Arab Press

بالشعب و للشعب
Friday, Mar 29, 2024

New Ransomware Group Exposes Vulnerability of DC Police’s Tech Infrastructure

New Ransomware Group Exposes Vulnerability of DC Police’s Tech Infrastructure

The expanding digital age has opened up a new lane of expenses, as some institutions are learning the hard way that having a dedicated cyber security staff and knowledge is a necessity. Hospitals and city and county governments have become easy targets for some global hackers.

A new ransomware developed by the Babuk hacker group has accessed the computer system of Washington, DC’s Metropolitan Police Department, a development which has since seen the group threaten to leak confidential files if they are not contacted within three days.

The DC police department confirmed in a Tuesday YouTube post that unauthorized access occurred, and that the FBI were now looking into the matter.


The files encrypted by the hack group included arrest history, housing and financial records, polygraph results and details about training and work history for some officers. Screenshots posted online included police reports, internal memos, mugshots and gang conflict reports.


Babuk claimed to have accessed over 250 GB of data from the police department in a signature ransom note that slammed the department on its slow computer software updates. The forum that the hacker group works under communicates in both English and Russian. In a message to the police department, the group indicated they were able to find vulnerabilities in the computer system that were not fixed by patch updates in time.

The DC police department is only one of the major targets to be hit by the Babuk cyberattack this year. Other victims include the UK-based Serco company that deals with COVID-19 testings and the NBA Houston Rockets.

A hack from Babuk usually includes a ransom note like the one pictured above, which is normally located in a file, labeled “How To Restore Your Files.txt,” and provides information on how the user can go about recovering their data.


Patches are updates, usually related to security that gets added onto a computer system to help fix-up any vulnerability. As the technological world is ever changing, there is always a newer, faster and more efficient way to handle data. Ransomware groups like Babuk often find ways to exploit these vulnerabilities by using different algorithms to communicate with computer systems through coding.

The algorithms used by hacking groups are known as ransomware since it requires a key to access the hijacked data, and the key is usually only known by the creators of the virus, which is how hackers are able to hold the data for ransom.

According to some critics, Babuk is only an “amateur” hacking group that uses the Eclliptic-Curve Diffie-Hellman (ECDH) algorithm to ensure that their own operating systems are secure and not easy to access or change.

ECDH algorithms require subtle changes to a file that make it difficult to access items unless the file holder can decode the information needed to decrypt the data and translate it in a way that the computer can successfully read.

Ultimately, this means the Metropolitan Police Department may or may not still have the ability to combat the ransomware if they are able to decode the common algorithm shared with the hacking group, which can possibly be found through suspected phishware.

Babuk operates on a ransomware-as-a-service (RaaS) model, meaning they are but a front for a much larger hacking affiliation since Babuk is known to use implementations of SHA256 hashing algorithm, which has links back to the US National Security Agency (NSA) and the ChaCha8 encryption that also has ties to US-based computer technology development.

Cyber space


According to AP, the Babuk group has only been discovered this year, but has so far hit 26 government agencies in the US, releasing data from 16 of them, thereby exposing the poor cyber security of most agencies. The group is known to target the agricultural, electronic, plastic surgery and dental health care and transportation sectors.

The groups most vulnerable to cybersecurity threats include schools, hospitals and state and municipal systems. In 2019, 113 state and municipal groups were hit by ransomware attacks, the most famous of which being the attack on voting infrastructure during the 2020 elections in Georgia. The largest cybersecurity attack so far has been the 2017 WannaCry cyberattack launched by the Democratic People’s Republic of Korea.

The Babuk group exposes the vulnerability of its targets, but usually asks for bitcoin payments below $100,000. The group has boasted that it does not attack hospitals or organizations that earn below $4 million, and that it mostly stays away from nonprofit organizations, except those associated with the Black Lives Matter movement and the LGBTQ communities.

Babuk has indicated that it will launch a dedicated leak site in the near future. The administration of US President Joe Biden has claimed that they are boosting efforts to shield the US cyberspace from hackers by analyzing the system’s vulnerabilities and pinpointing threats.

