One Month after Cyberattack against La Croix-Rouge

In a press release published on February 16, 2022, the ICRC (International Committee of the Red Cross) disclosed many details about the cyberattack that hit La Croix Rouge a month ago. This is a surgical operation which suggests that a professional hacker could be behind the attack.

At the end of January 2022, the servers hosting the personal data belonging to more than 515,000 people worldwide were hacked in a sophisticated cyberattack. After a month of analysis, the ICRC is now able to share the details of this cyberattack. In the humanitarian organization’s press release, we learn that “the hackers used considerable resources to access our computer systems and used tactics that most detection tools would not have detected”.

 

 

Russian hackers targeted US companies with secret-defense clearance

The tools used by the hackers in question are generally used by so-called “advanced” groups. They are not publicly available, as is the case with ransomware with the growing trend of RaaS (ransomware-as-a-service). The findings of the ICRC and the high level of skills available to the hackers behind this cyberattack suggest that a professional hacker could be behind the operation. We can read that “the attackers created a piece of code designed only to be executed on the servers of The Red Cross”.

 

 

The anomaly was detected approximately 70 days after the attack, on January 18, 2022. Analysis shows that the breach took place on November 9, 2021. The ICRC specifies that “the detection of such a large and complex breach usually takes time. The average time to identify a data breach of this level is 212 days. In its press release, the Red Cross reiterated its call on hackers to “not share, sell, disclose or use this data in any way”. As no ransom has been claimed, we can unfortunately think that the data may leak.

 

The hackers obtained the names, postal addresses and telephone numbers of 515,000 people around the world. Among those affected, the Red Cross specifies that there are missing persons and their families, detainees and other people benefiting from the services of the Red Cross and Red Crescent movement following armed conflict or natural disaster. For the moment, no trace of this data has been found on the dark web.

 

The ICRC assures that improvements will be made to security systems, including the implementation of a new two-factor authentication process and the use of an advanced threat detection solution.

 

Newer Articles

• Nvidia : Most Valuable American Chip Company in the World.  
• Elon Musk and Tesla accuse Securities and Exchange Commission (SEC) of Harassment
• ‘Pepperoni’ Storms on Jupiter! 

Older Articles

• Mediterranean Diet Amazing Benefits : It Got The Title Of World’s Best Diet For The 5th Consecutive Year  
• 5 Basic Sensors of Smartphones: From Rotating the Screen to Automatic Brightness Control
• World’s first Flying Car to debut in 2022?