Cyber Security News
CISA & NCSC Discloses Guidelines for Secure AI System Development
New security flaws in AI systems must be taken into account in addition to the usual cyber security risks,security is frequently neglected.
SecurityWeek
US, UK Cybersecurity Agencies Publish AI Development Guidance
New guidance from US and UK cybersecurity agencies provides recommendations for secure AI system development.
SecurityWeek
UK, Korea Warn of DPRK Supply Chain Attacks Involving Zero-Day Flaws
UK and Korea say DPRK state-sponsored hackers targeted governments, defense organizations via supply chain attacks.
Infosecurity News
UK Publishes First Guidelines on Safe AI Development
NCSC and CISA effort endorsed by 18 countries
The Hacker News
U.S., U.K., and Global Partners Release Secure AI System Development Guidelines
U.K., U.S., and 16 other international partners have released new guidelines for the development of secure artificial intelligence (AI) systems.
The Record
AI systems ‘subject to new types of vulnerabilities,’ British and US cyber agencies warn
British and U.S. cybersecurity authorities published guidance on Monday about how to develop artificial intelligence systems in a way that will minimize the risks they face from mischief-makers through to state-sponsored hackers.
Security Affairs
Lazarus is using a MagicLine4NX zero-day in supply chain attack
UK and South Korea agencies warn that North Korea-linked APT Lazarus is using a MagicLine4NX zero-day flaw in a supply-chain attack.
Bleeping Computer
UK and South Korea: Hackers use zero-day in supply-chain attack
A joint advisory by the National Cyber Security Centre (NCSC) and Korea's National Intelligence Service (NIS) discloses a supply-chain attack executed by North Korean hackers involving the MagicLineThe National Cyber Security Centre (NCSC) and Korea's National Intelligence Service (NIS) warn that the North Korean Lazarus hacking grou
Bleeping Computer
Cyberattack on IT provider CTS impacts dozens of UK law firms
A cyberattack on CTS, a leading managed service provider (MSP) for law firms and other organizations in the UK legal sector, is behind a major outage impacting numerous law firms and home buyers in the country since Wednesday.
Infosecurity News
North Korean Supply Chain Threat is Booming, UK and South Korea Warn
The UK’s NCSC and South Korea’s NIS issued a joint advisory describing some of North Korean hackers’ tactics in deploying supply chain attacks
Infosecurity News
University of Manchester CISO Speaks Out on Summer Cyber-Attack
University of Manchester CISO Heather Lowrie shared how the institution tackled a major data breach earlier in 2023
Infosecurity News
Microsoft Launches Defender Bug Bounty Program
Ethical hackers could win cash prizes of up to $20,000
CyberNews
British Library ransom attack claimed, data leak confirmed
The British Library confirms data has been leaked as it struggles to recover from a November 6 ransomware attack claimed by the e Rhysida ransom gang.
Security Affairs
Rhysida ransomware gang is auctioning data stolen from the British Library
The Rhysida ransomware group claimed responsibility for the recent cyberattack on the British Library that has caused a major IT outage.
Infosecurity News
NCSC Announces New Standard For Indicators of Compromise
Security agency authors first RFC document for IETF
Bleeping Computer
British Library: Ongoing outage caused by ransomware attack
The British Library confirmed that a ransomware attack is behind a major outage that is still affecting services across several locations.
Infosecurity News
NCSC: UK Facing “Enduring and Significant” Cyber-Threat
Critical infrastructure providers under pressure from state-backed groups
The Record
Cyber incident reports hit ‘all-time high,’ warns UK NCSC
The National Cyber Security Centre said that it received 2,005 voluntary reports over the past year, a 64% increase on last year’s figures. Nearly 400 of those were so serious that the agency's incident management team had to triage the response.
CSO
Major Australian ports shut down following cyber incident
DP World Australia restricted port operations for two days following the discovery of a cyber incident.
Infosecurity News
UK Shoppers Lost Nearly £11m to Fraud Last Festive Season
NCSC warns of AI-generated scams in run-up to Christmas
Infosecurity News
Security Agency Publishes Post-Quantum Guidance For Firms
NCSC wants to ease transition to quantum safety
CSO
UK NCSC issues new guidance on post-quantum cryptography migration
The UK National Cyber Security Centre has refreshed its guidance to help system and risk owners plan their migration to post-quantum cryptography (PQC).
The Record
UK agency warns post-quantum cryptography migration will be ‘very complicated’
The National Cyber Security Centre says that more than just mathematics will be necessary to meet the threat that quantum computers pose to traditional public-key cryptography.
CSO
Governments should not pay ransoms, International Counter Ransomware Initiative members agree
CRI members affirm the importance of strong and aligned messaging discouraging paying ransomware demands.
Infosecurity News
AI Safety Summit: OWASP Urges Governments to Agree on AI Standards
The OWASP Foundation has released a call to action ahead of the UK’s AI Safety Summit
Infosecurity News
UK Banks Warn Quantum Will Imperil Entire Payment System
Industry wants government to set up a new taskforce
Infosecurity News
British Library Still Reeling After Major Cyber Incident
Institution has contacted National Cyber Security Centre for support
Bleeping Computer
British Library knocked offline by weekend cyberattack
The British Library has been hit by a major IT outage affecting its website and many of its services following a "cyber incident" that impacted its systems on Saturday, October 28.
