The world’s largest aerospace company Boeing has been hit by a malware attack and reportedly it led to the infection of infamous WannaCry ransomware.
According to Seattle Times, who broke the news, the impacted department belonged to Boeing’s 777 airliners production plant in North Charleston, S.C. facility.
Although Seattle Times is certain that the malware attack caused WannaCry ransomware infection there was no confirmation from Boeing. However, in a statement, the company acknowledged there was a limited intrusion of malware that affected a small number of systems and it was not a production or delivery issue.
The head of communications for Boeing Commercial Airplanes Linda Mills said in a statement that “We’ve done a final assessment. The vulnerability was limited to a few machines. We deployed software patches. There was no interruption to the 777 jet program or any of our programs.”
Statement: A number of articles on a malware disruption are overstated and inaccurate. Our cybersecurity operations center detected a limited intrusion of malware that affected a small number of systems. Remediations were applied and this is not a production or delivery issue.
— Boeing Airplanes (@BoeingAirplanes) March 28, 2018
Remember, Boeing has two divisions including Boeing Commercial Airplanes and Boeing Defense, Space & Security (BDS) making it a high-profile and lucrative target for state-sponsored hackers and lone cybercriminals.
Related: How To Prevent Growing Issue of Encryption Based Malware (Ransomware)
Remember, on May 12th, 2017 WannaCry ransomware hit the computer networks at National Health Service (NHS) in the United Kingdom. The attack used leaked NSA tools EternalBlue and DoublePulsar and exploited a now fixed SMB vulnerability (MS17-010) in old and updated Windows devices. The ransomware attack spread to 150 countries and targeted over 200,000 computers.
“Many security experts published WannaCry prevention and remediation suggestions when the outbreak first appeared. These strategies are still valid but can be difficult and risky to deploy in complex manufacturing environments such as Boeing’s. Healthcare environments are also particularly susceptible to malware worm infestations for similar reasons,” said Dan Mathews, director at malware protection provider, Lastline.
WannaCry’s comeback should not be a surprise since there has been a massive increase in malware attacks causing service outage and blocking users from accessing computers. Just last month, 2,000 Colorado DOT computers were hit by SamSam ransomware attack while IT security giant Avast blocked 1.7m WannaCry attacks on their users in Indonesia, 1.2m in India and 1.1m in Brazil.
According to Avast’s Threat Lab Team Lead Jakub Kroustek “There’s a lingering impression within organizations that the WannaCry ransomware strain is dead. It’s not. It remains active and it continues to spread at a slow rate compared to its initial outbreak speed. It’s to be confirmed whether the attack on Boeing is linked to WannaCry in any way, shape or form.”
“This month, we blocked 1.7m WannaCry attacks on our users in Indonesia, 1.2m in India and 1.1m in Brazil. These were the top three markets. In the U.S., for example, we saw almost 70,000 attacks. Some markets are currently more affected than others, however, both businesses and consumers around the world need to be alert and urgently patch their vulnerabilities.”
It is advised that users should refrain from clicking on links and downloading files from unknown emails. The easiest way for cybercriminals to spread attacks like WannaCry ransomware is to send convincing phishing emails. Here are 5 quick tips to keep yourself safe from phishing scams.
Image credit: Depositphotos
![The leaked database was discovered on Shodan on May 14th.[wp_ad_camp_1][hlink][/hlink]A huge online database containing private contact information including phone numbers and email IDs of roughly 50 million Instagram profiles including those of influencers and brands has reportedly been discovered by security researcher Anurag Sen. The affected individuals include famous food bloggers and celebrities too apart from social media influencers. This database, which belongs to Chtrbox reportedly contains 49 million records was hosted on AWS (Amazon Web Services) and got exposed because it wasn’t protected with a password. Chtrbox is a Mumbai-based marketing firm that connects social media influencers to brands looking to market their products.See: Facebook: Storing Instagram passwords in plain text & harvesting your emailsEvery single record in the exposed database contains data belonging to social media influencers’ accounts and in some cases, even the account location is also mentioned. Each account has different worth depending on the number of followers, reachability, and engagement on the platform.[wp_ad_camp_1][hlink][/hlink]Zack Whittaker of TechCrunch contacted Chtrbox to inform about the exposed database, and it was eventually removed. It must be noted that Anurag claimed to discover the exposed database on Shodan on May 14th but in a statement issued by Chtrbox stated that the database was only exposed for 72 hours and contained no personal data.Whittaker also tweeted on Chtrbox's statement and called it "inaccurate."On the other hand, the Instagram spokesperson stated that they are figuring out the issue in order to understand whether the data actually is of Instagram accounts or of other sources."We're also inquiring with Chtrbox to understand where this data came from and how it became publicly available," the spokesperson told TechCrunch.[wp_ad_camp_1][hlink][/hlink]Whittaker claims that the information in the database must have been scraped from various publicly available social media accounts as it also included data such as the cost of a particular post and number of likes, etc. Moreover, some of the influencers claim that they aren’t associated with Chtrbox.See: Russian Hackers Control Malware via Britney Spears Instagram PostsFacebook, which owns Instagram, told TechCrunch that it is reviewing the matter. It is worth noting that Instagram doesn’t allow account scraping while Chtrbox claims that its client base boasts of over 184,000 Instagram influencers. This number is much less than the number of records found in the exposed database.Previously, hackers were found compromising and holding several Instagram influencers accounts for ransom - In the other case, personal data of top celebrities on Instagram was stolen and traded online while several dark web marketplaces were also seen selling Instagram data of 6 million celebrities.Did you enjoy reading this article? Like our page on Facebook and follow us on Twitter.](https://www.hackread.com/wp-content/uploads/2019/05/database-with-millions-of-instagram-influencers-leaked-online-1.jpg)