onelanka
9.2K posts
onelanka
@onelanka
Entrepreneur, Economic historian, Contrarian
🇨🇦 UNVERIFIED: Bell Canada Data Allegedly for Sale A threat actor claims to be selling a database linked to Bell Mobility / Bell.ca, one of Canada’s largest telecom providers. Claimed size: ~1.8 million records Price: $100,000 Source: “internal network” (unverified) At this stage, there is no confirmed evidence of a breach. The actor is newly active and credibility remains unclear. ⚠️ Such listings are often exaggerated or based on previously leaked / aggregated data. DDW is monitoring the situation and will provide updates if validation emerges. #DataLeak #CyberSecurity #DarkWeb #ThreatIntel #DataBreach
The recent USD 2.5 million heist from the Sri Lankan Treasury is a national embarrassment. It's not just a technical glitch. It is a catastrophic failure of basic security protocol at the highest level of government. I think it's clear that the External Resources Department (ERD) was caught sleeping. Hackers intercepted emails between the Treasury and Australian creditors to divert debt repayments. This is Business Email Compromise (BEC) 101, yet our "experts" let it happen with millions of taxpayer dollars on the line. The Illusion of Security I find it pathetic that we are pushing for a "cash-lite" economy while our own Treasury can't even secure a Gmail-level communication chain. If hackers can sit in the middle of a sovereign debt repayment, they are likely sitting in every other ministry too. The government keeps blaming "misinformation," but the only fact that matters is that the money is gone. This wasn't a sophisticated "realmhacking" operation. It was a failure of human oversight and outdated infrastructure. The Cost of Incompetence I believe this breach erodes what little international trust we have left after debt restructuring. Creditors will now question if our digital systems are even fit for purpose. Digital transformation without security transformation is just an invitation for theft. We need more than a CID investigation; we need a complete purge of legacy systems and the incompetent protocols that allow "email interception" to become a national crisis.
From what I can gather from the article, the Deputy Minister seems to be saying there’s no direct system breach, at least not at the code or application level. That usually means this wasn’t a “hack” in the traditional sense, but something that targeted people instead of systems. That points quite strongly toward a social engineering attack, most likely Business Email Compromise (BEC), which is what the press is widely reporting. This is essentially tricking someone into trusting a fake or manipulated email and taking action. These attacks don’t need to break into systems; they rely on exploiting human trust, often using very convincing emails or even compromised accounts. (Picture ⬇️) There’s still a missing piece here though, the email environment. Because in many of these cases, the real entry point is compromised credentials or access to email accounts, not the core system itself. On the second point about the Finance Ministry not being connected to the NSOC; It was declared open by President last year. Some context; A Security Operations Center (SOC), even at a national level, is mainly about monitoring and detecting threats. It can help spot suspicious activity, but it doesn’t automatically stop phishing or BEC attacks from happening. Phishing is not a visibility problem alone, it’s a people and process problem. Preventing it requires things like better user awareness, stronger login protections (like MFA), and tighter email security controls. So overall, this looks less like a failure of systems, and more like a gap in how we secure identities and handle email-based threats.
‼️🇱🇰 The Eastern Provincial Council of Sri Lanka (ep.gov.lk), the regional government body covering the country's Eastern Province, has allegedly been breached, with 10,000 rows of citizen and government employee data put up for sale on a popular cybercrime forum at $150. ⠀ ‣ Threat Actor: wh6ami ‣ Category: Data Breach / Government Data Sale ‣ Victim: Eastern Provincial Council, Sri Lanka ‣ Industry: Government / Regional Administration ⠀ The Eastern Provincial Council oversees the Governor's Secretariat, Chief Secretary's Secretariat, Provincial Public Service Commission (PPSC), and Provincial Council Secretariat, handling administration, recruitments, and legislative work for the province. ⠀ What the leak contains: ⠀ ▪️ ~10,000 rows of PII ▪️ Phone numbers (mobile and landline) ▪️ Email addresses ▪️ Full names ▪️ National Identity Card numbers (NIC) ▪️ Residential and work addresses ▪️ Dates (exam, appointment, system timestamps) ▪️ Gender, age ▪️ Exam statuses (PASS, NOT APPLIED) ▪️ Job titles and workplaces ▪️ Usernames (login IDs) ▪️ MD5 password hashes ▪️ Full text of personal complaints and grievances filed by citizens ⠀ Two things stand out beyond the standard PII. First, MD5 hashes are trivially crackable for common passwords, so the credential set should be treated as effectively plaintext for any user who didn't pick something exotic. Second, the inclusion of full text citizen complaints and grievances is unusual and high-sensitivity, those records can contain anything from workplace harassment reports to disputes with public servants, and would typically carry confidentiality expectations.
Toronto police seize 'SMS blasters,' a cybercrime weapon never before seen in Canada nationalpost.com/news/canada/to…
