news
News in Israel
Criminal news and law
Shirbit customers whose details have been leaked demand answers from the company: "Be responsible"
Maya hoped that the police would find the hackers before their details were leaked, Shai thinks that the company should have paid the ransom to protect the insured, while Yaakov actually justifies the decision - but will probably move to another company.
Senior in the cyber industry for Walla!
NEWS: "This is Yom Kippur in our terms"
Tags
Shirbit
Cyber
Cyber attack
hackers
Sapir Levy and Mikey Levy
Friday, 04 December 2020, 12:20
Share on Facebook
Share on WhatsApp
Share on general
Share on general
Share on Twitter
Share on Email
0 comments
Edelstein: The Cabinet made the right decision - to open ...
Prof. Hezi Levy: "Consider additional restrictions, and not just closure ...
The UK has approved the use of the Pfizer vaccine for Corona ...
The bill to dissolve the Knesset passed a preliminary reading ...
Biden: The corona destroyed the United States, causing a loss ...
To prevent rain floods in Kiryat Ata, it was established in Nahal Somekh ...
Iranian nuclear scientist's funeral journey: The coffin has arrived ...
President Rivlin at the opening of the winter session: Approve budget now, ...
Suspicion of two murders - a man shot dead near Lod, a young man ...
Libushur: "We are working for a quick return to full activity" (Walla! NEWS system)
As the Shirbit documents continue to leak this morning (Friday), the injured customers are divided over whether the insurance company should have paid the ransom, but either way they point an accusing finger at it, demanding it take responsibility for the damage done to them.
Following the threats to sell its customers' information if a payment of $ 1 million is not received in Bitcoin, Shirbit announced this morning that it would not meet the ransom demands of the burglars in the company's databases.
Shirbit explained that the decision was made at the end of nightly negotiations with a number of officials in the authorities involved in the issue. .
Maya Gassman, details of which were revealed, expressed frustration with what is going on. "I do not know what to tell you.
"I expected the police to find the hackers up to this point," Gassman said, "[it's irresponsible on Shirbit's part."
More on Walla!
NEWS
The Capital Market Authority conducted a cyber audit on Shirbit a few weeks before the break-in
Hacking: Hackers are demanding a million dollars in Bitcoin for not distributing the information
The cyber attack on Shirbit: the tough questions behind the giant hack
Istanbul is open - an hour away from a natural and regular solution for female pattern baldness
Details of Shirbit insureds leaked by the burglars
"In one word? Disgrace," says S. from Jerusalem, who has been insured for over five years with the Shirbit company, whose form was leaked with his details.
"I would expect Shirbit to be responsible. If we are insured with you and pay you money - then the minimum [is] that they will take responsibility for what is done. That is: they had to pay money to hackers. I do not know if it is your fault or not, but at least you will be responsible."
Yaakov Menashe, who has been insured with the company for more than two years and whose details have also been leaked, actually opposes the payment to hackers.
"I justify the Shirbit company in its decision not to pay the ransom, because I oppose the payment of ransom in principle in any situation."
At the same time, Menashe does not hide the mental anguish caused to him by society.
"I am very disappointed with Shirbit's security level. I will probably move to another insurance company. I hope the other insurance companies will now understand that the cyber threat needs to be assessed."
Identity card of a leaked employee Shirbit
Following the affair, the Privacy Protection Authority announced today that it has opened an investigation against the company, as part of which it will examine how protection will look at its customers' personal information and other aspects related to the information leak, and whether the company complied with the law.
The authority said that the investigation was opened after Shirbit reported the information leak to it.
A senior figure in the cyber industry told Walla!
NEWS that "first Shirbit said that the incident was under control and no damage was done to the information of the company's customers. But soon the picture became clear and it was revealed that their most personal details, including medical documents, were leaked. Then Shirbit tried to direct the fire. In such an event, the army and security bodies should enter the picture, but that is not the case. "
"Whoever is involved is the capital market authority that is managing the event, and it is not clear what will be done there, customers do not receive any information and meanwhile all information is leaking. Tens of thousands of Israelis do not receive answers, do not know what is happening and since Tuesday everything is dark. , He added.
