The top 12 security stories of 2016

Stuart Sumner
clock • 16 min read

Most of us thought 2015 was the year of the data breach, but then 2016 happened. 2017 has a job to do if it wants to continue the trend

Saudi Arabia hit by wave of cyber attacks, Iran blamed



In early December Saudi Arabia was hit by a wave of destructive cyber attacks which resulted in data being erased at the government's aviation agency. Five additional targets were hit too, unnamed sources told Bloomberg.

In total thousands of computers were wiped in Saudi's General Authority of Civil Aviation, erasing critical data and bringing operations there to a halt for several days, the sources say.

In particular, the malware deployed is similar but to that used in earlier attacks which were blamed on that Iran, but experts say that other countries may have been involved, routing the attack to make it appear to be of Iranian origin, perhaps aiming to derail the recent nuclear deal with the USA.

The attacks were apparently carried out using an enhanced version of the Disttrack malware used against the oil company Saudi Aramco in 2012 in the so-called Shamoon attacks.

According to security vendor Palo Alto Networks: "Disttrack is a multipurpose tool that exhibits worm-like behavior by attempting to spread to other systems on a local network using stolen administrator credentials. More importantly, its claim to fame is the ability to destroy data and to render infected systems unusable. The [Saudi Aramco] attack four years ago resulted in 30,000 or more systems being damaged."

Related Topics

You may also like
Accidental exclusion exacerbating cyber's staffing problem

Careers and Skills

Accidental exclusion exacerbating cyber's staffing problem

Many people who would excel in cybersecurity roles see no obvious way in, with those that do make it getting stuck in entry-level positions

clock 12 May 2023 • 4 min read
Former Head of Police National Cyber Crime Unit joins Cybersecurity Festival

Leadership

Former Head of Police National Cyber Crime Unit joins Cybersecurity Festival

Charlie McMurdie spent 32 years in the Met and built the Police Central e-crime Unit

clock 29 March 2023 • 2 min read
Security challenges: Five midsize IT leaders on where they need help

Security

Security challenges: Five midsize IT leaders on where they need help

From ransomware and malware to the Internet of Things, midmarket IT leaders are staring down a number of security threats, often with limited resources at hand.

clock 28 March 2023 • 8 min read
Stuart Sumner
Author spotlight

Stuart Sumner

View profile
More from Stuart Sumner

The Metaverse is 'a grand folly' say CIOs and Zuckerberg's actions are 'terrifying'

'Whole world of complexity' for energy companies to deliver on government promises, says energy CTO

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

Get the newsletter

More on Security

Interview: Sharp UK, Security Excellence Awards finalist
Security

Interview: Sharp UK, Security Excellence Awards finalist

'We make technology easy by listening, taking the time to understand our clients, and creating seamless solutions that work'

Computing Staff
clock 12 April 2024 • 4 min read
Interview: LRQA Nettitude, Security Excellence Awards finalist
Security

Interview: LRQA Nettitude, Security Excellence Awards finalist

'We are the only cybersecurity team in the world with a full suite of CREST accreditations'

Computing Staff
clock 11 April 2024 • 4 min read
Interview: Nationwide Building Society, Security Excellence Awards finalist
Security

Interview: Nationwide Building Society, Security Excellence Awards finalist

'Working hard on cyber and wider operational resilience means that whatever happens we can be increasingly confident of being there for our customers when they need us'

Computing Staff
clock 10 April 2024 • 3 min read