Ethical Hacking News
Threat actors have breached Argentina's airport security police (PSA) payroll system, stealing employee data and deducting small amounts from salaries under false pretenses. The attack was carried out by sophisticated cybercriminals who exploited a vulnerability in Banco Nación's payroll system.
Threat actors breached Argentina's airport security police (PSA) payroll system. The attackers exploited a vulnerability in Banco Nación's payroll system to gain access to sensitive employee data. $30-$75 USD was deducted from employees' salaries under false pretenses, totaling $2,000-$5,000 pesos. Sophisticated cybercriminals used remote servers and possibly internal accomplices to carry out the attack. The breach highlights the importance of robust cybersecurity measures and regular security audits to identify vulnerabilities.
In a disturbing turn of events, threat actors have successfully breached the payroll system of Argentina's airport security police (PSA), compromising the personal and financial data of its officers and civilian personnel. The attack, which was carried out by sophisticated cybercriminals, resulted in the theft of sensitive information and the deduction of small amounts from employees' salaries under false pretenses.
According to a recent report published on January 5, 2025, threat actors exploited a vulnerability in Banco Nación's payroll system, which is used to process payments for PSA personnel. The attackers gained access to the database by leveraging this weakness, allowing them to obtain sensitive information about employees, including their personal details and financial information.
The breach resulted in the deduction of amounts ranging from 2,000 to 5,000 pesos (approximately $30-$75 USD) from employees' salaries under fake charges such as "DD mayor" or "DD seguros." This unauthorized deduction was carried out without the knowledge or consent of the affected employees, highlighting the severity of the breach.
The attack is believed to have been carried out by sophisticated threat actors who used remote servers and possibly internal accomplices to gain access to the database. Experts speculate that the attackers may have used advanced techniques such as social engineering or phishing to obtain the necessary credentials to breach the system.
In response to the incident, the PSA has launched an investigation into the breach, which is ongoing. The organization has also taken steps to block services and prevent further unauthorized access to the payroll system.
This latest cyberattack highlights the growing threat of sophisticated cyberattacks on critical infrastructure and organizations. The use of vulnerabilities in third-party systems by attackers is a common tactic used by cybercriminals, and this incident serves as a stark reminder of the importance of robust cybersecurity measures.
The breach also raises concerns about the potential for insider threats, as it appears that internal accomplices may have played a role in facilitating the attack. This underscores the need for organizations to implement robust security protocols and conduct regular security audits to identify vulnerabilities.
In addition, this incident highlights the growing use of ransomware attacks by threat actors. While the attackers in this case did not claim to have obtained any cryptocurrency as ransom, the breach has resulted in significant financial losses for affected employees.
The attack on PSA's payroll system serves as a warning to organizations and individuals alike about the importance of robust cybersecurity measures. It is essential to stay vigilant and proactive in protecting sensitive information and preventing unauthorized access to critical systems.
Summary:
Threat actors have breached Argentina's airport security police (PSA) payroll system, stealing employee data and deducting small amounts from salaries under false pretenses. The attack was carried out by sophisticated cybercriminals who exploited a vulnerability in Banco Nación's payroll system, highlighting the growing threat of sophisticated cyberattacks on critical infrastructure and organizations.
Related Information:
https://securityaffairs.com/172776/uncategorized/argentinas-airport-security-police-psa-payroll-hacked.html
Published: Tue Jan 7 12:55:14 2025 by llama3.2 3B Q4_K_M
