Cyber Security News

  • CISA Compiles Free Cybersecurity Services and Tools for Network Defenders

    February 18, 2022

    CISA has compiled and published a list of free cybersecurity services and tools to help organizations reduce cybersecurity risk and strengthen resiliency. This non-exhaustive living repository includes services provided by CISA, widely used open source tools, and free tools and services offered by private and public sector organizations across the cybersecurity community. Before turning to ...

  • Ukraine Cyberattack 2022: Geopolitical Cybersecurity

    February 18, 2022

    Europe is on a knife-edge. With over 130,000 Russian troops amassed on the Ukrainian border, the region is witnessing the biggest build-up of firepower since the cold war. Inevitably, there is also cyber-dimension to this conflict. Mounting attacks on Ukrainian websites and I.T. infrastructure are making policymakers in Washington and elsewhere nervous should tensions rise ...

  • Interpol: Policing model needs to change with cybercrime

    February 17, 2022

    The digitalisation of the global workforce in the face of a pandemic has led criminals to upgrade their working model, and now law enforcement must too. Interpol cybercrime director Craig Jones set forward this idea at Acronis’s CyberFit Summit in Singapore on Thursday, dispelling the stereotype of a lone threat actor in a hoodie hunched over ...

  • Singapore to build quantum-safe network for critical infrastructure trials

    February 17, 2022

    Singapore is aiming to build a quantum-safe network that it hopes will showcase “crypto-agile connectivity” and facilitate trials with both public and private organisations. The initiative also includes a quantum security lab for vulnerability research. The three-year initiative is led by the Quantum Engineering Programme (QEP), with SG$8.5 million ($6.31 million) set aside to fund its ...

  • US Government sets forth Zero Trust architecture strategy and requirements

    February 17, 2022

    To help protect the United States from increasingly sophisticated cyber threats, the White House issued Executive Order (EO) 14028 on Improving the Nation’s Cybersecurity, which requires US Federal Government organizations to take action to strengthen national cybersecurity.1 Section 3 of EO 14028 specifically calls for federal agencies and their suppliers “to modernize approach to ...

  • How a Saudi woman’s iPhone revealed hacking around the world

    February 17, 2022

    A single activist helped turn the tide against NSO Group, one of the world’s most sophisticated spyware companies now facing a cascade of legal action and scrutiny in Washington over damaging new allegations that its software was used to hack government officials and dissidents around the world. It all started with a software glitch on her ...

  • Microsoft Teams Targeted With Takeover Trojans

    February 17, 2022

    Threat actors are targeting Microsoft Teams users by planting malicious documents in chat threads that execute Trojans that ultimately can take over end-user machines, researchers have found. In January, researchers at Avanan, a Check Point Company, began tracking the campaign, which drops malicious executable files in Teams conversations that, when clicked on, eventually take over the ...

  • FBI to form new cryptocurrency unit

    February 17, 2022

    The FBI is forming a new team dedicated to cryptocurrency, according to the Department of Justice (DOJ). The new team will work closely with the National Cryptocurrency Enforcement Team, the DOJ announced Thursday. Prosecutor Eun Young Choi, who has a background in cyber-related crimes, will serve as the National Cryptocurrency Enforcement Team’s first director. Read more… Source: The Hill  

  • Hackers can crash Cisco Secure Email gateways using malicious emails

    February 17, 2022

    Cisco has addressed a high severity vulnerability that could allow remote attackers to crash Cisco Secure Email appliances using maliciously crafted email messages. The security flaw (tracked as CVE-2022-20653) was found in DNS-based Authentication of Named Entities (DANE), a Cisco AsyncOS Software component used by Cisco Secure Email to check emails for spam, phishing, malware, and ...

  • Russian State-Sponsored Cyber Actors Target Cleared Defense Contractor Networks to Obtain Sensitive U.S. Defense Information and Technology

    February 16, 2022

    From at least January 2020, through February 2022, the Federal Bureau of Investigation (FBI), National Security Agency (NSA), and Cybersecurity and Infrastructure Security Agency (CISA) have observed regular targeting of U.S. cleared defense contractors (CDCs) by Russian state-sponsored cyber actors. The actors have targeted both large and small CDCs and subcontractors with varying levels of ...