Cyber Security News
Boeing Breached by LockBit Ransomware Gang? Investigation Inprogress
Boeing, a major player in the aerospace industry, says it is "assessing" claims made by the LockBit ransomware group that it has taken a "tremendous amount" of confidential information from the company.
Infosecurity News
Boeing Investigates LockBit Ransomware Breach Claims
Group alleges it stole large volume of sensitive data
Cyber Security News
CISA Announces New Logging Tool for Windows-based Devices
CISA has launched a new version of Logging Made Easy (LME), a free and simple log management solution for Windows-based devices.
Infosecurity News
Security Agency Rolls Out Protective DNS for Schools
Local authorities urged to sign up today
CSO
Cisco patches IOS XE vulnerabilities actively being exploited
CVE-2023-20198 and CVE-2023-20273 affect Cisco IOS XE software if the web UI feature is enabled.
Infosecurity News
Global Economy Could Lose $3.5trn in Systemic Cyber-Attack
A Lloyd's research found that the US alone would experience a $1.1trn loss in the “hypothetical but plausible” risk scenario
Infosecurity News
Five Eyes Warn Deep Tech Start-Ups Against Nation-State Threats
The Five Eyes intelligence agencies want start-ups dealing with cutting-edge technology to bolster their protections against nation-state threats
The Record
UK warns nuclear power plant operator of cybersecurity failings
EDF failed to “meet its commitment to provide us with a comprehensive and fully resourced cyber security improvement plan,” according to the U.K. chief nuclear inspector’s annual report.
Infosecurity News
Half of Small Businesses Hit by Cyber-Attack Over the Past Year
A new survey from accounting software provider Sage showed that most SMEs have developed a cybersecurity posture but struggle to keep up with the threats
The Record
Top Dutch cyber official Hans de Vries on cyber defense in times of war
Hans de Vries is the director of the National Cyber Security Center in the Netherlands and is one of the forces behind The Hague’s ONE Conference, one of Europe’s largest cybersecurity events.
Infosecurity News
EU Cyber Resilience Act Could be Exploited for Surveillance, Experts W
The open letter, signed by 50 leading cybersecurity figures, urges the EU to reconsider its proposals around vulnerability disclosure requirements
Infosecurity News
US and UK Lead Fight Against Civil Society Cyber-Threats
Joint meeting brings together eight like-minded countries
DarkReading
Q&A: UK Ambassador on Creating New Cybersecurity Agencies Around the World
How the UK is assisting other nations in forming their own versions of a National Centre for Cybersecurity (NCSC).
Infosecurity News
NCSC Launches Cyber Incident Exercise Scheme
UK security agency opens scheme to certify assured providers
The Record
UK logistics firm blames ransomware attack for insolvency, 730 redundancies
KNP Logistics was listed earlier this year by the Akira ransomware group.
The Record
British Army general says UK now conducting ‘hunt forward’ operations
Lt. Gen. Tom Copinger-Symes speaks with The Record about the U.K.'s new National Cyber Force (NCF) and his outlook for conducting offensive cyber operations outside of Britain.
Infosecurity News
UK Security Agency Publishes New Crypto Designs
NCSC hopes research will inform future standards
Infosecurity News
UK ICO and NCSC Set to Share Anonymized Threat Intelligence
Data protection regulator and security agency sign MoU
The Hacker News
Microsoft Warns of New Phishing Campaign Targeting Corporations via Teams Messages
Microsoft sounds the alarm on Storm-0324's tactics, luring its prey through Teams messages to breach corporate networks.
Infosecurity News
Fighting Individual Ransomware Strains Fruitless, UK Agencies Suggest
The report highlights the complex supply chain involved in ransomware attacks, requiring a more holistic approach to be taken by governments
Infosecurity News
Redfly Group Compromises National Power Grid
Symantec warns of mounting threat to critical infrastructure
The Record
UK businesses could escape data breach fines if they engage with NCSC over cyber incidents
British organizations that suffer a data breach may face lower fines if — instead of attempting to conceal the incident — they proactively report and engage with the country’s cybersecurity agency, according to a new agreement between the agency and the country’s data protection regulator.
The Record
New leader for White House counterintelligence office is confirmed in Senate
Michael Casey takes the job atop the National Counterintelligence and Security Center after serving as the Democratic staff director for the Senate Intelligence Committee.
The Record
Ransomware attacks hit record level in UK, according to neglected official data
Numbers from a forgotten British government database reveal the persistent rise of ransomware.
The Record
Don’t focus on ransomware variants, say UK’s national cyber and crime agencies
Trying to fight ransomware variants one at a time “is akin to treating the symptoms of an illness, and is of limited use unless the underlying disease is addressed,” say the NCSC and NCA.
