CSO Magazine

APRIL 6, 2021

These days, information technology (IT) and information security professionals know this all too well, especially when it comes to configuration assessments. Cyber threats demand identification and remediation. There's an old adage in business: If you're not measuring, you're not managing.

Data breaches 87

Data breaches Cyber threats Accountability Technology 87

Security Affairs

NOVEMBER 19, 2020

A report published by the Canadian Centre for Cyber Security, titled “ National Cyber Threat Assessment 2020 ,” warns of risks associated with state-sponsored operations from China, Russia, Iran, and North Korea. Working together, we can increase Canada’s resilience against cyber threats.”

Cyber threats 103

Cyber threats Government Hacking Risk 103

Security Affairs

OCTOBER 29, 2020

Russia-linked APT Turla has hacked into the systems of an undisclosed European government organization according to Accenture. According to a report published by Accenture Cyber Threat Intelligence (ACTI), Russia-linked cyber-espionage group Turla has hacked into the systems of an undisclosed European government organization.

Government 90

Government Hacking Advertising Encryption 90

Security Affairs

FEBRUARY 8, 2024

Email Threats: More than 75% of targeted attacks start with an email, delivering 94% of malware. Soaring Cyber Crime Costs: Cyber crime costs are expected to hit $10.5 Healthcare Spending: From 2020 to 2025, the healthcare sector plans to spend $125 billion on cyber security to tackle its vulnerability.

Social Engineering 115

Social Engineering Cyber Attacks Cyber Insurance IoT 115

Security Affairs

NOVEMBER 14, 2023

Department of Homeland Security in their recently published Intelligence Enterprise Homeland Threat Assessment. Between January 2020 and December 2022, the number of known ransomware attacks in the United States increased by 47 percent,” according to the DHS report.

Ransomware 103

Ransomware Cyber threats Government Hacking 103

Security Affairs

NOVEMBER 4, 2022

Supply chain targeting : Third-party incidents account for 17% of the intrusions in 2021 compared to less than 1% in 2020. Today’s global context is inevitably driving major changes in the cybersecurity threat landscape. The new paradigm is shaped by the growing range of threat actors. ENISA Threat Landscape Report 2022.

Cyber threats 113

Cyber threats Phishing Social Engineering Ransomware 113

Security Affairs

OCTOBER 3, 2022

The intelligence agency states that cyber threats to Finland’s critical infrastructure has increased in both the physical and cyber environments as a result of the Russian invasion of Ukraine. SecurityAffairs – hacking, Finland). Russia may seek to acquire NATO-related intelligence through Finland.” Pierluigi Paganini.

Security Intelligence 124

Security Intelligence Manufacturing Cyber threats Accountability 124

Security Affairs

DECEMBER 17, 2020

According to a private industry notification alert (PIN), sent by the FBI to private organizations, the Bureau is aware of extortion activities that have been happening since February 2020. The report also details additional tactics, techniques, and procedures associated with the threat, including intimidation through phone calls.

Ransomware 136

Ransomware Backups Firmware Accountability 136

Security Affairs

AUGUST 9, 2022

Departments of State, the Treasury, and Homeland Security, and the Federal Bureau of Investigation released a joint advisory that is warning organizations worldwide about the ‘significant cyber threat’ posed by the North Korean nation-state actors to the global banking and financial institutions. At the time, the U.S.

Ransomware 126

Ransomware Computers and Electronics Healthcare Malware 126

SecureWorld News

MAY 27, 2021

The audit proves what we've heard from many security leaders during our SecureWorld Remote Sessions : the pandemic and work from home have greatly increased the cyber attack surface and attack attempts. Further, improper use continued to be the top attack vector type in 2020.". Did you even have the visibility to track them?

Cyber Risk 59

Cyber Risk Risk Architecture Cyber threats 59

Security Affairs

OCTOBER 15, 2023

FBI and CISA published a new advisory on AvosLocker ransomware More than 17,000 WordPress websites infected with the Balada Injector in September Ransomlooker, a new tool to track and analyze ransomware groups’ activities Apple releases iOS 16 update to fix CVE-2023-42824 on older devices Phishing, the campaigns that are targeting Italy A new (..)

DDOS 89

DDOS Data breaches Cybercrime Ransomware 89

Security Affairs

FEBRUARY 18, 2024

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks CISA adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited Vulnerabilities catalog US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders U.S.

Cybercrime 90

Cybercrime Ransomware Malware Data breaches 90

Security Affairs

JULY 26, 2022

State Department increased rewards for information on any North Korea-linked threat actors to $10 million. In April 2020, the U.S. government also offered a monetary reward of up to $5 million to anyone who can provide ‘information about the activities carried out by North Korea-linked APT groups. At the time, the U.S.

