- What to do about inherent security flaws in critical infrastructure?
July 3, 2022
The latest threat security research into operational technology (OT) and industrial systems identified a bunch of issues — 56 to be exact — that criminals could use to launch cyberattacks against critical infrastructure.
But many of them are unfixable, due to insecure protocols and architectural designs. And this highlights a larger security problem with devices that ...
- Cyberattack shuts down unemployment, labor websites across the US
July 1, 2022
A cyberattack on a software company almost a week ago continues to ripple through labor and workforce agencies in a number of US states, cutting off people from such services as unemployment benefits and job-seeking programs.
Labor departments and related agencies in at least nine states have been impacted. According to the Louisiana Workforce Commission in ...
- A hacker group said it has broken into the Israeli electricity network
June 16, 2022
A hacker group identifying itself as the “Moses Staff” said it has broken into the Israeli electricity network, vowing to plunge the regime into darkness.
The group said on Wednesday it had targeted the Israel Electric Corporation, the largest supplier of electrical power in the occupied territories, as well as Dorad Energy Ltd., which serves customers ...
- FDNY seeks firewall to stop doxxing, hacking of rescue workers’ personal data
June 12, 2022
The FDNY is seeking to build a digital firewall to protect the Big Apple’s thousands of rescue workers from cyberattacks, including “doxxing,” The Post has learned.
The department recently put out a call in the City Record for consultant services “for the development and implementation of protective strategies to address the cyber threat of doxxing and ...
- Cyber Europe 2022: Testing the Resilience of the European Healthcare Sector
June 9, 2022
To ensure citizens’ trust in the medical services and infrastructure available to them, health services should function at all times. If health services and infrastructures in Europe were the object of a major cyber attack, how would we respond and coordinate at both national and EU level to mitigate the incidents and prevent an escalation?
- Vice Society ransomware claims attack on Italian city of Palermo
June 9, 2022
The Vice Society ransomware group has claimed responsibility for the recent cyber attack on the city of Palermo in Italy, which has caused a large-scale service outage.
The attack occurred last Friday, and all internet-relying services remain unavailable, impacting 1.3 million people and many tourists visiting the city.
The authorities admitted the severity of the incident on ...
- Data breach at health care organization may affect 2 million
June 8, 2022
A digital attack on a Massachusetts-based health care organization may have compromised the personal information of as many as 2 million people, officials said.
Shields Health Care Group Inc., which provides imaging and ambulatory surgical services at dozens of locations, said in a notice on its website Tuesday that data including names, Social Security numbers, dates ...
- People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices
June 8, 2022
This joint Cybersecurity Advisory describes the ways in which People’s Republic of China (PRC) state-sponsored cyber actors continue to exploit publicly known vulnerabilities in order to establish a broad network of compromised infrastructure.
These actors use the network to exploit a wide variety of targets worldwide, including public and private sector organizations. The advisory details the ...
- Costa Rican government held up by ransomware … again
June 6, 2022
Last month the notorious Russian ransomware gang Conti threatened to overthrow Costa Rica’s government if a ransom wasn’t paid. This month, another band of extortionists has attacked the nation.
Fresh off an intrusion by Conti last month, Costa Rica has been attacked by the Hive ransomware gang. According to the AP, Hive hit Costa Rica’s Social ...
- Healthcare organizations face rising ransomware attacks – and are paying up
June 3, 2022
Healthcare organizations, already an attractive target for ransomware given the highly sensitive data they hold, saw such attacks almost double between 2020 and 2021, according to a survey released this week by Sophos.
The outfit’s team also found that while polled healthcare orgs are quite likely to pay ransoms, they rarely get all of their data ...
- Exposing POLONIUM activity and infrastructure targeting Israeli organizations
June 2, 2022
Microsoft successfully detected and disabled attack activity abusing OneDrive by a previously undocumented Lebanon-based activity group Microsoft Threat Intelligence Center (MSTIC) tracks as POLONIUM. The associated indicators and tactics were used by the OneDrive team to improve detection of attack activity and disable offending actor accounts. To further address this abuse, Microsoft has suspended more ...
- Canada to ban Huawei and ZTE and tell telcos to rip out 5G and 4G equipment
May 20, 2022
Following the steps of its Five Eyes partners, Canada has moved to ban Huawei and ZTE from its telco networks.
“The government of Canada is ensuring the long term safety of our telecommunications infrastructure. As part of that, the government intends to prohibit the inclusion of Huawei and ZTE products and services in Canada’s telecommunications systems,” ...
- Global food supply chain at risk from malicious hackers
May 20, 2022
Modern “smart” farm machinery is vulnerable to malicious hackers, leaving global supply chains exposed to risk, experts are warning.
It is feared hackers could exploit flaws in agricultural hardware used to plant and harvest crops.
Agricultural manufacturing giant John Deere says it is now working to fix any weak spots in its software.
Source: BBC News
- White House: Quantum computers could crack encryption, so here’s what we need to do
May 5, 2022
The White House has announced a set of proposals for keeping the US ahead in the quantum computing race globally, while mitigating the risk of quantum computers that can break public-key cryptography.
Quantum computers powerful enough to break public-key encryption are still years away, but when it happens, they could be a major threat to national ...