Infosecurity News
UK and US Sanction 11 Russians Tied to Conti/TrickBot Ransomware
These new sanctions follow a first wave in February 2023, where seven Russians involved with Trickbot and Conti were also sanctioned
Infosecurity News
UK Electoral Commission Fails Cybersecurity Test Amid Data Breach
Auditors cited outdated software and unsupported iPhones as key reasons for the failed test
Infosecurity News
UK National Cyber Security Centre Gets a New CTO
Industry veteran Ollie Whitehouse is confirmed
Latest Hacking News
New Infamous Chisel Malware Targets Android Users In State-Backed Campaign
Another potent malware has appeared online aiming at Android users. Identified as “Infamous Chisel,” the malware currently targets Android users from the Ukrainian military. However, while the campaign presently seems specifically directed against a nation,
Infosecurity News
Sensitive Data about UK Military Sites Potentially Leaked by LockBit
Zaun, the UK’s only manufacturer of fencing systems, saw its IT systems being compromised in early August
CSO
Russia-linked attackers hit UK Ministry of Defence, leak stolen data
Report claims the LockBit ransomware group has published vast amounts of stolen information on the dark web.
Bleeping Computer
GRU hackers attack Ukrainian military with new Android malware
Hackers working for the Main Directorate of the General Staff of the Armed Forces of the Russian Federation, more commonly known as the GRU, have been targeting Android devices in Ukraine with a new malicious framework named 'Infamous Chisel.
SecurityWeek
Five Eyes Report: New Russian Malware Targeting Ukrainian Military Android Devices
Five Eyes report details 'Infamous Chisel' malware used by Russian hackers to target the Ukrainian military’s Android devices.
Infosecurity News
GRU Blamed for Infamous Chisel Malware Targeting Ukraine's Military
Infamous Chisel, which enables unauthorized access to compromised Android devices used by the Ukrainian military, has been linked to Sandworm
The Record
UK cyber agency announces Ollie Whitehouse as its first ever CTO
Britain’s National Cyber Security Centre (NCSC) has hired Ollie Whitehouse as the agency’s first Chief Technology Officer.
The Record
GRU hacking tools targeting Ukrainian military devices detailed by Five Eyes
The U.K.'s National Cyber Security Centre and allied agencies issued a technical report detailing "Infamous Chisel," a set of hacking tools that Russia is using against Ukrainian military tablet computers.
Infosecurity News
NCSC Issues Cyber Warning Over AI Chatbots
The UK cyber agency highlights the lack of understanding of LLMs among industry and academia
The Record
UK cyber agency warns of potentially fundamental flaw in AI technology
The problem is known as "prompt injection," and it arises when a large language model "inherently cannot distinguish between an instruction and data provided to help complete the instruction," according to the NCSC.
DarkReading
US Space Industry More Prone to Foreign Espionage, US Agencies Warn
Foreign intelligence entities have the US space industry in their sights, posing serious threats to US national security, multiple federal agencies say.
SecurityWeek
Smart Cities: Utopian Dream, Security Nightmare, or Political Gimmick?
As smart cities evolve with more and more integrated connected services, cybersecurity concerns will increase dramatically.
Infosecurity News
Cyber-Attack on Australian Utility Firm Energy One Spreads to UK Syste
Australian utility company Energy One confirmed it had taken steps to limit a cyber-attack affecting its corporate systems
The Hacker News
CISOs Tout SaaS Cybersecurity Confidence, But 79% Admit to SaaS Incidents, New Report Finds
Surveyed leaders are confident in their SaaS security, yet 79% reported SaaS incidents in the last year.
Bleeping Computer
Ivanti warns of new actively exploited MobileIron zero-day bug
US-based IT software company Ivanti warned customers today that a critical Sentry API authentication bypass vulnerability is being exploited in the wild.
SecurityWeek
US Gov Warns of Foreign Intelligence Cyberattacks Against US Space Industry
The FBI, NCSC, and AFOSI warn US space industry organizations of foreign intelligence targeting and exploitation, including cyberattacks.
The Record
British intelligence is tipping off ransomware targets to disrupt attacks
The Early Warning service is free for U.K. companies and organizations, and officials say that more participation will only make it more effective.
The Record
FBI, Air Force warn of cyberattacks on space companies by ‘foreign intelligence operations’
U.S. intelligence agencies are warning of increasing cyberattacks targeting U.S.-based space companies by unnamed foreign intelligence services.
The Record
UK explains likelihood of catastrophic cyberattacks — and its response plans
The new National Risk Register, based on classified assessments, lays out the possibility of catastrophic incidents — including cyberattacks — on the United Kingdom's critical sectors.
SecurityWeek
ICS Patch Tuesday: Siemens Fixes 7 Vulnerabilities in Ruggedcom Products
ICS Patch Tuesday: Siemens releases a dozen advisories covering over 30 vulnerabilities, but Schneider Electric only published one advisory.
SecurityWeek
UK Think Tank Proposes Greater Ransomware Reporting From Cyberinsurance to Government
The Royal United Services Institute proposes greater reporting from ransomware victims to government, enforced through insurance policies.
The Record
‘Hostile actors’ hacked UK electoral register, accessed ‘high volume’ of data
According to the country's Electoral Commission, the hackers first accessed its internal systems in August 2021 and were not discovered until October 2022.
