December 2, 2024 at 05:34PM Researchers have discovered “Bootkitty,” a proof-of-concept UEFI bootkit for Linux, developed by Korean students for cybersecurity training. Although still unfinished, it exploits vulnerabilities allowing it to bypass Secure Boot. This notable malware indicates a shift in bootkit attacks targeting Linux systems, previously dominated by Windows-focused malware. ### Meeting Takeaways: 1. … Read more
December 2, 2024 at 04:14PM South Korean police arrested a CEO and five employees for producing 240,000 satellite receivers with illegal DDoS attack capabilities. The receivers, sold to a foreign company, were used to counter competition. Authorities, alerted by Interpol, seized assets worth $4.35 million. The purchasing company operators remain at large. **Meeting Takeaways:** 1. … Read more
December 2, 2024 at 04:07PM Operation HAECHI V, involving law enforcement from 40 countries, led to the arrest of over 5,500 suspects and the seizure of $400 million in virtual assets, targeting various cyber frauds. Notably, a voice-phishing syndicate linked to $1.1 billion in losses was dismantled. Interpol emphasized the importance of international cooperation in … Read more
December 2, 2024 at 02:45PM Russian authorities sentenced Stanislav Moiseyev, leader of the Hydra Market criminal group, to life in prison for drug trafficking. Over a dozen accomplices received 8 to 23-year sentences. Hydra, once the largest darknet market, had substantial drug sales and money laundering operations before being seized by law enforcement in 2022. … Read more
December 2, 2024 at 02:09PM Submit your best cybersecurity-related captions by December 31 for a chance to win a $25 gift card. Post your ideas on X, Facebook, or LinkedIn. Last month’s winner, Matthew Tompkins, received the prize for his creative caption. Thank you to all who participated! **Meeting Takeaways:** 1. **Caption Contest:** Participants are … Read more
December 2, 2024 at 01:08PM The ‘Bootkitty’ UEFI bootkit, the first malware targeting Linux systems, exploits CVE-2023-40238 (known as ‘LogoFAIL’) to infect computers with vulnerable UEFI firmware. This discovery highlights a significant security threat for Linux users. **Meeting Notes Takeaways:** 1. **Introduction of ‘Bootkitty’:** A new UEFI bootkit known as ‘Bootkitty’ has been identified, targeting … Read more
December 2, 2024 at 12:50PM AWS has launched a new Security Incident Response service that automates security incident management. It integrates with Amazon GuardDuty and third-party solutions for incident triage and alerts, offering continuous support from AWS’s Customer Incident Response Team. The service features self-service tools and dashboards for performance monitoring and enhanced incident handling. … Read more
December 2, 2024 at 12:47PM Companies hire virtual chief information security officers (vCISOs) for various reasons, including expanding security strategies, responding to breaches, and complying with regulations. vCISOs offer expert guidance, consistent security program management, and cost-effective solutions for firms lacking full-time CISO resources. They also help navigate evolving cybersecurity challenges and technologies. ### Meeting … Read more
December 2, 2024 at 11:52AM A prototype UEFI bootkit, linked to a South Korean university’s BoB program, targets specific Ubuntu setups. Named Bootkitty, it uses the LogoFAIL exploit to bypass Secure Boot protections. Discovered by ESET, this research project showcases potential security risks, with indications it is still under development, not an active threat. ### … Read more
December 2, 2024 at 11:37AM Two NHS-affiliated hospitals in the UK experienced separate cyberattacks. Alder Hey Children’s Hospital faces data compromises with records leaked online, linked to a ransomware group. Meanwhile, Wirral University Teaching Hospital detected suspicious activity, affecting planned medical services. Both institutions are investigating the incidents and their impacts. **Meeting Notes Takeaways:** 1. … Read more