Remove 2022 Remove Cybersecurity Remove Information Security
article thumbnail

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Security Affairs

Treasury Department sanctioned Chinese cybersecurity firm Integrity Tech for its involvement in attacks attributed to the Flax Typhoon group. Treasury sanctioned a Chinese cybersecurity firm, Integrity Tech, for links to cyberattacks by Chinas state-backed Flax Typhoon APT group (also called Ethereal Panda or RedJuliett).

article thumbnail

Black Basta ransomware gang hit BT Group

Security Affairs

In May, the FBI, CISA, HHS, and MS-ISAC issued a joint Cybersecurity Advisory (CSA) regarding the Black Basta ransomware activity as part of the StopRansomware initiative. Black Basta is a ransomware-as-a-service (RaaS) variant, first identified in April 2022. reads the CSA.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Play ransomware group hit 900 organizations since 2022

Security Affairs

A joint advisory from the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) states that Play ransomware has hit approximately 900 organizations over the past three years.

article thumbnail

Pro-Russia hackers NoName057 targets Italy again after Zelensky’s visit to the country

Security Affairs

Italy should start helping itself, especially in the area of its own cybersecurity.” The experts at the National Cybersecurity Agency (ACN) supported the impacted organizations in mitigating the attacks and restoring functionality. The talks, which lasted about an hour, aimed to strengthen Kyiv’s position.

DDOS 124
article thumbnail

Russia-linked group APT29 is targeting Zimbra and JetBrains TeamCity servers on a large scale

Security Affairs

Since April 2021, Russian state-sponsored hackers have exploited vulnerabilities, including Zimbra’s CVE-2022-27924 for injecting commands to access credentials and emails, and JetBrains TeamCity’s CVE-2023-42793 for arbitrary code execution through an authentication bypass.

article thumbnail

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Affairs

SOC analysts, vital to cybersecurity, face burnout due to exhausting workloads, risking their well-being and the effectiveness of organizational defenses. Security Operations Center (SOC) analyst burnout is a very real problem. What we do know, however, is that effective cybersecurity relies on these analysts being happy and healthy.

article thumbnail

Pro-Russia group NoName targeted the websites of Italian airports

Security Affairs

I have already instructed the Secretary-General of the Ministry to prepare a reform to establish a Directorate-General for cybersecurity and artificial intelligence,” said Foreign Minister Antonio Tajani, speaking to journalists in the Senate. “We are working to respond firmly to cyberattacks originating from abroad. .”

DDOS 128