Security Affairs
The number of ransomware attacks targeting Finland increased fourfold since it started the process to join NATO
Senior official reports a quadruple increase in ransomware attacks against Finland since it started the process to join NATO. The number of ransomware attacks targeting Finland has increased fourfold since the country began the process of joining NATO in 2023. The news was reported by Recorded Future News which interviewed Sauli Pahlman, the deputy director […]
Infosecurity News
Microsoft Warns of Growing Cyber-Threats to Sporting Events
Microsoft observed attackers continually attempting to compromise connected systems at the 2022 World Cup
Infosecurity News
Legacy Flaws Dominate Top 12 Vulnerabilities List
Security agencies urge timely patching
SecurityWeek
Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed
Exploitation of the Ivanti EPMM flaw CVE-2023-35078 is picking up as a new critical vulnerability tracked as CVE-2023-35082 is disclosed.
The Hacker News
Major Cybersecurity Agencies Collaborate to Unveil 2022's Most Exploited Vulnerabilities
CISA, NSA, FBI, & global partners disclose the top exploited vulnerabilities of 2022.
The Record
Fortinet VPN bug tops CISA’s list of most exploited vulnerabilities in 2022
A joint advisory from the Five Eyes nations warns that malicious cyber actors are exploiting older software vulnerabilities more frequently than recently disclosed ones.
The Record
Finland sees fourfold spike in ransomware attacks since joining NATO, senior cyber official says
Ransomware attacks targeting Finnish organizations have increased four-fold since the Nordic country began the process of joining NATO last year, according to a senior official.
Bleeping Computer
Ivanti discloses new critical auth bypass bug in MobileIron Core
IT software company Ivanti disclosed today a new critical security vulnerability in its MobileIron Core mobile device management software.
Infosecurity News
CISA in New Warning Over Ivanti Vulnerabilities
Agency says two bugs are being chained in attacks
Security Affairs
CISA adds second Ivanti EPMM flaw to its Known Exploited Vulnerabilities catalog
US CISA added a second actively exploited Ivanti ‘s Endpoint Manager Mobile (EPMM) vulnerability to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA) added the second actively exploited Ivanti ‘s Endpoint Manager Mobile (EPMM, formerly MobileIron Core) vulnerability, tracked as CVE-2023-35081, to its Known Exploited Vulnerabilities Catalog. “The Cybersecurity and Infrastructure Security […]
SecurityWeek
Ivanti Zero-Day Exploited by APT Since at Least April in Norwegian Government Attack
The recently patched Ivanti EPMM zero-day CVE-2023-35078 has been exploited to hack the Norwegian government since at least April 2023.
The Hacker News
Norwegian Entities Targeted in Ongoing Attacks Exploiting Ivanti EPMM Vulnerability
APT actors exploiting a dangerous zero-day vulnerability (CVE-2023-35078) in Ivanti Endpoint Manager Mobile
The Record
Russia-linked cybercriminals target school for children with learning difficulties
The LockBit ransomware group, potentially the world’s most prolific cybercrime organization, is attempting to extort a school for children with special educational needs.
Bleeping Computer
CISA issues new warning on actively exploited Ivanti MobileIron bugs
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned today of state hackers exploiting two flaws in Ivanti's Endpoint Manager Mobile (EPMM), formerly MobileIron Core.
The Record
CISA: Ivanti hacks targeting Norway began in April
Hackers began exploiting a new vulnerability in Ivanti products to target the Norwegian government at least as early as April, according to a new joint advisory from cyber agencies in the U.S. and Norway.
Infosecurity News
Think Tank: Insurers Not Fuelling Ransomware Market
RUSI report makes recommendations for the industry
The Record
No evidence ransomware victims with cyber insurance pay up more often, UK report says
The U.K. government and academic researchers say "the conclusion that ransomware operators are deliberately targeting organizations with insurance has been overstated.”
Infosecurity News
NCSC Publishes New Guidance on Shadow IT
Security agency suggests mitigations and technical solutions
Ars Technica
Researchers find deliberate backdoor in police radio encryption algorithm
Vendors knew all about it, but most customers were clueless.
Infosecurity News
Ivanti Patches Zero-Day Bug Used in Norway Attacks
CVSS 10.0 score means patch should be urgently deployed by customers
Bleeping Computer
Norway says Ivanti zero-day was used to hack govt IT systems
The Norwegian National Security Authority (NSM) has confirmed that attackers used a zero-day vulnerability in Ivanti's Endpoint Manager Mobile (EPMM) solution to breach a software platform used by 12 ministries in the country.
Infosecurity News
Chinese Hackers Breached Ambassador’s Email – Report
Storm-0558 attack was revealed last week
The Record
VirusTotal apologizes for accidental leak that exposed customer data
The Google-owned platform stressed that the incident was not the result of a cyberattack or a vulnerability, but simply human error.
The Record
Google exposes intelligence and defense employee names in VirusTotal leak
A list of 5,600 of the malware repository’s customers was uploaded, accidentally, to the platform itself, Der Spiegel reported. Google said it took the document down within an hour.
The Record
Germany’s new cyber chief to ‘intensify and focus’ work shaping European rules
Claudia Plattner told reporters in Bonn that she believes "there is no point in trying to do cyber within one nation."
Infosecurity News
NCSC Shares Alternatives to Using a SOC
Security agency’s advice could help save time and money
Infosecurity News
Chinese Threat Group Compromises US Government
Threat actors forged authentication tokens to access email
The Record
NATO’s Christian-Marc Lifländer on how the alliance can take a ‘proactive’ cyber stance
An interview with Christian-Marc Lifländer, the head of NATO's cyber and hybrid policy section, about NATO’s changing approach to cyber, and what will happen if attacks targeting Western states continue to increase.
