FCC Proposes New Cybersecurity Rules for Telecoms

December 11, 2024 at 08:10AM The FCC proposed new cybersecurity rules for telecommunications companies in response to recent foreign cyberattacks, emphasizing the need for robust network security. The plan requires annual certifications, risk management, and modernization efforts. Additionally, legislation is introduced to enforce digital security standards and regular assessments to prevent unauthorized access and vulnerabilities. … Read more

Salt Typhoon forces FCC’s hand on making telcos secure their networks

December 6, 2024 at 01:32PM The FCC, led by Jessica Rosenworcel, plans to enforce stricter network security measures for telecom operators following the Salt Typhoon cyberattacks. Proposed rules would require annual cybersecurity reports and compliance with CALEA. The initiative aims to enhance national security and address vulnerabilities exposed by recent breaches affecting telecom infrastructure. ### … Read more

Romania’s election systems targeted in over 85,000 cyberattacks

December 5, 2024 at 07:01PM A declassified Romanian Intelligence report reveals over 85,000 cyberattacks targeting the country’s election infrastructure, with leaked credentials for election websites surfacing on a Russian hacker forum. Concurrently, an influence campaign utilized TikTok influencers to promote pro-Russian presidential candidate Calin Georgescu. Romania’s election system remains vulnerable to attacks. ### Meeting Notes … Read more

Trojan-as-a-Service Hits Euro Banks, Crypto Exchanges

December 5, 2024 at 04:08PM The Android RAT “DroidBot” features keylogging and data monitoring, targeting banks and organizations. Active since mid-2024, it’s linked to 17 affiliate groups and 77 attacks in Europe, with plans to expand into Latin America. Researchers warn its evolution into malware-as-a-service poses greater cybersecurity threats. ### Meeting Notes Takeaways: 1. **Emergence … Read more

Google Exposes GLASSBRIDGE: A Pro-China Influence Network of Fake News Sites

November 23, 2024 at 07:24AM Storm-2077, a new Chinese state-sponsored cyber threat actor, targets U.S. government and NGOs, along with global industries. They utilize phishing and exploits to access sensitive data. Concurrently, Google’s TAG exposed GLASSBRIDGE, a pro-China influence operation using fake news sites to promote state narratives, undermining legitimate news sources. ### Meeting Takeaways … Read more

Attackers Breach IT-Based Networks Before Jumping to ICS/OT Systems

November 6, 2024 at 08:06AM The SANS 2024 report reveals a rise in attacks on industrial control systems, with 74.4% of incidents being non-ransomware related. Key attack vectors include remote services and supply chain compromises. While ransomware incidents are relatively low (12%), their impact on ICS/OT environments remains severe, affecting reliability and safety. **Meeting Takeaways: … Read more

Internet Archive Hacked Again During Service Restoration Efforts

October 21, 2024 at 04:52AM The Internet Archive experienced an email hack while trying to restore services affected by recent cyberattacks. This incident highlights ongoing security challenges faced by the organization during its recovery efforts. **Meeting Notes Summary:** – **Subject:** Internet Archive Incident Update – **Key Takeaways:** – The Internet Archive has experienced an email … Read more

U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks

October 17, 2024 at 05:24AM Federal prosecutors charged two Sudanese brothers for operating a DDoS botnet, conducting 35,000 attacks, including on Microsoft. Their tool, linked to Anonymous Sudan, targeted critical infrastructure globally. If convicted, one brother faces life imprisonment. Law enforcement dismantled the botnet as part of coordinated action against cybercrime. ### Meeting Notes Takeaways … Read more

Microsoft: BYOD, QR Codes Lead Rampant Education Attacks

October 10, 2024 at 07:08AM The education sector faces over 2,500 cyberattacks weekly, with universities being the most targeted, partly due to vulnerabilities from diverse functions. Limited cybersecurity resources exacerbate risks. Initiatives like student-staffed security operations centers aim to bolster defenses while developing future cybersecurity talent, addressing both security needs and skills shortages. ### Meeting … Read more

Mideast, Turkey Cyber Threats Spike, Prompting Defense Changes

October 8, 2024 at 02:02AM The Middle East and Turkey face increasing cyberattacks, with over 10 incidents per year on average. Cloudflare’s survey reveals that less than half of organizations feel adequately prepared for future attacks, driving efforts to modernize cyber defenses. Despite investments, concerns remain about the security of applications, data, and supply chains. … Read more