UK Government and Retailers Targeted by Silver Dragon Cyber Group

Severity: High (Score: 72.5)

Sources: Mirror

Summary

A sophisticated cybercrime gang known as Silver Dragon is targeting UK government departments and major retailers, likely funded by the Chinese government. The group employs highly convincing phishing emails that claim to contain urgent information, leading victims to unwittingly install ransomware that locks down their computers. Although there is no evidence that Silver Dragon has successfully infiltrated these entities, cybersecurity experts warn that an attack is inevitable. Graeme Stewart from Checkpoint Research emphasizes the need for heightened vigilance and updated defenses, as over 43% of UK businesses reported experiencing cyber breaches in the past year. Recent attacks have highlighted vulnerabilities, with significant data breaches affecting the UK Biobank and various retailers, resulting in substantial financial losses. The government has been approached for comments regarding these incidents. Key Points: • Silver Dragon targets UK government and retail sectors with sophisticated phishing attacks. • The group is likely state-sponsored by China, posing an advanced threat. • Over 43% of UK businesses faced cyber breaches in the past year, highlighting systemic vulnerabilities.

Key Entities

• Phishing (attack_type)
• Ransomware (attack_type)
• Co-op (company)
• Dior (company)
• Harrods (company)
• M&S (company)
• China (country)
• CWE-200 - Exposure of Sensitive Information (cwe)
• Government (industry)
• T1113 - Screen Capture (mitre_attack)
• T1486 - Data Encrypted for Impact (mitre_attack)
• T1566 - Phishing (mitre_attack)