Bleeping Computer
Cisco warns of bug that lets attackers break traffic encryption
Cisco warned customers today of a high-severity vulnerability impacting some data center switch models and allowing attackers to tamper with encrypted traffic.
Infosecurity News
Suspicious Email Reports Up a Third as NCSC Trumpets Active Defense
GCHQ offshoot trumpets “whole-of-society” approach
Infosecurity News
Nagoya Port Faces Disruption After Ransomware Attack
Container import and export operations via trailer transportation have been temporarily halted
Latest Hacking News
Severe OS Command Injection Vulnerability Caught In Zyxel NAS Products
Heads up, Zyxel users! The vendors have recently released patches for a serious security vulnerability affecting Zyxel NAS products. Exploiting the vulnerability could allow executing arbitrary commands on the target devices. Users must rush to
SecurityWeek
In Other News: Hospital Infected via USB Drive, EU Cybersecurity Rules, Free Security Tools
Weekly cybersecurity news roundup of noteworthy stories that might have slipped under the radar for the week of June 26, 2023.
Infosecurity News
GCHQ Reveals Details of State-Backed Breach
Cyber-espionage incident occurred 20 years ago, says NCSC
Bleeping Computer
MITRE releases new list of top 25 most dangerous software bugs
MITRE shared today this year's list of the top 25 most dangerous weaknesses plaguing software during the previous two years.
Cyber Security News
University of Manchester Hack - Over One Million NHS patient data Exposed
The University of Manchester has recently been affected by a Ransomware Hack that impact creates to stolen 1.1 Million NHS patients’ information across 200 hospitals.
The Record
GCHQ reveals British government was hacked by foreign cyber spies 20 years ago
Officials said that it was the 20th anniversary of the first time British cyber experts responded to a digital intrusion by foreign spies.
DarkReading
It's Open Season on Law Firms for Ransomware & Cyberattacks
Law firms have an ethical responsibility to protect their clients' sensitive information, but a recent swell of cyberattacks does not seem to be enough to convince law firms to shore up cybersecurity.
Bleeping Computer
The Week in Ransomware - June 23rd 2023 - The Reddit Files
It was a relatively quiet week regarding ransomware news, with the BlackCat ransomware gang extorting Reddit and the ongoing MOVEit Transfer data breaches being the main focus.
Bleeping Computer
University of Manchester confirms data theft in recent cyberattack
The University of Manchester finally confirmed that attackers behind a cyberattack disclosed in early June had stolen data belonging to alumni and current students.
Bleeping Computer
Zyxel warns of critical command injection flaw in NAS devices
Zyxel is warning its NAS (Network Attached Storage) devices users to update their firmware to fix a critical severity command injection vulnerability.
Security Affairs
Zyxel addressed critical flaw CVE-2023-27992 in NAS Devices
Zyxel released security updates to address a critical vulnerability affecting its network-attached storage (NAS) devices. Zyxel released security updates to address a critical security flaw, tracked as CVE-2023-27992 (CVSS score: 9.8), affecting its network-attached storage (NAS) devices. The vulnerability is a pre-authentication command injection issue that impacts the Zyxel NAS326 firmware versions prior to V5.21(AAZF.14)C0, NAS540 firmware […]
The Hacker News
Zyxel Releases Urgent Security Updates for Critical Vulnerability in NAS Devices
⚠️ Attention Zyxel NAS users! A new critical vulnerability (CVE-2023-27992) could allow attackers to run arbitrary commands on affected systems.
Infosecurity News
CISA and NSA Publish BMC Hardening Guidelines
Vulnerabilities in Baseboard Management Controllers (BMCs) serve as entry points for malicious actors
Infosecurity News
LockBit Makes $91m From US Victims in Two Years
Allied security agencies reveal figure in new advisory
Security Affairs
Cybersecurity agencies published a joint LockBit ransomware advisory
The LockBit ransomware group successfully extorted roughly $91 million from approximately 1,700 U.S. organizations since 2020. According to a joint advisory published by cybersecurity agencies, the LockBit ransomware group has successfully extorted roughly $91 million in about 1,700 attacks against U.S. organizations since 2020. The advisory was published by Cybersecurity and Infrastructure Security Agency (CISA), […]
Infosecurity News
EU Passes Landmark Artificial Intelligence Act
The European Parliament adopted the latest draft of the legislation with an overwhelming majority
Infosecurity News
#InfosecurityEurope: Cyber Leaders’ Plea to Tackle the Industry’s Mental Health Crisis
A new report looks at the scale of mental health challenges in cybersecurity, and urges action from stakeholders to try and mitigate the problem
Security Affairs
The University of Manchester suffered a cyber attack and suspects a data breach
The University of Manchester suffered a cyberattack, attackers likely stole staff and students’ data from its systems. The University of Manchester, one of the UK’s largest educational institutions, suffered a cyberattack, The popular university suspects that the threat actors have stolen data from its systems. The University of Manchester has about 11,000 staff and more […]
Bleeping Computer
University of Manchester says hackers ‘likely’ stole data in cyberattack
The University of Manchester warns staff and students that they suffered a cyberattack where threat actors likely stole data from the University's network.
