November 1, 2023 at 01:05PM FBI Director Christopher Wray warns of increased cyberattack threat to the US due to ongoing conflict in the Middle East. He mentions attacks on US military bases by Iranian-backed militia groups and predicts more physical and cyberattacks. Despite the threats, Wray assures that the FBI is staying ahead, having disrupted … Read more
October 30, 2023 at 03:31PM Politicians propose significant budget cuts for CISA, endangering its efforts to protect federal networks and support critical infrastructure against cyberattacks. Based on the meeting notes, it appears that politicians are proposing significant reductions to CISA’s budget. This poses a risk to CISA’s ability to carry out its missions of securing … Read more
October 25, 2023 at 12:16PM Chinese hacking group Volt Typhoon has shifted its focus to targeting critical infrastructure installations, according to Mandiant Intelligence’s John Hultquist. The group, known for economic espionage and IP theft, has been conducting deliberate, long-term infiltration attempts below the radar. Experts have raised concerns, with Microsoft noting the potential for disruption … Read more
October 24, 2023 at 10:01AM Most countries fail to recognize cybercrime as a national security issue, despite its direct threat to critical infrastructure and citizens. National intelligence agencies are focused elsewhere, leaving private organizations vulnerable. To combat cybercrime effectively, nation-states should establish an international cybersecurity alliance, similar to NATO, to protect their people, infrastructure, and … Read more
October 23, 2023 at 03:33PM The suspected developer of the Ragnar Locker ransomware group has been arrested in Paris as part of a coordinated effort by multiple countries. Agents seized the group’s cybercrime infrastructure. Europol released some details of the operation, stating that the main perpetrator was detained and five additional suspects were interviewed. The … Read more
October 17, 2023 at 12:15PM Nation-state hacking groups are using Discord’s content delivery network (CDN) to target critical infrastructure. While Discord is currently mainly used by information stealers, a cybersecurity firm has found evidence of an artifact targeting Ukrainian critical infrastructure, indicating a potential emergence of APT malware campaigns on the platform. This introduces a … Read more
October 17, 2023 at 07:12AM The National Security Agency has released a repository called Elitewolf on GitHub, which contains intrusion detection signatures and analytics for hunting malicious activity in industrial control systems and operational technology environments. The release is in response to increased cyber activity targeting critical infrastructure and aims to help organizations implement continuous … Read more
October 13, 2023 at 04:59PM US authorities, including the Cybersecurity Infrastructure and Security Agency (CISA) and FBI, have issued a warning about the AvosLocker ransomware-as-a-service (RaaS) operation that poses a threat to critical infrastructure. AvosLocker has targeted multiple industries in the US, using various tactics such as double extortion and trusted software. Ransomware attacks have … Read more