Ransomware, Data Breaches Inundate OT & Industrial Sector

December 7, 2023 at 02:05PM Over 75% of industrial firms experienced ransomware attacks last year, with 54% impacting operational technology. Attacks increased due to the industrial sector’s vulnerability and tendency to pay ransoms. Despite increased IT and OT security incidents, industrial sectors remain primary targets, with geopolitical tensions exacerbating threats. Victims often pay ransoms, urging … Read more

Future Intel, AMD and Arm CPUs Vulnerable to New ‘SLAM’ Attack: Researchers

December 7, 2023 at 07:48AM Upcoming CPUs from Intel, AMD, and Arm may be susceptible to a new type of ‘SLAM’ attack despite planned security enhancements, researchers warn. Key Takeaways from Meeting: – Major CPU vendors, which include Intel, AMD, and Arm, are planning to integrate new security features into their future products. – There … Read more

Ransomware Attacks on Industrial Orgs Increasingly Impact OT Systems: Survey

December 7, 2023 at 07:00AM Claroty’s report reveals that ransomware attacks are increasingly affecting Operational Technology (OT) systems in industrial organizations. Meeting Takeaways: 1. A report by Claroty indicates a rise in ransomware attacks targeting industrial organizations. 2. Operational Technology (OT) systems are increasingly being impacted by these ransomware attacks. 3. These findings have been … Read more

Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts

December 6, 2023 at 09:12AM Amazon Web Services Security Token Service (AWS STS) can be exploited by attackers to gain cloud access and impersonate user roles, according to Red Canary researchers. They recommend monitoring CloudTrail events and rotating IAM keys to mitigate token abuse in cloud security management. Meeting Takeaways: – AWS STS can be … Read more

New Report: Unveiling the Threat of Malicious Browser Extensions

December 6, 2023 at 06:54AM Browser extensions present high-risk vectors for cyber-attacks, exploiting users’ trust through three types: initially malicious, compromised, and risky due to excessive permissions. The LayerX report highlights this threat and recommends vigilance in installation methods and identifying signs of potential harm, emphasizing the need for educated choices and robust security protocols … Read more

Sierra:21 – Flaws in Sierra Wireless Routers Expose Critical Sectors to Cyber Attacks

December 6, 2023 at 06:54AM Twenty-one security flaws dubbed Sierra:21 affect over 86,000 Sierra Wireless AirLink routers, risking credential theft, device control, and botnet use in sectors like energy and healthcare. Fixes have been released for some components, but TinyXML remains unpatched. The vulnerabilities threaten critical infrastructure with various cyber threats. ### Meeting Takeaways: Cyber … Read more

Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers

December 6, 2023 at 06:00AM CISA warns of a high-severity Adobe ColdFusion vulnerability (CVE-2023-26360) being actively exploited, affecting outdated versions of the software. Attackers used it for unauthorized access and code execution on government servers, installing malware, and conducting reconnaissance. Updated ColdFusion versions have fixed the flaw. Meeting Takeaways: 1. The U.S. Cybersecurity and Infrastructure … Read more

Foresite Cybersecurity Partners With Crowdstrike

December 5, 2023 at 06:48PM Foresite announces a partnership with CrowdStrike to integrate the AI-powered Falcon® platform into its ProVision Managed Services. This collaboration aims to enhance cybersecurity for Foresite’s Channel Partners and their clientele, leveraging CrowdStrike’s leading protection capabilities with Foresite’s 24/7 monitoring and compliance solutions. Meeting Takeaways: 1. Foresite has announced a new … Read more

Embrace Generative AI for Security, but Heed Caution

December 5, 2023 at 10:09AM Advocates see generative AI as a tool for cybersecurity, aiding in automation and strategic tasks, while skeptics fear it may increase complacency and security incidents. AI can help detect vulnerabilities but lacks context, potentially leading to false recommendations. Human oversight remains crucial, as AI-generated code can hide vulnerabilities and humans … Read more

ICS at Multiple US Water Facilities Targeted by Hackers Affiliated With Iranian Government

December 4, 2023 at 08:12AM Cyber Av3ngers, a group linked to the Iranian government, is attacking industrial control systems (ICS) at several US water facilities, reports SecurityWeek. Clear Takeaways from Meeting Notes: 1. The Cyber Av3ngers group is actively targeting industrial control systems (ICS) at various water facilities. 2. There is an affiliation between the … Read more