topic Re: Travelex hit in Industry News

Travelex hit

rslade — Fri, 03 Jan 2020 19:37:20 GMT

OK, yet another example of a media report that doesn't know what it's talking about.

"Software virus"? That's redundant. (I am willing to withdraw my objection when somebody shows me a hardware virus.)

Given the (minimal) information provided in this report, I strongly suspect ransomware.

Re: Travelex hit

AppDefects — Fri, 03 Jan 2020 19:48:53 GMT

Poor chaps...Tesco averages one major incident a year...

Re: Travelex hit

denbesten — Fri, 03 Jan 2020 21:12:15 GMT

@rslade wrote:
"Software virus"? That's redundant.

Well, there are human and animal viruses.....

I strongly suspect ransomware.

Other reports point to Ransomware too. Did your kids give you a "smart" crystal ball for Christmas this year?

Re: Travelex hit

rslade — Sat, 04 Jan 2020 18:13:20 GMT

> denbesten (Community Champion) posted a new reply in Industry News on 01-03-2020

> Did your kids give you a "smart" crystal ball for Christmas
> this year?

If they did, I wouldn't connect it to the wifi without changing the default password,
first. I've just been around for a loooooong time. (And I started out researching
malware ...)

====================== (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org
Yes, but every time I try to see things your way, I get a headache.
victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade
http://blogs.securiteam.com/index.php/archives/author/p1/
https://is.gd/RotlWB

Re: Travelex hit

Shannon — Wed, 08 Jan 2020 04:41:16 GMT

This article on Darkreading.com mentions that it might have involved exploitation of a vulnerability in Pulse Secure --- used for VPNs --- being exploited.

(The vulnerability was announced last year)

Re: Travelex hit

Carpodiem — Wed, 08 Jan 2020 11:12:39 GMT

An Oracle WebLogic vulnerability that was patched in April 2019 was used. Sounds like RansomWare has taken it toll.