Cyber threats 78

Cyber threats Government Hacking Banking 78

Security Affairs

JULY 13, 2023

Google TAG researchers focus on identifying and countering advanced and persistent threats. The primary task of the Google TAG is to investigate and mitigate targeted and sophisticated cyber threats, including state-sponsored hacking and hacking groups involved in coordinated attacks.

Hacking 82

Hacking Backups Cyber threats Authentication 82

The Security Ledger

AUGUST 28, 2020

In this Spotlight Podcast, sponsored by RSA, we take on the question of securing the 2020 Presidential election. Given the magnitude of the problem, could taking a more risk-based approach to security pay off? In this Spotlight Podcast, sponsored by RSA, we take on the question of securing the 2020 Presidential election.

Risk 52

Risk CSO Digital transformation CISO 52

Security Affairs

SEPTEMBER 27, 2021

Telegram is becoming an essential platform for cybercriminal activities, crooks use it but and sell any kind of stolen data and hacking tools. “The other method hackers are using is dedicated hacking groups, where hundreds of members actively discuss various aspects of cybercrime and how to exploit data dumps shared.”

Cybercrime 120

Cybercrime Hacking Mobile DDOS 120

Security Affairs

MARCH 4, 2021

Group-IB published a report titled “Ransomware Uncovered 2020-2021 ”. analyzes ransomware landscape in 2020 and TTPs of major threat actors. Group-IB , a global threat hunting and adversary-centric cyber intelligence company, has presented its new report “Ransomware Uncovered 2020-2021 ”.

Ransomware 115

Ransomware Cybercrime Malware Marketing 115

Security Affairs

SEPTEMBER 15, 2020

“The Cybersecurity and Infrastructure Security Agency (CISA) has consistently observed Chinese Ministry of State Security (MSS)-affiliated cyber threat actors using publicly available information sources and common, well-known tactics, techniques, and procedures (TTPs) to target U.S. Government agencies.”

Government 69

Government VPN Firmware Energy and Utilities 69

Security Affairs

NOVEMBER 27, 2020

“The hacking attempts targeted a “broad set of people” including staff working on COVID-19 research, said one of the sources, but are not thought to have been successful.” Threat actors are carrying out cyber espionage campaigns and online influence campaigns. SecurityAffairs – hacking, AstraZeneca).

Hacking 88

Hacking Healthcare Cyber threats Cyber Attacks 88

Security Affairs

NOVEMBER 14, 2021

In 2020, the number of reports sent to ENISA about cybersecurity incidents saw an increase of 47% compared to the previous year. The level of exposure to cyber threats is increasing to the adoption of emerging technologies such as the Internet of Things (IoT), Artificial Intelligence (AI), big data, and cloud computing.

Healthcare 95

Healthcare Artificial Intelligence Cyber threats Big data 95

Security Affairs

MARCH 16, 2023

“CISA analysts determined that multiple cyber threat actors, including an Advanced Persistent Threat (APT) actor, exploited a.NET deserialization vulnerability in Progress Telerik user interface for ASP.NET AJAX. federal agency appeared first on Security Affairs. Exploitation can result in remote code execution.

Internet 77

Internet Internet Malware Government 77

Security Affairs

JULY 21, 2021

A database belonging to TicketClub Italy, a company providing coupons platform for offline purchases, is available for sale on darkweb hacking forums. It is worth mentioning the company had also experienced a similar incident back in April 2020 which resulted in 203,859 customer emails being leaked. Pierluigi Paganini.

Data breaches 100

Data breaches Mobile Retail Cyber threats 100

Security Affairs

MARCH 26, 2021

Accenture security researchers published an analysis of the latest Hades campaign, which is ongoing since at least December 2020. . Experts discovered that threat actors targeted a large US transportation & logistics organization, a large US consumer products organization, and a global manufacturing organization.

Ransomware 136

Ransomware Encryption Malware VPN 136

Security Affairs

JUNE 30, 2022

In August 2020, the FBI has issued a security alert about Netwalker ransomware attacks targeting U.S. “Some of these activities benefitted those interested in securing computer networks from these types of attacks. Some of the Defendant’s students were likely other cyber threat actors.”

Cybercrime 81

Cybercrime Government Ransomware Cryptocurrency 81

Security Affairs

NOVEMBER 23, 2020

Sonatype has discovered more malware in the npm registry which, following our analysis and multiple cyber threat intelligence reports, has led to the discovery of a novel and large scale malware campaign leveraging the open-source ecosystem. likely a pun ) and was published to npm registry around November 11, 2020. and ac-addon.

