Recent Security News
-
Germany takes down cybercrime market with over 180,000 users
March 1, 2024 at 03:50PM German police seized Crimemarket, a major illicit trading platform with 180,000 users, leading to six arrests. The platform facilitated illegal drug and cybercrime trading and hosted crime guides. 102 search warrants were executed, resulting in evidence and narcotic seizures. The police are targeting operators and users, with ongoing investigations. The…
-
Taiwan’s Biggest Telco Breached by Suspected Chinese Hackers
March 1, 2024 at 03:39PM Taiwan’s Defense Ministry urges Chunghwa Telecom to enhance cybersecurity after a data breach compromised government-related information. Hackers, allegedly linked to the Chinese government, stole 1.7TB of data, including documents from various government units, and offered it for sale on the Dark Web. The Defense Ministry confirmed the breach and instructed…
-
The Week in Ransomware – March 1st 2024 – Healthcare under siege
March 1, 2024 at 03:36PM Relentless ransomware attacks on US healthcare, affecting patient care and access to prescription drugs. Notably, BlackCat’s attack on Change Healthcare caused significant disruption, forcing some patients to pay full price for medications and impacting hospitals’ financial abilities. Other ransomware operations such as Rhysida and Lockbit continue to target the healthcare…
-
NIST Cybersecurity Framework 2.0: 4 Steps To Get Started
March 1, 2024 at 02:33PM The latest draft of the NIST Cybersecurity Framework introduces significant changes, including a new “Govern” function and expanded best practices. Organizations must assess the impact on their cybersecurity programs and consider factors such as supply chain security. Utilizing NIST resources, discussing the “Govern” function with leadership, and re-evaluating vendor support…
-
CISA warns of Microsoft Streaming bug exploited in malware attacks
March 1, 2024 at 02:22PM CISA has directed U.S. agencies to secure Windows systems against a critical vulnerability in Microsoft Streaming Service actively exploited in attacks. Tracked as CVE-2023-29360, the flaw allows local attackers to gain SYSTEM privileges without user interaction. Federal agencies must patch systems by March 21, as the bug has been exploited…