Security News

The National Cyber Security Centre of Switzerland has released a report on its analysis of a data breach following a ransomware attack on Xplain, disclosing that the incident impacted thousands of sensitive Federal government files. The Swiss government started investigating the leaked files and instantly admitted that the leaked data might contain documents belonging to the Federal Administration of Switzerland.

Switzerland-not low stakes-uses online voting for national elections. Like any internet voting system, it has inherent security vulnerabilities: if there are malicious insiders, they can corrupt the vote count; and if thousands of voters' computers are hacked by malware, the malware can change votes as they are transmitted.

A new Android malware campaign has been observed pushing the Anatsa banking trojan to target banking customers in the U.S., U.K., Germany, Austria, and Switzerland since the start of March 2023. "The actors behind Anatsa aim to steal credentials used to authorize customers in mobile banking applications and perform Device-Takeover Fraud to initiate fraudulent transactions," ThreatFabric said in an analysis published Monday.

Building a culture of security awareness in healthcare begins with leadershipIn this Help Net Security interview, Ken Briggs, General Counsel at Salucro, discusses how fostering a culture of security awareness has become paramount for healthcare organizations. PoC exploit for exploited MOVEit vulnerability releasedAs more victim organizations of Cl0p gang's MOVEit rampage continue popping up, security researchers have released a PoC exploit for CVE-2023-34362, the RCE vulnerability exploited by the Cl0p cyber extortion group to plunder confidential data.

Swiss government websites are under DDoS attacks, but several ransomware gangs have also turned their sights on Swiss government organizations, cantonal governments, cities and companies in the last few months. Though the company is still trying to determine what data was stolen, someone - possibly BlackBasta, but who knows? - is trying to sell over 1.5 TB of company and customer data purportedly stolen from TAG Aviation on the Unsafe leak site/dark web marketplace.

A Swiss data centre operated by financial messaging service SWIFT is under guard by police following the exclusion of key Russian banks from the system. As we reported yesterday, the EU has agreed to bar certain Russian banks from SWIFT, the most widely used global financial messaging system.

Swiss authorities said Tuesday they have opened an investigation into allegations a Zug, Switzerland-based maker of encryption devices was a front operated by the CIA and West German intelligence that enabled them to break the codes of the countries that used their products. A joint investigation published Tuesday by Germany's ZDF public broadcaster and The Washington Post based on documents from the CIA and Germany's BND foreign intelligence agency revealed that Crypto AG made millions of dollars for the two agencies, while providing them with access to the encrypted communications of more than 120 countries for decades.

Accenture has named Marco Huwiler country managing director for Switzerland. Huwiler currently heads Accenture's Financial Services group in Switzerland, responsible for managing and developing its insurance, banking and capital markets capabilities.

That's around seven gigawatts, equal to 0.21% of the world's supply: as much power as generated by seven Dungeness nuclear power plants.

The Swiss government last week announced the launch of a public bug bounty program for its electronic voting systems, with rewards of up to $50,000. read more