Malware 131

Malware Engineering Antivirus Software 131

Security Affairs

MARCH 21, 2020

While COVID-19 infections around the world are exploding, cyber threat actors are trying to capitalise on this global health crisis by creating malwares or launching attacks with a COVID-19 theme. About the author: OSINT Unit a division of the Orange Epidemiology Lab March 20th 2020 recommendations. Read the report here.

Healthcare 101

Healthcare Advertising Cyber threats Cybercrime 101

Security Affairs

NOVEMBER 14, 2020

Krebs and its staff have made great work ensuring that the 2020 election was not tampered with by nation-state actors, this election was called by the DHS “the most secure in election history.”. The November 3rd election was the most secure in American history. This is an added benefit for security and resilience.

Cyber threats 95

Cyber threats Cybersecurity Hacking Technology 95

Security Affairs

MARCH 8, 2022

The ransomware operation has been active since late December 2019, this is the second time that the FBI first shares IoC related to RagnarLocker operation, the FBI first became aware of this threat in April 2020. Secure your back-ups and ensure data is not accessible for modification or deletion from the system where the data resides.

Ransomware 79

Ransomware Financial Services Passwords VPN 79

Security Affairs

OCTOBER 15, 2021

Other known attacks against Water and Wastewater systems that took place in the pat were: In September 2020, personnel at a New Jersey-based WWS facility discovered potential Makop ransomware had compromised files within their system. SecurityAffairs – hacking, Water and Wastewater systems). ” concludes the advisory.

Ransomware 88

Ransomware Cyber threats Firmware Backups 88

Security Affairs

FEBRUARY 14, 2022

. “The European Central Bank is telling euro zone banks zone to step up their defences against cyber attacks, also in the context of geopolitical tensions such as the stand-off between Russia and Ukraine, the ECB’s top supervisor said on Thursday.” ECB warned that the rising risk from cyber attacks begun in 2020. “We

Banking 67

Banking Cyber Attacks Financial Services Cyber threats 67

CyberSecurity Insiders

JUNE 25, 2022

In this context, the prime risks are the responsibility and role of employees in ensuring data and information security. That’s why, when discussing cybersecurity, we come across terms like human factor, human error, and insider threat. The attack wasn’t discovered until December 2020. SolarWinds.

Cybersecurity 137

Cybersecurity Social Engineering Phishing Engineering 137

Security Affairs

FEBRUARY 2, 2020

Cyber Threat Trends Dashboard. CVE-2020-7247 RCE flaw in OpenSMTPD library affects many BSD and Linux distros. Cisco Small Business Switches affected by DoS and information disclosure flaws. Leaked confidential report states United Nations has been hacked. SecurityAffairs – newsletter, hacking).

Small Business 56

Small Business Advertising Hacking Cyber threats 56

Security Affairs

FEBRUARY 28, 2021

Participants are committed to providing secure European access to space, cyberspace and the high seas. “In light of the growing number and complexity of cyber threats, we aim to strengthen European cyber resilience and responsiveness and to improve the cybersecurity crisis management framework. Pierluigi Paganini.

Cybersecurity 84

Cybersecurity Cyber threats Cyber Attacks Hacking 84

SC Magazine

FEBRUARY 1, 2021

Companies can sometimes struggle to operationalize the constant churn of threat intelligence divvied from the cybersecurity community, whether it be independent researchers or enormous vendors like Microsoft. Having a solid cyber threat intelligence program in place will be more relevant than ever to organizations in 2021.

Cyber threats 80

Cyber threats CISO Media Retail 80

Security Affairs

FEBRUARY 17, 2020

About a year ago, we publicly released the Yomi Hunter sandbox for a few simple reasons: in Yoroi we believe in the InfoSec community value, we think it plays a central role in the fight of cyber-threats and we feel the need to support it. . The contest will start on 17 February 2020 and will end on 31 March 2020.

InfoSec 57

InfoSec Malware Advertising Cyber threats 57

SecureWorld News

APRIL 1, 2021

Secretary of Homeland Security Alejandro Mayorkas spoke this week, in stark terms, about the state of cybersecurity in the United States. He unpacked foundational principles for the future of information security efforts. Second, our government got hacked last year and we didn't know about it for months. Ways the U.S.

Government 78

Government Cybersecurity Risk Hacking 78

Security Affairs

APRIL 30, 2021

Upon detection, Group-IB’s Digital Risk Protection reached out UNICC’s Common Secure team as a trusted contact for cyber threat intelligence matters within the UN ecosystem, to assure that proper contacts within WHO were aware of the scam. For more information, please contact: business@unicc.org. Twitter | LinkedIn.

Scams 94

Scams Phishing Risk Information Security 94