Infosecurity News
University of Manchester Suffers Suspected Data Breach During Cyber Incident
The University is working with authorities to resolve the incident and understand what data has been accessed
Infosecurity News
Clop Ransom Gang Breaches Big Names Via MOVEit Flaw
Boots, BA, the BBC and more have data compromised
Security Affairs
British Airways, BBC and Boots were impacted the by Zellis data breach
The BBC and British Airways were both impacted by the data breach suffered by the payroll provider Zellis. As a result of the cyber attack on the payroll provider Zellis, the personal data of employees at the BBC and British Airways has been compromised and exposed. “Zellis, a payroll company based in the UK, is […]
Bleeping Computer
Clop ransomware claims responsibility for MOVEit extortion attacks
The Clop ransomware gang has told BleepingComputer they are behind the MOVEit Transfer data-theft attacks, where a zero-day vulnerability was exploited to breach multiple companies' servers and steal data.
Infosecurity News
UK Closes CCP Cyber Certification Scheme
Certified Cyber Professional will be replaced by new chartered scheme
Infosecurity News
HMRC in New Tax Credits Scam Warning
Claimants bombarded by phishing emails, phone calls and texts
Cyber Security News
Chinese Hackers Attack US Critical Infrastructure Using Network Administration Tools
The US and global cybersecurity agencies have issued a joint advisory to bring attention to the activities of "Volt Typhoon," a state-sponsored cyber actor from China.
Infosecurity News
NCSC Warns Against Chinese Cyber Attacks on Critical Infrastructure
The threat actors used sophisticated tactics to evade detection during their malicious activities
Ars Technica
Chinese state hackers infect critical infrastructure throughout the US and Guam
Group uses living-off-the-land attack and infected routers to remain undetected.
Computerworld
Apple bans employees from using ChatGPT. Should you?
Apple has joined a growing list of businesses banning use of ChatGPT and other similar cloud-based generative AI services to protect data confidentiality.
Infosecurity News
NCSC: It's Time for CISOs to Prioritize Accessibility
Doing so will make human errors and workarounds less likely
Infosecurity News
Government Publishes Playbook to Enhance Smart City Security
Resources are designed to help local authorities mitigate risk
Bleeping Computer
Cisco warns of critical switch bugs with public exploit code
Cisco warned customers today of four critical remote code execution vulnerabilities with public exploit code affecting multiple Small Business Series Switches.
Bleeping Computer
Hackers infect TP-Link router firmware to attack EU entities
A Chinese state-sponsored hacking group named "Camaro Dragon" infects residential TP-Link routers with a custom "Horse Shell" malware used to attack European foreign affairs organizations.
Infosecurity News
NCSC and ICO Dispel Incident Reporting Myths
Keeping attacks a secret only helps the criminals, they warn
Ars Technica
Leak of MSI UEFI signing keys stokes fears of “doomsday” supply chain attack
With no easy way to revoke compromised keys, MSI, and its customers, are in a real pickle.
Infosecurity News
NSA and Allies Uncover Russian Snake Malware Network in 50+ Countries
Cybercriminals used Snake to retrieve confidential documents related to international relations
Infosecurity News
Three-Quarters of Firms Predict Breach in Coming Year
Preparedness is improving, but not by enough
Security Affairs
Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies
CERT-UA warns of a spear-phishing campaign conducted by APT28 group targeting Ukrainian government bodies with fake ‘Windows Update’ guides. Russia-linked APT28 group is targeting Ukrainian government bodies with fake ‘Windows Update’ guides, Computer Emergency Response Team of Ukraine (CERT-UA) warns. The APT28 group (aka Fancy Bear, Pawn Storm, Sofacy Group, Sednit, and STRONTIUM) has been active since at least 2007 and it has targeted governments, […]
Security Affairs
Cisco discloses a bug in the Prime Collaboration Deployment solution
Cisco is working on a patch for a bug in the Prime Collaboration Deployment solution that was reported by a member of NATO’s Cyber Security Centre (NCSC). Cisco informed its customers that it’s working on a patch for cross-site scripting (XSS) issue, tracked as CVE-2023-20060 (CVSS score 6.1), affecting its Prime Collaboration Deployment product. The vulnerability […]
Infosecurity News
Ransomware Attack Disrupts IT Network at Hardenhuish School
At the time of writing, it is unclear whether the school paid the ransom
Infosecurity News
(ISC)2 Urges Countries to Strengthen Collaboration on Cybersecurity Regulation
A new report examines global approaches to cyber legislation across six jurisdictions
Bleeping Computer
Cisco discloses XSS zero-day flaw in server management tool
Cisco disclosed today a zero-day vulnerability in the company's Prime Collaboration Deployment (PCD) software that can be exploited for cross-site scripting attacks.
Infosecurity News
#RSAC: Ransomware Poses Growing Threat to Five Eyes Nations
Representatives of four of the five Five Eyes nations outlined the growing threat ransomware poses and approaches to thwart it
CSO
Accenture, IBM, Mandiant join Elite Cyber Defenders Program to secure critical infrastructure
Led by Nozomi Networks, the program aims to provide global industrial and government customers cybersecurity defense tools, incident response teams, and threat intelligence.
