• Avantia Threat Update

Perth Gold Mint Robbed

Gold Bullion is expensive, stolen data can be worth more....

It’s been one bad week for “Spyware” app developers, as their customers’ data is leaked for all to see! It’s not just misconfigured AWS buckets (Amazon Web Services - AWS is a secure cloud services platform) you have to worry about, it’s your misconfigured Tor site that’s not so secure. Also this week the iconic British Airways breach, a hit on the Perth Mint and Cyber Insurance trends.


Perth Mint Breach – a prelude?

Tor Vulnerability? Freedom of Information Act Fail. iSpy, uSpy… mSpy.

In Other News:

The Mask Comes Off You may be familiar with misconfigured databases, a common reason for a breach. When setting up a database, the Admin User may forget to put a password in place or just create a simple one like 1234. But what you may not have heard of before is a Tor (The Onion Router used on the Dark Web) site that is misconfigured. That’s right, just like any other website, Tor sites that are misconfigured can expose the hosted public IP address. Because a Tor browser is used for accessing the Dark Web, a part of the web that thrives on anonymity, the exposure of one’s IP address greatly reduces this coveted privacy.

Three is a Crowd A pair of Russian hackers is causing some serious damage to former Soviet Republic countries’ financial institutions. The group, known as Silence, has stolen $800,000 in just the thefts reported. It is highly likely the group is responsible for other attacks, but because of how new the duo is, and the irregular frequency of their activity, it’s difficult to discern other hacks they may have perpetrated. The organization has access to unique, advanced malware, and demonstrates great knowledge about ATMs and the inner workings of banks. This leads researchers to believe that at least one of the two is an insider or only recently left the security industry.

Doube Trouble

The market for Insurance against Cyber Threats will double by 2020 to over US$8 billion, German reinsurance giant Munich Re told a conferance in Monaco this week. "Cyber Risks are one of the biggest threats to the networked economy" Munich Re Board Member Torsten Jeworrek said in a statement on the first day of the annual meeting of reinsurers in the Mediteranian principality. Munich Re estimated that companies could more than double their spending on cyber insurance from US$3.4 - $4 billion in 2017 to US$8 - $9 billion by 2020. while the digital economy had increased productivity "increased networking of machines and equipment in particular can also give rise to very complex risks such as data theft, disruptions in the interactions between networked machines and even the failure of entire production lines and supply chains." Munich Re insurance said estimating the number of connected devices worldwide will rise from 27 Bullion to 125 Billion by 2030/ "The economic costs of large scale Cyber Attacks already exceeds losses caused by natural disasters. Where SME's are affected such attacks can threaten their very existance." they said.


Threat Focus: USA Govt FOI Act Web Portal - USA

Freedom of Information Act Web Portal: is the website the USA government uses to process inquiries related to the Freedom of Information Act Exploit: Exposed database. Risk to Small Business: High: An exposure such as this can taint an organization’s reputation for an extended period. Individual Risk: Extreme: The nature of the data exposed leaves those affected vulnerable to identity theft. an act that allows Americans to request information that the state has associated with them. Date Occurred/Discovered: August 2018 Date Disclosed: September 4, 2018 Data Compromised: Social Security Numbers; Date of birth; Immigrant identification number; Addresses; Contact details; Description of crime perpetrated against victim; Victims of identity theft had their SSN exposed

Customers Impacted: Unclear, dozens to hundreds.

Threat Focus: British Airways – United Kingdom

British Airways (BA) is the flag carrier and the largest airline in the United Kingdom. Exploit: Data breach from code vulnerability Risk to Small Business: High: A data breach of customer Credit Card details can permanently damage an institutions level of customer trust in their online services. Individual Risk: Extreme: the nature of what has been stolen opens the door to identity theft. Date Occurred/Discovered: 21st August, 2018 Date Disclosed: September 7th, 2018 Data Compromised: Customer names; Email addresses and Passwords, Home addresses and Payment Card information - but not Travel or Passport details.

Customers Impacted: 380,000 Customers

Threat Focus: Perth Mint – AUSTRALIA

Perth Mint: The Perth Mint is Australia’s largest fully integrated, innovative precious metals enterprise, providing premium gold, silver and platinum products and services to markets throughout the world.

Exploit: Bata breach of depository online customer information from 3rd Party Website.

Risk To Small Business: High: The data breech was a ‘data breach’ of customer information held by a third-party provider causing a loss of trust to its customers.

Individual Risk: Moderate: Loss of the data

Date Occurred/Discovered: September 2018 Date Disclosed: September 2018 Data Compromised: Customer Information

Customers Impacted: 13 depositary online customers

Threat Focus: Family Orbit - USA

Family Orbit: A spyware application for parents to monitor their children. Exploit: Weak password on database. Risk to Small Business: High: A company that sells spyware to parents, exposed pictures of their kids on the internet, which will likely have catastrophic effects on their business. Individual Risk: Moderate: The data by itself is not harmful but is pretty creepy. However, in use with other data accessible through the Dark Web, advanced spear phishing campaigns could be launched using the exposed data. Date Occurred/Discovered: August 2018 Date Disclosed: September 4, 2018 Data Compromised: Pictures; Videos; Screenshots of developer desktops; Passwords

Customers Impacted: Hundreds, 281 gigabytes of pictures and videos were exposed.

Threat Focus: mSpy – United Kingdom

mSpy: A company that sells a software as a service product which spies on mobile devices of the customer’s kids or partner. Exploit: Exposed database. Risk to Small Business: High: While a breach of this size with such sensitive information would normally cripple a company, this is actually mSpy’s sophomore breach, with the first happening in 2015 when similar information was leaked onto the Dark Web. Individual Risk: High: The data that was exposed was both financial and very personal, and could be used for highly-targeted phishing attacks. Date Occurred/Discovered: August 30, 2018 Date Disclosed: September 4, 2018 Data Compromised: Passwords; Call logs; Text messages; Contacts; Notes; Location data; Names; Email addresses; Mailing addresses; Amount paid; Apple iCloud username; Whatsapp messages; Facebook messages

Customers Impacted: Millions.



Malwhat? The Fortinet Q2 Threat Landscape Report is out, and with it, a load of new statistics that really show how at-risk most businesses are, even if they don’t realize it. Here are some of the most alarming malware statistics:

  • There have been 23,945 unique variants of malware recorded this quarter.

  • On average there are 13 unique daily detections per firm.

  • There were 6 variants of malware that spread to more than 10% of firms.

Malware development is not slowing down, but it is changing. ‘Malware as a service’ is a popular model for the developers of the malicious programs. New types of malware such as ‘cryptojackers’ that mine cryptocurrency on the victim’s computer, or ransomware that extorts businesses, have become commonplace. The threat landscape is always changing, which is why it is important for every organization of every shape and size to have robust cyber security.

Consider this: When you think about Cyber Security think about the ones you care the most about – your family. If you have children or young adults using Smartphones, Tablets or Laptops consider their vulnerability. Do you want to put their digital selves in the hands of pedophiles, scammers and cyber criminals. The purchase of children’s digital credentials (username/password) is big business on the Dark Web. Check out our inexpensive Individual or Family monitoring service – it’s a ‘no brainer’ for your peace of mind. CLICK HERE FOR PRICING


Disclaimer: Avantia Corporate Services Pty Ltd provides the content in this publication for general information only and has compiled the content from number of sources believed to be reliable. No warranty, implied or otherwise, is given as to its accuracy or fitness for use, no validation or investigation has been performed by Avantia Corporate Services or the Author as to its accuracy or reliability. Readers should conduct their own investigation and come to their own conclusions before taking any action.