He said, "There are laws on how to handle databases, there are laws in financial entities with quite strict regulation of what is allowed and forbidden and what to do in crisis situations. There are regulators. Everything is good and beautiful only we are in a real event and the situation is like this. "We see what happens when there are problems. Cyber attacks are a fait accompli, the question is how to prevent them and how to treat them when they happen. Here it is very sad to see everything."
Shirbit: We will not give in to cyber terrorism
Shirbit explained that "all the professional factors have come to the sweeping conclusion that cyber terrorism has an interest in strategic harm and is not backed by any financial motive."
The insurance company added that "the management of Shirbit has decided to treat them as they should be treated and not to succumb to threats from strategically motivated parties. The company has even hired the services of top experts specializing in cyber incident management, negotiation and crisis management."
Following this, the hacker group's telegram group wrote that "Shirbit did not pay us the money. It seems that the information leak is not really important to them. We do what we say."
At the expiration of the ultimatum, at 09:00 in the morning, photographs of identity cards, driver's licenses, and about a thousand other documents were published.
More on Walla!
NEWS
Shirbit refused to pay the ransom;
The hackers continued to publish documents
To the full article
The hackers even leaked correspondence this morning of alleged negotiations between them and the Shirbit company.
"This is your last chance," the burglars wrote, among other things, "a lot of people want our information, including senior intelligence agencies."
The insurance company confirmed that such negotiations had indeed taken place.
"The negotiations were conducted on the assumption that the attackers' motivation was not economic, but stemmed from a desire to cause harm to society and the country. As part of this, the leak of correspondence was taken into account," Mashribit said.
"Respectful dialogue with the attackers is an iron rule in event management and negotiations of this kind."
Tens of thousands of insureds have lost their privacy
The hacker group BlackShadow has claimed responsibility for the hack.
In a conversation with Walla!
NEWS The group has stated that they have thousands (gigabytes) of information in their possession, and that they intend to sell customer information.
The group also posted huge amounts of customer and document information in its Twitter and telegram accounts, from 2012 to 2020, in a volume of 929 GB.
It is estimated that this is information from tens of thousands of insured persons.
In the leaked information, you can find ID numbers - which are used by many bodies, including government agencies, as a secondary means of verification.
Less than a month ago, Shirbit won a tender for private car insurance for civil servants in 2021, with many insured serving in the security forces.
In a message circulated yesterday on the group's telegram page, the hackers threatened that if they did not receive the payment, in the amount of 50 bitcoins within 24 hours - they would continue to disseminate the personal information they had obtained.
Last night, the attackers wrote on the telegram channel they opened: "We do what we say."
Correspondence between hackers and Shirbit representatives
The attack took place last Monday, but Shirbit announced the incident together with the PA only the next day.
The company initially stated that "the data released does not contain information that could cause harm to our insureds."
However, it was soon discovered that there was a huge amount of information, including recordings of conversations with customers, ID numbers, email correspondence and personal documents.
Walla!
NEWS It was learned yesterday from a source close to the details that the Capital Market, Insurance and Savings Authority conducted an audit of Shirvit a few weeks before the giant broke out, including a test to protect against a cyber attack.
It is not known what exactly was delivered to the wand and how it handled the information.
Share on Facebook
Share on WhatsApp
Share on general
Share on general
Share on Twitter
Share on Email
0 comments
/cloudfront-eu-central-1.images.arcpublishing.com/prisa/N6RCKQB3T5EU3NIO4BUJ4QOGOM.jpg)
/cloudfront-eu-central-1.images.arcpublishing.com/prisa/KMEYMJKESBAZBE4MRBAM4TGHIQ.jpg)
