AttackIQ has released a new attack graph in response to the recently published CISA Advisory (AA24-131A) which disseminates known Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) associated to Black Basta ransomware, a ransomware variant whose operators have encrypted and stolen data from at least 12 out of 16…
Tag: CRITICAL INFRASTRUCTURE
Summary: This content discusses the personal and professional reactions of cybersecurity experts to cyberattacks and the demands for information they face. Threat Actor: N/A Victim: N/A Key Point : Cybersecurity experts, like Stephanie Carruthers from IBM Security X-Force, want to know as much infor…
Summary: Singapore has updated its cybersecurity regulations, giving more power to the agency responsible for enforcing the rules and requiring critical information infrastructure operators to report any cybersecurity incidents to the government. Threat Actor: N/A Victim: N/A Key Point : Singapore h…
Summary: Chris DeRusha is stepping down from his role as federal chief information security officer (CISO) and deputy national cyber director at the Office of Management and Budget (OMB). Threat Actor: N/A Victim: N/A Key Point: Chris DeRusha is leaving his position as federal CISO after serving for…
Summary: The content discusses the current state of the U.S. National Vulnerability Database and the challenges it is facing. Threat Actor: N/A Victim: N/A Key Point : The U.S. National Vulnerability Database, which tracks security vulnerabilities, is experiencing a significant backlog in analyzing…
North Korean hacking group Kimsuky has evolved its espionage tactics by using Facebook for initial infiltration, creating fake profiles to target individuals involved in North Korean human rights and security affairs. The group also uses Microsoft Management Cā¦
Summary: The Black Basta ransomware group and its affiliates have targeted hundreds of organizations worldwide, compromising their systems and stealing data. Threat Actor: Black Basta ransomware group | Black Basta ransomware group Victim: Various organizations including Southern Water, Capita, Amer…
Summary: The content discusses the upcoming high-level talks between the United States and China on artificial intelligence (AI) security and risks. Threat Actor: N/A Victim: N/A Key Point : The United States and China will engage in discussions about AI security and risks, focusing on advanced AI s…
Summary: The content discusses the impact of a Chinese hacking operation called Volt Typhoon on the cyberthreat landscape and how it has permanently altered the goals and capabilities of nation-state hacking operations. Threat Actor: Chinese hacking operation | Volt Typhoon Victim: Critical infrastr…
Summary: An advanced persistent threat (APT) group called “Careto” or “The Mask” has resurfaced after being inactive for over a decade, targeting organizations in Latin America and Central Africa. Threat Actor: Careto | Careto Victim: Organizations in Latin America and Central Africa | organizations…
Summary: The article discusses the increase in ransomware and extortion incidents in 2023 and the potential for further growth in 2024. Threat Actor: N/A Victim: N/A Key Points: Ransomware and extortion incidents rose by 67% in 2023, with over 5,000 victims detected or posted on social channels. The…
Germany has recalled its ambassador to Russia in response to alleged Moscow-backed cyberattacks targeting various sectors in Germany, including defense, aerospace, and IT companies, as well as the German Social Democratic Party….
The White House is engaging with the tech industry to establish a legal framework for software liability as part of a broader cybersecurity strategy, aiming to incentivize software developers to create products without exploitable security flaws….
The new strategy of the U.S. government aims to defend against cyberattacks on critical infrastructure, prevent surveillance misuses, and promote digital solidarity among global partners….
The nation-state actor APT28 exploited the zero-day flaw CVE-2023-23397 in attacks against European entities since April 2022. The Russia-linked APT also targeted NATO entities and Ukrainian government agencies….