on Google+


 

CLASSIFIED ADS

 

You may also like...
Why I want to be Governor of Anambra...

AB InBev to cut 5,500 jobs after SABMiller...

Marwa, supporters return to APC

7 nabbed in underground kidnappers den

El-Rufai swears-in new Commissioners, Permanent Secretaries

UNICEF launches U-Report e-governance platform today in Lagos...

Finance Minister hails anti-graft agencies for arraigning 9...

44 insurance firms sue FIRS over N1bn excess...

Niger Delta demands 50 per cent of oil...

Housekeeper in court over employer's $4,000

Otudeko bags Business Person of the Year Award...

Electricity Tariff hike: Court dismisses NERC’s application for...

 

Latest News BREAKING NEWS: INEC registers 23 new political parties (See Full List) Boko Haram attacks 3 nations in 1 week; slain officer buried without army’s admission of casualties Amaechi’s 2nd term as Presidential Campaign DG and Buhari’s chances in the 2019 polls BREAKING: Osinbajo orders immediate overhaul of SARS MASSOB bans Kano Governor from visiting Aba, receiving chieftaincy title Saraki, Dogara dash hopes of early reconvening of National Assembly 2019: Southern forum gives conditions for backing presidential aspirants Blind Imolites block Government House to protest Okorocha’s failed promises 2019: Tambuwal, Atiku in closed-door meeting over PDP presidential ticket US lawmaker in fake certificate scandal Dismissed policeman commits suicide after infecting nine-year-old girl, five others with HIV Cleric slumps, dies while officiating wedding

 

Most Read NUDE PHOTO OF OMOTOLA JALADE-EKEINDE surfaces online (376,425 views) Nigerian female sex addict opens up, says ‘I like it with both men and women’ (365,896 views) Shameless Genevieve Nnaji exposes breasts in public (295,577 views) Finally named: The full list of friends of Nigerian female sex addict who prowled Facebook (241,340 views) OLUMBA OLUMBA OBU (the one who called himself God) IS DEAD (221,926 views) Igbo scholar disgraces Femi Fani-Kayode •Demolishes claims on Igbo/Yoruba history with facts and figures (216,780 views) Breaking News: POPULAR REVEREND CONVERTS TO ISLAM in Kaduna (Nigeria) (192,075 views) OBJ’s son reported dead in Lagos plane crash •Names of more victims emerge (174,220 views) THE FINAL DISGRACE: Igbo scholar unleashes more facts about Igbo/Yoruba history, finishes off Femi Fani-Kayode with second article (159,355 views) My wasted years in Olumba Olumba Obu’s Evil Brotherhood (157,790 views) Lagos plane crash: Journalist releases victims’ names (152,284 views) Gunmen kill ASP, 2 other police officers in vain bid to kidnap Rivers PDP chieftain (142,710 views)

 

Categories Advertorials (3) African Press Organisation (81) Art & Literature (56) Business & Economy (3,445) Business Verdict (48) Columnists (907) Complaints & Requests (95) Enterprise & Opportunities (207) Entertainment (526) Features (632) Global Business Monitor (293) International (2,263) Interview (161) Live Commentary (28) Love Matters (134) News (37,990) Opinion (1,056) Pidgin (11) Politics (6,025) Religion (814) Sports (1,643) Stock Watch (33) AMA & Al Jazeera Global Update

 

CBN banner

Firstmobile banner

 

 

NEWS EXPRESS TV

Liverpool Destroying West Ham 4-0 - Highlights

 

APO Group Partner

 

 

CLASSIFIED ADS

GOCOP Accredited Member

GOCOP Accredited member

 

 

Africa Media Agency and Al Jazeera

Advertisement