Infosecurity News
Five Takeaways From CYBERUK 2023 on the UK’s Cyber Strategy
More collaboration, both with the private sector and international allies, is at the top of the list in the UK’s cyber playbook
CSO
Good Friday Agreement paved way for Northern Ireland’s emergence as a global cybersecurity hub
Twenty-five years on from the signing of the pivotal peace accord, Northern Ireland’s flourishing cyber ecosystem has one of the highest concentrations of cybersecurity businesses worldwide.
Infosecurity News
Government Agencies Release Blueprint for Secure Smart Cities
NCSC and CISA want to balance connectivity with resilience
Bleeping Computer
Google: Ukraine targeted by 60% of Russian phishing attacks in 2023
Google's Threat Analysis Group (TAG) has been monitoring and disrupting Russian state-backed cyberattacks targeting Ukraine's critical infrastructure in 2023.
Infosecurity News
North Korean Hacker Suspected in 3CX Software Supply Chain Attack
Mandiant said this would be the first instance of a software supply chain attack leading to another
Infosecurity News
UK Strengthens Cybersecurity Audits for Government Agencies
GovAssure will mandate all UK government departments to go through annual independent, more robust security audits
Cyber Security News
APT28 Hackers Deploy Malware on Cisco Routers Via Unpatched Vulnerabilities
a Russian state-sponsored group that is found actively deploying the 'Jaguar Tooth,' a custom malware on Cisco IOS routers
The Hacker News
NSO Group Used 3 Zero-Click iPhone Exploits Against Human Rights Defenders
Israeli spyware manufacturer NSO Group has been found to have deployed three new "zero-click" exploits against iPhones
CSO
Five Eye nations release new guidance on smart city cybersecurity
Australia, Canada, New Zealand, UK, and US offer advice on potential smart city vulnerabilities and how to mitigate them.
Infosecurity News
#CYBERUK23: Russian Cyber Offensive Exhibits ‘Unprecedented’ Speed and Agility
Russia’s cyber operations since the invasion of Ukraine have been deployed with remarkable speed and flexibility, a new NCSC report shows
Infosecurity News
Critical Infrastructure Firms Concerned Over Insider Threat
Financial services sector is particularly badly impacted
CSO
Russian cyber spy group APT28 backdoors Cisco routers via SNMP
The spy agency has been exploiting an old vulnerability that allows bad actors to gain access through simple network management protocol credentials.
Bleeping Computer
UK cyber-argency warns of a new ‘class’ of Russian hackers
The United Kingdom's NCSC (National Cyber Security Centre) is warning of a heightened risk from attacks by state-aligned Russian hacktivists, urging all organizations in the country to apply recommended security measures.
Infosecurity News
Threat Posed by 'Irresponsible' Use of Commercial Hacking Tools Increasing, NCSC Warns
Spyware and hackers-for-hire will almost certainly expand in the next five years, warned the British cybersecurity agency
Security Affairs
US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws
UK and US agencies are warning of Russia-linked APT28 group exploiting vulnerabilities in Cisco networking equipment. Russia-linked APT28 group accesses unpatched Cisco routers to deploy malware exploiting the not patched CVE-2017-6742 vulnerability (CVSS score: 8.8), states a joint report published by the UK National Cyber Security Centre (NCSC), the US National Security Agency (NSA), US Cybersecurity and Infrastructure […]
Infosecurity News
NCSC Urges International Collaboration to Build Cyber Resilience
The NCSC’s CEO, Lindy Cameron, urges the UK to cooperate more with its allies in combating cyber threats
The Hacker News
U.S. and U.K. Warn of Russian Hackers Exploiting Cisco Router Flaws for Espionage
U.K. and U.S. cybersecurity agencies have warned of Russian nation-state actors exploiting flaws affecting Cisco networking equipment.
CSO
UK NCSC warns of new class of Russian cyber adversary threatening critical infrastructure
Newly detected state-aligned groups are often sympathetic to Russia’s invasion of Ukraine and are ideologically, rather than financially, motivated.
Infosecurity News
NCSC Warns of Destructive Russian Attacks on Critical Infrastructure
Alert follows advisory about Kremlin hackers targeting Cisco routers
Bleeping Computer
US, UK warn of govt hackers using custom malware on Cisco routers
The US, UK, and Cisco are warning of Russian state-sponsored APT28 hackers deploying a custom malware named 'Jaguar Tooth' on Cisco IOS routers, allowing unauthenticated access to the device.
Infosecurity News
UK's SMEs to Benefit From New Cyber Advisors
Accredited consultants will drive Cyber Essentials take-up
CSO
7 countries unite to push for secure-by-design development
Agencies from across seven countries come together to create a guidance that aims to remove the burden of security from the technology buyer.
Computerworld
Samsung shows we need an Apple approach to generative AI
Enterprise professionals may be buying into the generative AI hype without considering the risk of these LLMs. That’s why we need an Apple approach.
Infosecurity News
GCHQ Updates Security Guidance for Boards
Agency wants business leaders to get serious about cyber
CSO
Landmark UK-Israeli agreement to boost mutual cybersecurity development, tackle shared threats
The 2030 Roadmap for Israel-UK Bilateral Relations promises ongoing cooperation in tackling cyberthreats, governing global cyberspace, developing cybersecurity skills, and investing in the cybersecurity ecosystem.
