March 28, 2024 at 07:06AM 2023 was challenging for cybersecurity, and 2024 looks worse with notable increases in data breaches and ransomware attacks. Flashpoint recorded significant rises in major threat indicators within the first two months of 2024. Their intelligence is gathered from publicly available information, monitored by teams of analysts including Dark Web activities … Read more
March 28, 2024 at 07:06AM The US Department of State announced a $10 million reward for information on Alphv/BlackCat ransomware operators. The group has affected over 1,000 victims worldwide, including major organizations. Law enforcement took down BlackCat’s infrastructure in 2023, and the US is seeking information on the group and its affiliates’ malicious cyber activities. … Read more
March 27, 2024 at 02:58PM CISA to oversee new cyber incident and ransomware payment reporting requirements. Based on the meeting notes, it is clear that CISA will be responsible for administering the new reporting requirements for cyber incidents and ransomware payments. Full Article
March 27, 2024 at 10:10AM Ransomware evolution in the past months includes LockBit’s blog takedown, BlackCat’s exit, and smaller groups emergence. The ecosystem functions as a complex supply chain with RaaS dominating large groups. Affiliate competition and recent takedowns are shifting the landscape, potentially leading to ecosystem fragmentation. Corporate security recommendations include extensive monitoring, patching … Read more
March 27, 2024 at 07:05AM The Big Issue’s parent company is dealing with a serious cybersecurity incident claimed by the Qilin ransomware gang. The gang claims to have stolen 550 GB of company data, including sensitive personal information of company executives and employees, as well as subscriber data. The Information Commissioner’s Office has been notified, … Read more
March 26, 2024 at 09:23AM DARPA’s AI Cyber Challenge, targeting critical infrastructure, now includes the Advanced Research Projects Agency for Health (ARPA-H) as a partner. The aim is to develop AI-based technology to find and fix vulnerabilities in healthcare systems, preventing destructive cyberattacks. This partnership offers an additional $20 million in rewards for competing teams. … Read more
March 26, 2024 at 04:28AM The blog entry provides a summary of the Agenda ransomware’s new propagation methods targeting VMWare vCenter and ESXi servers using custom PowerShell scripts embedded in its latest Rust variant. The ransomware is distributed globally and has been increasingly detected by cybersecurity organizations. The threat actors are utilizing various defense evasion … Read more
March 25, 2024 at 02:28PM CISA and FBI advised technology manufacturing executives to conduct formal software reviews and implement mitigations to eliminate SQL injection (SQLi) vulnerabilities. SQL injection attacks enable unauthorized access to sensitive data and can lead to data breaches and system takeover. They recommend using parameterized queries with prepared statements as a secure … Read more
March 25, 2024 at 11:35AM The Communication Workers Union (CWU) is dealing with a cyberattack, originally mistaken for just an IT outage. Member data may have been targeted, prompting involvement of cybersecurity experts. The union is working to assess the extent of the attack, inform members, and restore its IT systems. The Information Commissioner’s Office … Read more
March 24, 2024 at 01:33AM German authorities seized the digital infrastructure of Nemesis Market, an underground marketplace selling narcotics, stolen data, and cybercrime services. The operation, conducted with support from the U.S. and Lithuania, recovered €94,000 in cryptocurrency assets. Investigations are ongoing, but no arrests have been made. This follows recent law enforcement actions against … Read more