Security News > 2023 > November > Inside Denmark’s hell week as critical infrastructure orgs faced cyberattacks
Danish critical infrastructure faced the biggest online attack in the country's history in May, according to SektorCERT, Denmark's specialist organization for the cybersecurity of critical kit.
Zyxel firewalls are used extensively by the organizations protected by SektorCERT and the vulnerabilities in these, announced in April, which allow remote attackers to gain complete control of the firewall without authentication, were blamed for most of the attacks.
As the devices weren't available for scanning on services like Shodan, SektorCERT said it's not clear how the attackers were able to identify the vulnerable firewalls.
Toyota admits to yet another cloud leak Mirai reloads exploit arsenal as botnet embarks on another expansion drive DDoS-like attack brought down OpenAI this week, not just its purported popularity Critical infrastructure gear is full of flaws, but hey, at least it's certified.
The final wave of attacks began on May 24 when SektorCERT received an alert that indicated advanced persistent threat traffic at one organization - the first of its kind ever seen in its three years of operation.
"Danish, critical infrastructure is under constant cyber attack from foreign actors. Therefore, everyone who runs critical infrastructure should pay extra attention and ensure that the right measures are taken to be able to prevent, detect, and deal with these attacks." .
News URL
https://go.theregister.com/feed/www.theregister.com/2023/11/13/inside_denmarks_hell_week_as/
Related news
- US critical infrastructure cyberattack reporting rules inch closer to reality (source)
- Public anxiety mounts over critical infrastructure resilience to cyber attacks (source)
- CISA shares critical infrastructure defense tips against Chinese hackers (source)
- FBI v the bots: Feds urge denial-of-service defense after critical infrastructure alert (source)
- US sanctions APT31 hackers behind critical infrastructure attacks (source)
- Strengthening critical infrastructure cybersecurity is a balancing act (source)
- Cyber attacks on critical infrastructure show advanced tactics and new capabilities (source)
- CISA investigates critical infrastructure breach after Sisense hack (source)
- CISA says Sisense hack impacts critical infrastructure orgs (source)
- DHS establishes AI Safety and Security Board to protect critical infrastructure (source)