Infosecurity News
NCSC Calms Fears Over ChatGPT Cyber-Threat
Tool won't democratize cybercrime, agency argues
Infosecurity News
MI5 Launches New Agency to Tackle State-Backed Attacks
National Protective Security Authority begins its work
Infosecurity News
Understanding the Shared Responsibility Model, Critical Step to Ensure Cloud Security
During the Cloud & Cyber Security Expo, cloud security experts attributed the security shortcomings of cloud users to misconceptions over their responsibility
The DFIR Report
2022 Year in Review - The DFIR Report
As we move into the new year, it’s important to reflect on some of the key changes and developments we observed and reported on in 2022. This year’s year-in-review report … Read More
Infosecurity News
NCSC: Twitter Users Should Find MFA Alternatives
UK's security agency warns against letting protection lapse
The Record
LastPass says attacker hacked employee’s home computer to access corporate vault
Password management service LastPass now says a well-publicized 2022 incident stemmed from an intrusion on one engineer's home computer.
Infosecurity News
UK NCSC Launches Recommendations on Supply Chain Mapping
The UK National Cybersecurity Centre’s new guidance breaks down the essentials of a good supply chain mapping (SCM) list
Security Affairs
Pro-Russia hacker group Killnet targets NATO websites with DDoS attacks
Pro-Russia hacker group Killnet launched a Distributed Denial of Service (DDoS) attack on NATO servers, including the NATO Special Operations Headquarters (NSHQ) website. Pro-Russia hacker group Killnet launched a Distributed Denial of Service (DDoS) attack on NATO sites, including the NATO Special Operations Headquarters (NSHQ) website. The attack was confirmed by NATO, while the hacker […]
The Record
Britain and US make major move against ransomware gangs by sanctioning seven individuals
The sanctions documents formally link the Conti and Ryuk ransomware gangs and the Trickbot banking trojan to a single criminal organization.
CSO
UK/US cybercrime crackdown sees 7 ransomware criminals sanctioned
Seven cybercriminals linked to the Trickbot ransomware group have been sanctioned to travel bans, asset freezes, and are severely restricted in their use of the global financial system.
The Hacker News
A Hackers Pot of Gold: Your MSP's Data
Ensure the security of your company's confidential info by auditing an MSP's security practices before partnering with them.
Security Affairs
Experts published a list of proxy IPs used by the pro-Russia group Killnet
SecurityScorecard’s researchers released a list of proxy IPs used by the pro-Russia group Killnet to neutralize its attacks. SecurityScorecard’s researchers published a list of proxy IPs used by the pro-Russia group Killnet with the intent to interfere with its operation and block its attacks. “To help organizations better protect themselves, SecurityScorecard has published a list of […]
Infosecurity News
UK Politician’s Email Hacked by Suspected Russian Threat Actors
The SNP MP revealed details of the incident, in which he clicked on a malicious file purportedly about the military situation in Ukraine
Bleeping Computer
LockBit ransomware gang claims Royal Mail cyberattack
The LockBit ransomware operation has claimed the cyberattack on UK's leading mail delivery service Royal Mail that forced the company to halt its international shipping services due to "severe service disruption."
Infosecurity News
Thirteen Teams Win at UK's CyberFirst Girls Competition
NCSC contest sees thousands of schoolgirls enter
Infosecurity News
Legacy VMware Bug Exploited in Global Ransomware Campaign
Vendor's ESXi hypervisors are being targeted
Security Affairs
Pro-Russia Killnet group hit Dutch and European hospitals
The Dutch National Cyber Security Centre (NCSC) confirmed that Pro-Russia group Killnet hit websites of national and European hospitals. The Dutch National Cyber Security Centre (NCSC) reported that the websites of several hospital in the Netherlands and Europe were hit by DDoS attacks carried out by pro-Russia hacking group Killnet. The group of hackers launched […]
ZDNet
Phishing attacks are getting scarily sophisticated. Here's what to watch out for
Phishing campaigns use fake social media profiles, in-depth research, and more to trick unsuspecting victims into clicking malicious links.
Security Affairs
Security Affairs newsletter Round 404 by Pierluigi Paganini
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper […]
The Hacker News
British Cyber Agency Warns of Russian and Iranian Hackers Targeting Key Industries
U.K.'s National Cyber Security Centre has issued a warning about cyberattacks by Russian and Iranian state-sponsored hacker groups.
Cyber Security News
PoC Exploit Released for Critical CryptoAPI Spoofing Vulnerability in Windows
In August of 2022, Microsoft issued security updates to address a vulnerability, identified as CVE-2022-34689, however, the company did not publicly announce the flaw until October of the same year, when it released an advisory.
Security Affairs
UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups
The U.K. National Cyber Security Centre (NCSC) warns of a surge in the number of attacks from Russian and Iranian nation-state actors. The U.K. National Cyber Security Centre (NCSC) is warning of targeted phishing attacks conducted by threat actors based in Russia and Iran. The are increasingly targeting organizations and individuals. The UK agency reported ongoing spear-phishing […]