Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Cyberattacks

Featured Post
ThreatQuotient

Leveraging Threat Intelligence for Regulatory Compliance

Feb 16, 2024 By Cyrille Badeau, Vice-President International Sales In ThreatQuotient
The US Government recently announced that state-sponsored Chinese cyber group Volt Typhoon has compromised multiple critical infrastructure organisations' IT networks in the US and is preparing "disruptive or destructive cyber attacks" against communications, energy, transport, water and waste water systems. The announcement, which was supported by national cybersecurity agencies in Australia, Canada, UK, and New Zealand, is a sobering reminder that modern life relies on digital networks. From healthcare, banking, and socialising, to energy, water, local and national government - everything has a digital aspect.
Read Post
elastic

Strengthening small utilities: The power of public-private partnership

Feb 16, 2024 By Bill Wright In Elastic
In the wake of recent cyber attacks against US water utilities, the vulnerability of local entities dependent on operational technology (OT) has been starkly highlighted. This danger was further emphasized last week when Congress held a hearing titled Securing Operational Technology: A Deep Dive into the Water Sector. Witnesses at the hearing painted a stark picture of the significant cybersecurity risks facing small utility companies today.
Read Post
Forescout

Department of Justice disrupts Moobot botnet commandeered by Russian APT28: analysis of attacks against routers and malware samples

Feb 16, 2024 By Forescout Vedere Labs In Forescout
On February 15, the US Department of Justice announced “Operation Dying Ember”: the takedown of a botnet controlled by APT28, the Russian military cyber threat actor also known as Fancy Bear. APT28 was previously known for developing the VPNFilter botnet, which targeted routers and network attached storage devices and was also disrupted by the DoJ in 2018.
Read Post
manageengine

Top tips: Four ways to protect your organization from increasingly advanced social engineering attacks

Feb 15, 2024 By General In ManageEngine
Top tips is a weekly column where we highlight what’s trending in the tech world and list ways to explore these trends. This week we’re looking at four ways you can protect yourself from increasingly advanced social engineering attacks.
Read Post
idstrong

National Vascular Care Provider Confirms Cyber Attack; 348k Exposures

Feb 15, 2024 By Steven In IDStrong
Azura Vascular Care operates a national network of health and wellness centers. They specialize in minimally invasive procedures and strive to treat vascular conditions in comfortable, out-patient settings. They offer healthcare in 25 states with multiple facilities and specialized teams. At the end of last year (2023), Azura discovered a threat actor within their network environment; officials removed the threat, but not before the criminals obtained 348k patient records.
Read Post
Trustwave

Lessons to be Learned: Attacks on Higher Education Proliferate

Feb 15, 2024 By Trustwave In Trustwave
Trustwave SpiderLabs is wrapping up a multi-month investigation into the threats facing the education sector, across higher education, primary and secondary schools. Trustwave will post the 2024 Education Threat Landscape: Trustwave Threat Intelligence Briefing and Mitigation Strategies report on February 22, but here are a couple of early findings along with a round-up of some of the higher-profile attacks on education targets that have taken place in the last year.
Read Post
netskope

Defending Against OAuth App-Based Attacks on Enterprise SaaS

Feb 13, 2024 By Dev CK In Netskope
The phenomenal growth in the adoption of software as a service (SaaS) has prompted enterprises of all sizes to move their critical data to SaaS-based applications. And as attackers tend to follow data to induce a breach, their new area of focus is enterprise SaaS. The recent Midnight Blizzard attack by nation-state actors clearly reinforces the fact that this trend has only just begun.
Read Post

#101 - WiFi attacks and defense with Lennart Koopmann, Founder of the Nzyme Network Defense System

Feb 13, 2024 By LimaCharlie In LimaCharlie
In this episode of The Cybersecurity Defenders Podcast, we take a close look at WiFi attack methods, and the defenses to them, with Lennart Koopmann, Founder of the Nzyme Network Defense System. Lennart Koopman, a tech enthusiast originally from Germany, now calling Houston, TX home. He began coding at a young age and chose to forgo formal education, diving straight into the world of computers after high school.
View Video
knowbe4

Security Teams Spend 71 Hours Responding to Every One Hour in a Cyber Attack

Feb 12, 2024 By Stu Sjouwerman In KnowBe4
New data sheds light on what kinds of cyber attacks are targeting your cybersecurity team, what it’s costing them, why it’s taking so much time to fix, and where you should focus resources. Barracuda’s Cybernomics 101 report provides a lot of insight into the current economics of cyber attacks. According to the report: The average largest ransom any organization paid is $1.38 million, with an average cost of $5.34 million to respond to compromises!
Read Post
Arctic Wolf

PRC State-Sponsored Threat Actors (Volt Typhoon) Target Critical Infrastructure Entities

Feb 9, 2024 By Andres Ramos In Arctic Wolf
On February 7, 2024, CISA issued an advisory detailing their discoveries concerning state-sponsored cyber actors linked to the People’s Republic of China (PRC). Notably, the PRC-affiliated threat actor, Volt Typhoon, is actively engaged in efforts to infiltrate IT networks, with the potential aim of launching cyber attacks on vital U.S. infrastructure in the event of a substantial crisis or conflict with the United States.
Read Post
Subscribe to Cyberattacks

Copyright © 2024 OpsMatters™. All rights reserved.