Newsletter

Related Articles

Arab Press
0:00
0:00
Close
China Criticizes US for Vetoing UN Ceasefire Resolution in Gaza
Saudi Arabia ranks first in UN index for e-government services in MENA
Israel Records 20% Drop In GDP, War In Gaza Is The Reason
Saudi Arabia's FDI Inflows Grow with New International Standards
Venture Capitals Power Up Across MENA Region
PM Modi Announces Opening Of New CBSE Office In Dubai
January Funding for MENA Startups Totals $86.5 Million
Saudi Arabia accelerates digital economy growth through Nvidia partnership
Israel unveils tunnels underneath Gaza City headquarters of UN agency for Palestinian refugees
Israel deploys new military AI in Gaza war
Egypt threatens to suspend key peace treaty if Israel pushes into Gaza border town, officials say
Saudi Arabia Warns Of A "Humanitarian Catastrophe" If Israel Moves On Rafah
US University To Shut Qatar Campus Due To "Heightened Mideast Instability"
Facebook and Instagram Ban Iran's Supreme Leader
Defense Technology Showcase Held in Riyadh
Saudi Arabia’s non-oil exports rise 2.5% to $6bn in November 2023: GASTAT
Rolls-Royce Executive Encourages Saudi Women to Tap into Their Inner 'Superhero' for Success in Defense Industry
Saudi Arabia launches National Academy of Vehicles and Cars
Saudi Tourism Minister Reveals Plan for 250,000 New Hotel Rooms by 2030
SAR to more than double eastern network passenger capacity with new trains deal
Saudi Arabia Enhances National Defense with New Partnerships
Saudi Aramco Maintains Arab Light Crude Pricing to Asia for March
NEOM Establishes New York Office to Support Investors
Saudi Wealth Fund Draws in Over $25 Billion Worth of Investments in Three Years, Al-Rumayyan Reveals
The Saudi Kingdom's Ultimatum to Israel: A Win-Win Peace with Saudi Arabia and the Arab World, or a Lose-Lose Continued Occupation and Endless Conflict
Biden condemns anti-Arab hate after WSJ opinion piece calls Dearborn ‘jihad capital’
Turkey Releases Seven Hostages Captured by Pro-Gaza Gunman
Arab Parliament Commends Women's Contributions to Societal Development
British and Hungarian Foreign Ministers visited Lebanese leaders to stress the importance of enacting UN Resolution 1701
Yemen's Houthis Say They Targeted British Merchant Vessel In Red Sea
Donald Trump Nominated for Nobel Peace Prize for 'Historic' Middle East Policy
US lawmakers approve F-16 jet sale to Turkey following NATO expansion support
Saudi Arabia Climbs 25 Places in World Bank's National Statistics Indicator
Tourism Growth in Saudi Arabia Fuels Advancements in the Hospitality Industry," Says Rotana Official
Houthi Rebels Request Departure of UN Staff from Yemen, Including US and UK Personnel, within a Month
Modi Inaugurates Hindu Temple on Site of Demolished Mosque in India
Over 25,000 Deaths in Gaza Amid Israeli Offensive
Escalating Clashes in Gaza as Israel Distributes Leaflets to Assist in Locating Hostages
Turkey's First Astronaut Set to Launch for International Space Station Today
Head of Palestinian Investment Fund Warns More People May Die of Hunger Than War in Gaza
Palestinian Envoy Criticizes UK for Alleged 'Double Standards' in Policies Toward Israel
Morocco to Lead UN Human Rights Council in 2024
Is artificial intelligence the solution to cyber security threats?
Egypt has been identified as the leading military force among Arab nations and ranks 15th globally
The AI Revolution in the Workforce: CEOs at Davos Predict Major Job Cuts in 2024
Iranian Nobel Laureate Narges Mohammadi Receives Additional Prison Sentence
"Gazans Urge Israeli Forces to Target Hamas in Leaked Audio"
Biden States US and UK Airstrikes on Houthis Were a 'Defensive Action
Large Pro-Palestine Rally in London as Gaza Conflict Hits Day 100
South Africa Urges World Court to Halt Israeli Actions in Gaza
×