Summary: The Institute for Security and Technology’s Ransomware Task Force (RTF) rejects the idea of a ransom payment ban, citing concerns about reporting, driving payments underground, and critical infrastructure exemptions. Instead, the RTF proposes 16 milestones to effectively reduce ransomware p…
Tag: CRITICAL INFRASTRUCTURE
Summary: Security researchers have detected a suspicious email campaign targeting the OpenJS Foundation, similar to the recent XZ Utils backdoor incident, highlighting the need to address vulnerabilities in open source software management. Threat Actor: Jia Tan | Jia Tan Victim: OpenJS Foundation |…
Summary: The article discusses the increased operations of the U.S. Cyber Command’s Cyber National Mission Force in 2023, including “hunt forward” campaigns and the release of malware samples for review by cybersecurity analysts. Threat Actor: N/A Victim: N/A Key Point : The Cyber National Mission F…
Summary: The World Cybercrime Index reveals that Russia is the top hub for digital threat actors and the most significant source of global cybercrime, followed by Ukraine, China, the United States, Nigeria, and Romania. Threat Actor: Russia, Ukraine, China, United States, Nigeria, Romania Victim: N/…
Summary: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a new version of “Malware Next-Gen,” allowing any organization or person to submit malware samples for analysis. Threat Actor: None mentioned. Victim: None mentioned. Key Point : CISA has released a new version of…
Summary: This content provides information about a recent compromise discovered in Sisense, a company that offers data analytics services, and highlights the steps that customers should take to protect themselves. Threat Actor: Unknown | Unknown Victim: Sisense | Sisense Key Point : CISA advises Sis…
Executive Summary In this report, S2W TALON examined the trends of ransomware groups active in 2023 identifying the operational characteristics of each group and describing them from 5 perspectives:— Activity: The number of victim organizations uploaded to ransomware leak sites increased by 1.6 time…
Business intelligence software company Sisense suffered a cyberattack that may have exposed sensitive information of major enterprises worldwide. Sisense, a business intelligence software company, experienced a cyberattack potentially exposing the sensitive data of global enterprises. The list of the company’s customers includes Nasdaq, Philips Healthcare, Verizon, and many others. The cyber…
Summary: The role of CISOs and other cybersecurity executives is gaining more influence and importance as companies recognize the need for strong cyber governance and oversight. Threat Actor: N/A Victim: N/A Key Point : About 90% of cybersecurity managers now report to a top-level company executive,…
Summary: A recent research study has revealed the activities of a Romanian cyber threat group known as RUBYCARP, which engages in cryptocurrency mining, phishing, and the development and sale of cyber weapons. Threat Actor: RUBYCARP | RUBYCARP Victim: Various victims, including Danish users | RUBYCA…
Summary: The U.S. Chamber of Commerce and multiple industry leaders are requesting a 30-day extension for the comment period on a new incident reporting rule issued by the Cybersecurity and Infrastructure Security Agency (CISA). Threat Actor: N/A Victim: N/A Key Point: The U.S. Chamber of Commerce a…
In a recent cyber incident, a threat actor operating under the alias USDoD has allegedly disclosed a breach affecting the epa.gov domain, housing the U.S. Environmental Protection Agency (EPA) database. According to the claims made by the threat actor, this breach extends beyond national borders, encompassing critical infrastructure contacts on a…
Summary: German federal agencies have warned about an increase in phishing attacks targeting political parties ahead of the European Union elections. Threat Actor: Nation-state hackers Victim: Political parties in Germany Key Point : The Federal Office for Information Security (BSI) and the Federal…
Key Point : – The state-linked intrusion on Microsoft Exchange Online led to the theft of about 60,000 U.S. State Department emails last summer and was preventable. – Microsoft’s corporate culture deprioritized investments in enterprise security and rigorous risk management. – The Cyber Safety Revie…
____________________ The National Institute of Standards and Technology (NIST) is facing a vulnerability database backlog due to increased volume and changes in support, impacting cybersecurity experts and defenders who rely on the National Vulnerability Database (NVD) for critical information. ____…