news
News in Israel
Criminal news and law
The Capital Market Authority conducted a cyber audit on Shirbit a few weeks before the break-in
According to a source involved in the details, before the attack that led to a huge leak of information, the insurance company's computer systems were routinely inspected.
The company announced that it had approached the cyber array and other companies specializing in negotiations, after the hackers demanded a $ 1 million ransom in Bitcoin. Shirbit did not deny
Tags
Shirbit
hackers
Cyber
Mikey Levy
Thursday, 03 December 2020, 23:00
Share on Facebook
Share on WhatsApp
Share in general
Share in general
Share on Twitter
Share on Email
0 comments
Minister of Bahrain visiting Israel: looking forward to cultivating the ties between ...
The UK has approved the use of the Pfizer vaccine for Corona ...
Head of Public Health Services: "This is the beginning of a wave ...
Elected President Biden broke his foot while playing with ...
Welcome ceremony for the first hundreds of immigrants from Ethiopia ...
Prof. Hezi Levy: "Additional restrictions are being considered, and not just a closure ...
Netanyahu: "In such dramatic days, we should not go to the polls" ...
South Korea tightens restrictions following a jump ...
Iranian nuclear scientist's funeral journey: The coffin has arrived ...
The funeral of the elder of the Mashgiachim, Rabbi Aharon, Mashgiach of the Yeshiva ...
To prevent rain floods in Kiryat Ata, it was established in Nahal Somekh ...
Edelstein: The Cabinet made the right decision - to open ...
Libushur: "We are working for a quick return to full activity" (Walla! NEWS system)
The Capital Market, Insurance and Savings Authority conducted an audit of Shirbit a few weeks before the giant broke out, including a test to protect against a cyber attack - Walla learned today (Thursday)!
NEWS From the source involved in details.
It is not known what exactly was delivered to the wand and how it handled the information.
The attack took place last Monday, but Shirbit announced the incident together with the PA only the next day.
The company initially stated that "the data released does not contain information that could cause harm to our insureds."
However, it was soon discovered that there was a huge amount of information, including recordings of conversations with customers, ID numbers, email correspondence and personal documents.
Shirbit announced today that it is handling the information leak in cooperation with other parties.
"The management of the cyber event is managed by Shirbit in coordination with the national cyber system and the relevant state authorities, along with a number of experts and companies that specialize in cyber and negotiation management, such as Checkpoint and Confidues," it said.
More on Walla!
NEWS
Hacking: Hackers are demanding a million dollars in Bitcoin for not distributing the information
Hackers hacked into the servers of the insurance company "Shirbit" and leaked personal information on a huge scale
Stop smoking with the largest rehab institute in Israel
Customer insurance details were leaked in a cyber attack on Shirbit
The hacker group BlackShadow has claimed responsibility for the hack.
In a conversation with Walla!
NEWS The group has stated that they have thousands (gigabytes) of information in their possession, and that they intend to sell customer information.
The group also posted huge amounts of customer and document information in its Twitter and telegram accounts, from 2012 to 2020, in a volume of 929 GB.
It is estimated that this is information from tens of thousands of insured persons.
In the leaked information, you can find ID numbers - which are used by many bodies, including government agencies, as a secondary means of verification.
Less than a month ago, Shirbit won a tender for private car insurance for civil servants in 2021, with many insured serving in the security forces.
The hackers yesterday released a list of demands from the company, including a demand for a ransom of about a million dollars in Bitcoin.
In a message circulated on the group's telegram page, the hackers threatened that if they did not receive the payment, in the amount of 50 bitcoins within 24 hours - they would continue to disseminate the personal information they had obtained.
Tonight, the attackers wrote on the telegram channel they opened: "We do what we say."
More on Walla!
NEWS
The cyber attack on Shirbit: the tough questions behind the giant hack
To the full article
Information leak of tens of thousands of insured persons (Photo: Tamar Mitzpi, Globes)
The Capital Market, Security and Savings Division of the Ministry of Finance conducts periodic inspections with institutional bodies.
Among the various tests, the Division has authored a document entitled "Cyber Risk Management in Institutional Bodies", in which it also addresses the cyber threats posed to these bodies, such as, among others, Shirbit.
"The circular defines principles for cyber risk management in an institutional body and requires those risks to be managed," the document, first compiled on August 31, 2016, states. External, and more.
Capital Market Authority: "Do not refer to specific audit procedures"
The Capital Market Authority stated in response that it "conducts audits on a variety of issues in supervised bodies, including aspects of cyber risk management. This is in addition to periodic exercises and examining events in collaboration with the national cyber system and the Treasury. The National Cyber System and the Ministry of Finance, the Privacy Authority in the Ministry of Justice, and other factors, in understanding, analyzing and dealing with various aspects arising from the current event, including ensuring the rights of the insured. "
Shirbit stated that "Shirbit operates subject to the requirements of the regulation and in accordance with all guidelines to ensure complete protection of the information contained in the company."
Share on Facebook
Share on WhatsApp
Share in general
Share in general
Share on Twitter
Share on Email
0 comments
