Multiple sources are reporting on a story from Oldsmar Florida where a water treatment plant was hacked. An operations computer running TeamViewer started altering water system parameters to dangerous levels in front of an operator’s eyes. Officials say, if the event went unseen then multiple alarms still would have triggered before anyone would have been hurt. Nonetheless any intrusion into a water system is concerning.
Canada Watch suggests you never leave TeamViewer running or even installed on a critical system unless it is a necessity.
As pointed out by our country’s security experts in recent reports – critical infrastructure is increasingly a prime target for bad actors. ‘Infrastructure’ includes many critical systems we all rely on like drinking water, traffic lights and utilities.
Read more at Snopes: https://www.snopes.com/fact-check/florida-water-hack/
The Cyber Centre has an alert regarding Schneider Electric ‘PowerLogic’ systems. HTTP and Telnet security issue(s) could result in unintended device behavior.
Cyber Center Alert: https://cyber.gc.ca/en/alerts/control-systems-schneider-electric-security-advisory-15
Vendor Details (PDF): https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-040-01
The RCMP are warning of a scam where a victim received a fake order via email. The victim called a number listed in the fake order email and was then tricked into installing malware onto their computer by paying for fake ‘security software’.
We at Canada Watch suggest you never trust anyone trying to sell or offer computer security software or support over the phone or via random emails. If you need help or are suspicious we suggest doing some some research into the topic or asking someone you personally know what they think about the situation.
FRANK JORDANS and LORNE COOK with the AP are reporting on developments regarding Russian opposition leader Alexei Navalny who is suspected of being poisoned by Russian agents. Navalny and team were reportedly able to trick and debrief (question) a Russian ‘Intelligence’ agent about the operation to get details.
Some EU diplomats in Russia were expelled after they reportedly took place in rallies supporting Navalny. EU countries seem to be striking back with these actions.
The CBC is reporting on our own country’s response to this, link below.
Read the full story: AP Article
EU Leaders Expelled for Supporting Navalny at Protests: AP Article
Russian Agent Tricked into Revealing Poison Plot: CTV News Article NPR Article
Canada and allies discuss joint response to Russia’s imprisonment of Kremlin critic Navalny: CBC Article
The RCMP is reporting on complaints involving ‘Instagram Live’ events where users, including children, are being lured into private chats and being exploited.
Always be careful online. Personal information should only be shared online though secure methods where you have verified the individual you are communicating with. Even then, please keep in mind that almost any personal information can be used to exploit someone in one way or another.
On February 2, 2021 Ubuntu released Security Notices to address vulnerabilities in the Linux kernel.
More information from the Cyber Centre here: https://cyber.gc.ca/en/alerts/ubuntu-security-advisory-6
The Canadian Centre for Cyber Security and Google are reporting of an exploit affecting Chrome for Desktop versions prior to ‘88.0.4324.150‘.
You can find your product version number by entering the Chrome menu, going to ‘Help‘ and then clicking on ‘About Google Chrome‘. This check also tends to start the update process from what we have found.
Canadian Centre for Cyber Security Alert: https://cyber.gc.ca/en/alerts/google-chrome-security-advisory-45
A 16-year-old boy from Moncton, N.B., who was reported missing on January 31, 2021, has been located safe and sound.
On February 3, 2021 the Canadian Parliament added the group known as the “Proud Boys” along with 12 other entity groups to the national “Terrorist Entities” list.
More information from Public Safety Canada can be found here: https://www.publicsafety.gc.ca/cnt/ntnl-scrt/cntr-trrrsm/lstd-ntts/crrnt-lstd-ntts-en.aspx#510