December 4, 2023 at 03:06AM UEFI firmware from various vendors contains high-impact flaws in image parsing libraries, dubbed LogoFAIL by Binarly, which can be exploited to bypass security measures like Secure Boot and deliver persistent malware during boot-up using malicious logo images. The widespread vulnerabilities, affecting many x86 and ARM devices, will be detailed at … Read more
December 1, 2023 at 09:58PM The FBI, CISA, NSA, EPA, and INCD issued a joint advisory about Iranian IRGC-affiliated cyber actors targeting operational technology, specifically Israeli-made Unitronics PLCs used in critical sectors in the US. Since November 2023, these actors have exploited poor security, primarily default passwords, to deface and potentially disrupt systems. Mitigations include … Read more
November 30, 2023 at 05:27PM Cyberattackers are increasingly exploiting law firms and corporate legal departments with financial attacks such as ransomware and BEC. Incidents like CTS’s breach, LockBit’s ransom demand to Allen & Overy, and the rise in security breaches highlight the threat. Law firms, often handling sensitive information, are vulnerable due to limited cybersecurity … Read more
November 30, 2023 at 09:42AM Meta eliminated two Chinese and one Russian influence campaigns from Facebook in Q3 2023, according to SecurityWeek’s report. Key Takeaway from Meeting: – During Q3 of 2023, Meta identified and eliminated three foreign influence operations on the Facebook platform. – Out of the three operations removed, two originated from China, … Read more
November 29, 2023 at 05:36PM The Aliquippa Municipal Water Authority in Pittsburgh experienced a cyberattack by the Iranian-backed Cyber Av3ngers, targeting an Israeli-affiliated system and disrupting water pressure monitoring. Operations resumed manually; the water supply remains safe. The U.S. government is investigating, amid concerns about critical infrastructure cybersecurity and the need for proactive defense. Meeting … Read more
November 21, 2023 at 10:21AM The US cybersecurity agency, CISA, has launched a pilot program to provide managed cybersecurity services to non-federal critical infrastructure organizations. This program aims to reduce cybersecurity risks and deliver cost-effective solutions. The initial phase will focus on healthcare, water, and K-12 education entities, with the goal of expanding to 100 … Read more
October 24, 2023 at 04:48PM Accenture has acquired MNEMO Mexico, a managed cybersecurity services company based in Mexico City. MNEMO Mexico has a team of 229 cybersecurity professionals and offers advanced cyber defense and response capabilities. The acquisition will help Accenture expand its business in Mexico and Latin America and meet the growing demand for … Read more
October 10, 2023 at 10:06AM Many cybercriminals still rely on non-sophisticated attacks because they are effective. These include phishing attacks and credential harvesting, often obtained through social engineering. Automation and AI are increasingly being used by bad actors to conduct attacks more efficiently. To defend against these attacks, organizations need to bolster human defenses through … Read more
October 10, 2023 at 09:54AM SecurityWeek will host the 2023 Industrial Control Systems (ICS) Cybersecurity Conference from October 23-26, 2023, in Atlanta. The event, now in its 22nd year, focuses on cybersecurity for industrial control systems and operational technology. The conference will feature over 75 sessions, including technical and strategy sessions, and will address various … Read more