April 21, 2024 at 11:19PM China has established an Information Support Force (ISF) to strengthen its military’s network capabilities. President Xi Jinping emphasized the need for modern warfare readiness and declared 2027 as a milestone year for the People’s Liberation Army. The FBI director raised concerns about China’s cyber threats and highlighted the importance of … Read more
April 21, 2024 at 10:04PM MITRE revealed it was the victim of a cyber attack, despite its strong security measures. The Akira ransomware, deployed by Russian-linked groups, is still a threat, exploiting old vulnerabilities in Cisco software. Important security flaws, including sensitive data exposure and credentials theft, were discovered in various critical systems. Cerebral, an … Read more
April 19, 2024 at 04:06PM Miggo, a cybersecurity startup, secured $7.5 million in seed funding for its Application Detection and Response (ADR) platform. It addresses critical blind spots in application security and aims to detect and respond to targeted attacks in real-time, particularly in the era of distributed application architecture. YL Ventures led the funding … Read more
April 19, 2024 at 10:05AM Foreign adversaries have a history of disrupting US elections through tactics like espionage and “hack and leak” campaigns. Generative AI (GenAI) is now a concern for election security, as it can facilitate misinformation and disinformation. The 2024 election faces potential threats from nation-state adversaries and sophisticated cyber-threat actors, and combating … Read more
April 18, 2024 at 12:40PM Hackers are increasingly targeting SAP applications and data in organizations, driven by migration to the cloud and improved ability to exploit security gaps. Ransomware attacks on SAP systems have risen by 400%, with pricing for SAP exploits following suit. Threat actors, including APT10 and FIN7, are exploiting vulnerabilities in various … Read more
April 18, 2024 at 11:03AM Summary: Ukrainian government networks have been infected with OfflRouter malware since 2015, spreading through infected documents and USB media. The malware targets .DOC files and can modify Windows Registry. Its unusual propagation mechanism and coding mistakes indicate an inventive but inexperienced creator. The malware has been relatively contained within Ukraine. … Read more
April 17, 2024 at 02:07AM Israeli Defense Forces (IDF) held simulated cyber and combat warfare drills, fueling speculation of possible strategic cyberattacks on Iran in response to an aerial drone and missile attack. The drills tested the combination of cyber and kinetic warfare in preparation for Israel’s response to the Iranian attack. Threatening text messages … Read more
April 16, 2024 at 05:04PM Kaspersky introduced its new flagship product line, Kaspersky Next, offering robust endpoint protection with EDR and XDR capabilities. The product is tailored to different business requirements and IT infrastructures. It provides advanced cybersecurity solutions, deployment flexibility, and automation features. The product comes in three tiers to meet varying security needs. … Read more
April 15, 2024 at 04:06AM Webinar featuring Andy Grayland, CISO at Silobreaker, will address the rising third-party risk in busy supply chains. It focuses on the importance of protecting against cyber threats posed by third-party partners and how to use threat intelligence to identify and mitigate risks. The webinar will be held on 18 April. … Read more
April 13, 2024 at 09:01AM Suspected state-sponsored hackers have exploited an unpatched zero-day in Palo Alto Networks firewalls (CVE-2024-3400) since March 26, breaching internal networks to steal data and credentials. Palo Alto Networks released mitigations until the patches were complete. Volexity tracked the malicious activity (UTA0218) and detected the backdoor ‘Upstyle,’ with detailed exploitation methods … Read more