NATO and European Union leadership sign third joint declaration

NATO Secretary General Jens Stoltenberg, the President of the European Council, Charles Michel, and the President of the European Commission, Ursula von der Leyen, met on Tuesday (10 January 2023) at NATO Headquarters to sign the third Joint Declaration on Read More …

New York Adopts Law Protecting Power Grid from Cyber Attacks

New York Gov. Kathy Hochul signed legislation to create cybersecurity protections for the state’s energy grid. The legislation (designated A.3904B/S.5579A) will require utilities to prepare for cyberattacks in their annual emergency response plans, just as they would for storm or Read More …

Ontario: Children’s Hospital Expects Weekslong Ransomware Recovery

Nearly a week after a ransomware attack forced a network shutdown at Toronto’s Hospital for Sick Children, patients are still experiencing delays in treatment and diagnostic procedures. The hospital says it has restored some systems, phones and websites, but the Read More …

Hackers stole data from multiple electric utilities in recent ransomware attack

Hackers stole data belonging to multiple electric utilities in an October ransomware attack on a US government contractor that handles critical infrastructure projects across the country, according to a memo describing the hack obtained by CNN. Federal officials have closely Read More …

After ransomware hits Colombian energy firm, Moody’s says low patch rate suggests inadequacies in cyber practices

A ransomware attack at top Colombian energy company Empresas Publicas de Medellin (EPM) may damage its credit quality, setting an alarm clock for the critical infrastructure industry to develop efficient mitigation practices and vulnerability management programs, Moody’s said. EPM, one Read More …

CVE-2022-41040 and CVE-2022-41082 – zero-days in MS Exchange

At the end of September, GTSC reported an attack on critical infrastructure that took place in August. During the investigation, experts found that two 0-day vulnerabilities in Microsoft Exchange Server were used in the attack. The first one, later identified Read More …

Australia: Fire Rescue Victoria confirms cyber attack from ‘external third party’ as outage continues

Fire Rescue Victoria [FRV] has confirmed it has been the victim of a cyber attack as it continues to deal with a widespread IT outage. FRV revealed on Thursday it was having to alert firefighters to emergencies by mobile phone Read More …

Iran-linked Charming Kitten espionage gang bares claws to pollies, power orgs

An Iranian cyber espionage gang with ties to the Islamic Revolutionary Guard Corps has learned new methods and phishing techniques, and aimed them at a wider set of targets – including politicians, government officials, critical infrastructure and medical researchers – Read More …

Cyber Signals: Risks to critical infrastructure on the rise

Today, the third edition of Cyber Signals was released spotlighting security trends and insights gathered from Microsoft’s 43 trillion daily security signals and 8,500 security experts. In this edition, we share new insights on wider risks that converging IT, Internet Read More …

Ransomware hits city of Antwerp

Cybercriminals infected the city’s IT systems with ransomware. Residents are unable to make appointments for public affairs. Antwerp’s police and museums are partially offline. The attack took place on the night of December 5-6. A city spokesperson told De Standaard Read More …