There have been times over the last two months when Golan Ben-Oni has felt like a voice in the wilderness.
On April 29, someone hit his employer, IDT Corporation, with two cyberweapons that had been stolen from the National Security Agency. Mr. Ben-Oni, the global chief information officer at IDT, was able to fend them off, but the attack left him distraught.
In 22 years of dealing with hackers of every sort, he had never seen anything like it. Who was behind it? How did they evade all of his defenses? How many others had been attacked but did not know it?
Since then, Mr. Ben-Oni has been sounding alarm bells, calling anyone who will listen at the White House, the Federal Bureau of Investigation, the New Jersey attorney general’s office and the top cybersecurity companies in the country to warn them about an attack that may still be invisibly striking victims undetected around the world.
He is determined to track down whoever did it.
“I don’t pursue every attacker, just the ones that piss me off,” Mr. Ben-Oni told me recently over lentils in his office, which was strewn with empty Red Bull cans. “This pissed me off and, more importantly, it pissed my wife off, which is the real litmus test.”
Two weeks after IDT was hit, the cyberattack known as WannaCry ravaged computers at hospitals in England, universities in China, rail systems in Germany, even auto plants in Japan. No doubt it was destructive. But what Mr. Ben-Oni had witnessed was much worse, and with all eyes on the WannaCry destruction, few seemed to be paying attention to the attack on IDT’s systems — and most likely others around the world.
The strike on IDT, a conglomerate with headquarters in a nondescript gray building here with views of the Manhattan skyline 15 miles away, was similar to WannaCry in one way: Hackers locked up IDT data and demanded a ransom to unlock it.
But the ransom demand was just a smoke screen for a far more invasive attack that stole employee credentials. With those credentials in hand, hackers could have run free through the company’s computer network, taking confidential information or destroying machines.
Learn more: A Cyberattack ‘the World Isn’t Ready For”
The Latest on: Cyberattack
- Brazil's CVC says systems partially restored after cyberattackon October 11, 2021 at 4:59 am
Brazilian travel company CVC Brasil Operadora CVCB3.SA said on Monday it has partially restored systems that were affected by a cyberattack on Oct. 2. The company said it had restored back-office ...
- Allen ISD Staff Social Security Numbers Compromised in Cyberattackon October 11, 2021 at 4:01 am
Hackers obtained Social Security numbers for some district staff in a recent cyberattack, Allen ISD Superintendent Robin Bullock announced in an email Friday afternoon.
- Choppy waters: Port of Houston cyberattackon October 10, 2021 at 2:55 pm
A major cyberattack on a port like this (which is the largest port in the U.S.) could have the ability to upend multiple supply chains. Looking at the incident for Digital Journal is Paul Martini, the ...
- Allen ISD taking extra steps to protect student, staff information amid cyberattackon October 8, 2021 at 7:12 pm
Hackers claimed they downloaded the personal information of students, families and staff during a cyberattack on Sept. 20. In a letter to parents and staff Friday, Superintendent Robin Bullock ...
- Social security info of Allen ISD staff were compromised in cyberattack, district sayson October 8, 2021 at 3:57 pm
Hackers obtained Social Security numbers for some district staff in a recent cyberattack, Allen ISD Superintendent Robin Bullock announced in an ...
- Audit finds Kansas schools unprepared for a cyberattack. What is the risk?on October 8, 2021 at 3:17 am
Kansas schools are unprepared for a cyberattack and are not doing enough to protect student data, state auditors found. A Legislative audit of IT security in K-12 schools released earlier this week ...
- Kansas county pays up to end cyberattackon October 6, 2021 at 7:43 am
A view shows a laptop display showing part of a code, which is the component of Petya malware computer virus according to representatives of Ukrainian cyber security firm ISSP, at the firm's office in ...
- Alabama mother sues medical center over infant’s death, blames cyberattackon October 4, 2021 at 9:47 pm
A Mobile, Alabama, mother is suing Springhill Medical Center for negligence and wrongful death, claiming staff was dealing with a cyberattack when she was giving birth, which ultimately led to the ...
- Breaking: Marten Transport falls victim to possible cyberattackon October 4, 2021 at 10:49 am
Wisconsin-based truckload carrier Marten Transport was targeted in an apparent cyberattack that knocked out its operating system around 2:30 p.m. CDT on Sunday, according to a source familiar with the ...
- Cyberattack on Johnson Memorial Health disables hospital computer networkon October 3, 2021 at 10:54 am
A cyberattack Saturday at Johnson Memorial Health has resulted in the disabling of the Franklin-based health care system’s computer network. “We are currently working closely with our expert ...
via Google News and Bing News