November 12, 2024 at 11:54AM The FBI, NSA, and Five Eyes partners identified 15 top vulnerabilities exploited in 2023, urging immediate patching and management. Zero-day exploits increased, with 12 of the 15 vulnerabilities addressed last year. Notably, CVE-2023-3519 was widely targeted, emphasizing the need for proactive security measures to mitigate risks. ### Meeting Takeaways: 1. … Read more
October 2, 2024 at 07:10PM The National Security Agency and international cybersecurity agencies released “Principles of Operational Technology Cyber Security,” outlining six principles to safeguard critical infrastructure. These principles stress the paramount importance of safety, knowledge of the business, protecting OT data, segmenting OT networks, securing the supply chain, and ensuring a skilled cybersecurity workforce. … Read more
August 22, 2024 at 04:32PM The NSA and international partners released a document outlining best practices for event logging and threat detection against threat actors using living-off-the-land techniques. It emphasizes improving security in cloud services, enterprise networks, and critical infrastructure, and highlights centralized log access, secure storage, and detection strategies for relevant threats. Directed at … Read more
July 10, 2024 at 09:06AM The NSA patched a CSRF vulnerability in its SkillTree platform, designed to modernize software practices within the agency and shared on GitHub in 2020. The fix addressed potential manipulation by hackers, and users were urged to apply the update. This incident highlights the inherent difficulty in identifying and addressing CSRF … Read more
July 8, 2024 at 09:29PM The Australian Signals Directorate, in collaboration with several international security agencies, has issued an advisory outlining the threat posed by a People’s Republic of China state-sponsored cyber group, particularly their targeting of Australian networks. The group, known as APT40, has been reported to conduct malicious cyber operations for the PRC … Read more
May 18, 2024 at 08:43AM This week, tensions between China and the Western world escalated as the US imposed import tariffs on Chinese tech, Microsoft allowed staff to leave China, and the UK expressed frustration with Beijing’s cyber threats. In the Kettle episode, Jessica Lyons, Brandon Vigliarolo, and Tom Claburn discussed these issues. The episode … Read more
May 1, 2024 at 03:12AM A former NSA employee has been sentenced to 22 years in prison for attempting to transfer classified documents to Russia. Despite a short tenure at NSA, Jareh Dalke made contact with an undercover FBI agent posing as a Russian, and transmitted top-secret documents in exchange for money. Dalke pleaded guilty … Read more
April 26, 2024 at 08:25AM SecurityWeek’s cybersecurity news roundup provides concise coverage of significant stories. This week, notable developments include a Chinese government-linked hack of Volkswagen, German police shutting down a DDoS attack service, and the NSA’s updates to the Commercial National Security Algorithm Suite. Other stories cover critical findings in Microsoft products, cybersecurity executive … Read more
April 24, 2024 at 05:12PM Black Girls Do Engineer recently signed an Education Partnership Agreement with the National Security Agency to further develop science and technology talent for national security challenges. The collaboration will engage HBCU and college-bound students in STEM disciplines, offering real-world problem-solving opportunities and access to cybersecurity resources. This partnership aims to … Read more
April 23, 2024 at 01:27AM APT28, also known as Fancy Bear and Forest Blizzard, perpetrated cyber attacks using GooseEgg malware exploiting a Windows Print Spooler flaw, targeting organizations in Ukraine, Western Europe, and North America. The group, affiliated with Russia’s military intelligence agency, has a history of using public exploits for intelligence gathering. IBM X-Force … Read more