November 6, 2024 at 08:06AM The SANS 2024 report reveals a rise in attacks on industrial control systems, with 74.4% of incidents being non-ransomware related. Key attack vectors include remote services and supply chain compromises. While ransomware incidents are relatively low (12%), their impact on ICS/OT environments remains severe, affecting reliability and safety. **Meeting Takeaways: … Read more
October 21, 2024 at 04:52AM The Internet Archive experienced an email hack while trying to restore services affected by recent cyberattacks. This incident highlights ongoing security challenges faced by the organization during its recovery efforts. **Meeting Notes Summary:** – **Subject:** Internet Archive Incident Update – **Key Takeaways:** – The Internet Archive has experienced an email … Read more
October 17, 2024 at 05:24AM Federal prosecutors charged two Sudanese brothers for operating a DDoS botnet, conducting 35,000 attacks, including on Microsoft. Their tool, linked to Anonymous Sudan, targeted critical infrastructure globally. If convicted, one brother faces life imprisonment. Law enforcement dismantled the botnet as part of coordinated action against cybercrime. ### Meeting Notes Takeaways … Read more
October 10, 2024 at 07:08AM The education sector faces over 2,500 cyberattacks weekly, with universities being the most targeted, partly due to vulnerabilities from diverse functions. Limited cybersecurity resources exacerbate risks. Initiatives like student-staffed security operations centers aim to bolster defenses while developing future cybersecurity talent, addressing both security needs and skills shortages. ### Meeting … Read more
October 8, 2024 at 02:02AM The Middle East and Turkey face increasing cyberattacks, with over 10 incidents per year on average. Cloudflare’s survey reveals that less than half of organizations feel adequately prepared for future attacks, driving efforts to modernize cyber defenses. Despite investments, concerns remain about the security of applications, data, and supply chains. … Read more
October 7, 2024 at 06:45AM Interest in passwordless authentication is on the rise due to hybrid work environments and digitization. Traditional password systems are susceptible to security threats, prompting consideration of passwordless methods like biometrics and smartcards. Despite challenges, MFA remains a critical security layer. A webinar will discuss the evolving landscape of password security … Read more
October 4, 2024 at 08:30AM Ransomware attacks have surged, with an 81% increase from 2023 to 2024. Cybercriminals are now targeting African nations as a testing ground due to weaker cybersecurity defenses. African businesses must guard against broader targeting and adopt advanced security measures. Collaboration between nations is crucial in combating this growing global threat. … Read more
October 2, 2024 at 09:08PM CeranaKeeper, a China-aligned threat actor, has conducted large-scale data exfiltration in Southeast Asia. ESET researchers found that the group has been active since early 2022, using tools associated with Mustang Panda and exploiting file-sharing services. They breached Thai government systems and conducted extensive data harvesting, demonstrating rapid evolution and persistence. … Read more
October 1, 2024 at 01:09AM Cyberattackers and hacktivists are increasingly targeting the Gulf Cooperative Council (GCC) region, with a 70% rise in DDoS attacks in the first half of the year. The UAE faces an average of 50,000 cyberattacks daily, while Saudi Arabia was targeted by a China-linked group. The increase in attacks may involve … Read more
September 30, 2024 at 08:30AM Security vulnerabilities in six different Automatic Tank Gauge (ATG) systems have been disclosed, exposing them to remote attacks. Thousands of ATGs are exposed on the internet, making them a target for malicious actors. Additional flaws were found in OpenPLC, Riello NetMan 204, and AJCloud. CISA has highlighted threats to OT … Read more