November 16, 2023 at 01:18AM Russian threat actors are suspected of launching the largest cyber attack on Danish critical infrastructure in May 2023. The attack targeted 22 energy sector companies and was coordinated and successful. Evidence suggests the involvement of Russia’s GRU military intelligence agency. The attacks exploited a critical command injection flaw in Zyxel … Read more
November 15, 2023 at 05:39AM Australia’s signals intelligence agency has warned that the country faces an ongoing threat from state-sponsored hackers, particularly from Russia and China. The agency highlighted the danger of cyberattacks on critical infrastructure, such as water supplies and electricity grids. The recently formed AUKUS defense pact with the UK and US could … Read more
November 14, 2023 at 05:49PM In May, Danish energy sector organizations were targeted in a series of attacks, possibly linked to the Russian Sandworm APT. Attackers exploited vulnerabilities in Zyxel firewall devices, including two zero-days, to gain access to industrial machinery and isolate some targets from the national grid. Cybercriminal groups are also increasingly targeting … Read more
November 14, 2023 at 09:27AM The Royal ransomware gang has targeted over 350 organizations worldwide, demanding over $275 million in ransom. The cybercriminals are potentially planning to rebrand their operation, according to the US cybersecurity agency CISA and the FBI. The gang has attacked entities in critical infrastructure, education, healthcare, and manufacturing sectors, demanding payments … Read more
November 14, 2023 at 07:09AM Hackers launched a coordinated attack on 22 energy organizations in Denmark’s critical infrastructure. The attack, which occurred in May 2023, involved compromising victim organizations within a few days. The hackers exploited vulnerabilities in Zyxel firewalls and gained complete control over the impacted systems. The attacks were observed to have been … Read more
November 13, 2023 at 04:35PM Four major ports in Australia, operated by DP World, experienced a cyber attack that caused disruptions over the weekend. The company is responsible for 40% of freight in and out of the country. The exact nature of the attack is still unknown, but some experts speculate it may involve ransomware. … Read more
November 13, 2023 at 09:41AM Denmark experienced its largest-ever online attack on critical infrastructure in May, according to a report from SektorCERT. The attack affected 22 companies, with some forced to disconnect from the power network. Unpatched vulnerabilities in Zyxel firewalls were exploited, potentially by multiple groups including Russia’s Chief Intelligence Office. The attacks were … Read more
November 10, 2023 at 01:26PM The US government has launched an initiative called “Shields Ready” to prepare critical infrastructure operators for disasters, physical attacks, and cyberattacks. The aim is to convince these operators to invest in strengthening their systems and services. The interconnectedness of critical infrastructure sectors makes preparedness crucial. The initiative provides voluntary recommendations … Read more
November 9, 2023 at 11:49AM Tidal Cyber, a startup founded by MITRE veterans, has raised $5 million in seed funding to develop its threat-informed defense platform. The Washington, DC-based firm offers tooling aligned with the MITRE ATT&CK framework to help organizations automate detection and response while customizing their security programs. Tidal Cyber’s platform includes features … Read more
November 9, 2023 at 04:15AM In October, Russia’s “Sandworm” hackers carried out two previously undocumented attacks on operational technology (OT), causing a power outage and coinciding with missile strikes on critical infrastructure in Ukraine, according to cybersecurity firm Mandiant. The attacks targeted a control system called MicroSCADA and used a “novel technique” to impact industrial … Read more