There have been times over the last two months when Golan Ben-Oni has felt like a voice in the wilderness.
On April 29, someone hit his employer, IDT Corporation, with two cyberweapons that had been stolen from the National Security Agency. Mr. Ben-Oni, the global chief information officer at IDT, was able to fend them off, but the attack left him distraught.
In 22 years of dealing with hackers of every sort, he had never seen anything like it. Who was behind it? How did they evade all of his defenses? How many others had been attacked but did not know it?
Since then, Mr. Ben-Oni has been sounding alarm bells, calling anyone who will listen at the White House, the Federal Bureau of Investigation, the New Jersey attorney general’s office and the top cybersecurity companies in the country to warn them about an attack that may still be invisibly striking victims undetected around the world.
He is determined to track down whoever did it.
“I don’t pursue every attacker, just the ones that piss me off,” Mr. Ben-Oni told me recently over lentils in his office, which was strewn with empty Red Bull cans. “This pissed me off and, more importantly, it pissed my wife off, which is the real litmus test.”
Two weeks after IDT was hit, the cyberattack known as WannaCry ravaged computers at hospitals in England, universities in China, rail systems in Germany, even auto plants in Japan. No doubt it was destructive. But what Mr. Ben-Oni had witnessed was much worse, and with all eyes on the WannaCry destruction, few seemed to be paying attention to the attack on IDT’s systems — and most likely others around the world.
The strike on IDT, a conglomerate with headquarters in a nondescript gray building here with views of the Manhattan skyline 15 miles away, was similar to WannaCry in one way: Hackers locked up IDT data and demanded a ransom to unlock it.
But the ransom demand was just a smoke screen for a far more invasive attack that stole employee credentials. With those credentials in hand, hackers could have run free through the company’s computer network, taking confidential information or destroying machines.
Learn more: A Cyberattack ‘the World Isn’t Ready For”
The Latest on: Cyberattack
- Trump says cyberattack 'under control,' plays down Russian roleon March 7, 2021 at 9:30 am
Trump's response came a day after Secretary of State Pompeo said in an interview that the attack -- which cyber experts say could have far-reaching impact and take months to unravel -- was "pretty cle ...
- North Dakota suspects Chinese hackers had control of public email servers during cyberattackon March 6, 2021 at 1:21 am
A group of Chinese "threat actors" known as Hafnium had access to data in email servers belonging to cities, counties and school districts, but the department is still investigating whether the ...
- Massive Supply-Chain Cyberattack Breaches Several Airlineson March 5, 2021 at 11:54 am
The cyberattack on a nearly ubiquitous airline service provider has compromised frequent-flyer data across many carriers.
- Cyberattack shuts down online learning at 15 UK schoolson March 5, 2021 at 1:04 am
15 schools in the United Kingdom have been unable to provide online learning due to a cyberattack. Security ...
- Two Key Cyberattack Targets We Should Not Forget Abouton March 4, 2021 at 3:19 pm
Most people were more than ready to have 2020 in the rear-view mirror, and probably no one more than cybersecurity teams. Unfortunately, the cyberfraud problems we saw in 2020 aren't going away.
- CompuCom MSP hit by DarkSide ransomware cyberattackon March 4, 2021 at 12:58 pm
US managed service provider CompuCom has suffered a DarkSide ransomware attack leading to service outages and customers disconnecting from the MSP's network to prevent the spread of malware.
- Kingman Struggles to Emerge From Under Cyberattackon March 4, 2021 at 10:50 am
Kingman officials say municipal employees aided by Arizona National Guard technology personnel continue working to unravel a cyberattack that targeted the city’s computer system.
- Post-Cyberattack, Universal Health Services Faces $67M in Losseson March 2, 2021 at 1:29 pm
The Fortune-500 hospital network owner is facing steep costs in damages after a cyberattack impacted patient care and billing in September and October.
- "Human Error Not Chinese Cyberattack": Union Minister On Mumbai Blackouton March 2, 2021 at 11:17 am
Union Power Minister RK Singh on Tuesday said that the Mumbai power outage last October was caused by "human error" and there is no evidence to prove that it was triggered due to a cyberattack by ...
- 'US should stand with India': American lawmaker on China's alleged cyberattack leading to Mumbai blackouton March 2, 2021 at 12:33 am
The Maharashtra govt has said that the massive blackout that paralysed Mumbai last year was caused by a suspected cyber attack originating in China ...
via Google News and Bing News