CyberScoop reports that Honolulu-based Homeland Security Investigations agents were able to avert a significant cyberattack against an unnamed telecommunications firm's underwater internet cable-linked servers serving Hawaii.
Immediate reporting has prompted federal agents to quickly avert the attack, which was conducted by an international hacking group.
"HSI agents and international law enforcement partners in several countries were able to make an arrest," said the investigation.
The HSI did not specify the kind of cyberattack that was targeted at the undersea cable, as well as the location of the arrests but emphasized that the incident did not cause any damage or disruption and no longer poses an immediate threat.
Attackers behind the incident may have had access to credentials that enabled the intrusion to the telecommunications company's systems, according to John Tobon, HSI’s special agent in charge in Hawaii.
"It could have been something to just create havoc, in other words, just shut down communications, or it could have been used to target individuals in ransomware-type schemes," Tobon said.
English and Russian-speaking Windows users are being targeted by the novel Mimic ransomware, which has been leveraging the APIs of the Everything file search tool to identify to-be encrypted files, reports BleepingComputer.
North Korean state-sponsored advanced persistent threat group TA444 has engaged in a credential harvesting campaign targeting the U.S. and Canada with OneDrive phishing emails beginning last month, according to SecurityWeek.