News – May 2023

  • CISA and Partners Disclose Snake Malware Threat From Russian Cyber Actors

    May 9, 2023

    Today, CISA and partners released a joint advisory for a sophisticated cyber espionage tool used by Russian cyber actors. Hunting Russian Intelligence “Snake” Malware provides technical descriptions of the malware’s host architecture and network communications, and mitigations to help detect and defend against this threat. CISA urges organizations to review the advisory for more information and ...

  • Two Microsoft Windows bugs under attack, one in Secure Boot with a manual fix

    May 9, 2023

    May’s Patch Tuesday brings some good and some bad news, and if you’re a glass-half-full type, you’d lead off with Microsoft’s relatively low number of security fixes: a mere 38. Your humble vulture, however, is a glass-half-empty-and-who-the-hell-drank-my-whiskey kind of bird, so instead of looking on the bright side, we’re looking at the two Microsoft bugs that ...

  • CISA Releases Two Industrial Control Systems Advisories

    May 9, 2023

    CISA released two Industrial Control Systems (ICS) advisories on May 9, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-129-02 Hitachi Energy MSM Read more… Source: U.S. Cybersecurity and Infrastructure Security Agency Related story: CISA Adds One Known Exploited Vulnerability to Catalog  

  • Leaked Private & BootGuard Keys in MSI Cyber Attack Pose Threat to PC Security

    May 8, 2023

    Following a recent cyber attack on MSI’s systems, hackers managed to obtain private keys and Intel BootGuard Keys, according to a warning from respected security firm Binarly. These keys are essential for maintaining the security of a company’s devices and firmware, and the leak could result in severe security compromises. Binarly’s CEO, Alex Matrosov, disclosed on ...

  • Meet Akira – A new ransomware operation targeting the enterprise

    May 7, 2023

    The new Akira ransomware operation has slowly been building a list of victims as they breach corporate networks worldwide, encrypt files, and then demand million-dollar ransoms. Launched in March 2023, Akira claims to have already conducted attacks on sixteen companies. These companies are in various industries, including education, finance, real estate, manufacturing, and consulting. Read more… Source: Bleeping ...

  • New Cactus ransomware encrypts itself to evade antivirus

    May 7, 2023

    A new ransomware operation called Cactus has been exploiting vulnerabilities in VPN appliances for initial access to networks of “large commercial entities.” The Cactus ransomware operation has been active since at least March and is looking for big payouts from its victims. Read more… Source: Bleeping Computer  

  • UAE issues warning over cyber-attacks

    May 6, 2023

    The UAE Cybersecurity Council called on public and private sectors to exercise the utmost caution against any cyber-attacks that may target the national digital infrastructure and assets. The Council demanded the public and private entities to activate the cyber emergency response system in cooperation with the competent authorities in order to share data so as to ...

  • Dump these insecure phone adapters because we’re not fixing them, says Cisco

    May 5, 2023

    There is a critical security flaw in a Cisco phone adapter, and the business technology giant says the only step to take is dumping the hardware and migrating to new kit. In an advisory, Cisco this week warned about the vulnerability in the SPA112 2-Port Adapter that, if exploited, could allow a remote attacker to essentially ...

  • CISA Releases One Industrial Control Systems Advisory

    May 4, 2023

    CISA released one Industrial Control Systems (ICS) advisory on May 4, 2023.This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for technical details and mitigations Read more… Source: U.S. Cybersecurity and Infrastructure Security Agency Related story: CISA Releases One Industrial Control Systems ...

  • Strike three: FTC says Meta still failing to protect user privacy

    May 4, 2023

    The US Federal Trade Commission is preparing to take action against Facebook parent company Meta for a third time over claims it failed to protect user privacy, as required under a 2020 agreement Meta made with the regulator. The FTC said that Meta has failed to fully comply with the order, and it also alleges Zuckercorp ...

  • Not quite an Easter egg: a new family of Trojan subscribers on Google Play

    May 4, 2023

    Every once in a while, someone will come across malicious apps on Google Play that seem harmless at first. Some of the trickiest of these are subscription Trojans, which often go unnoticed until the user finds they have been charged for services they never intended to buy. This kind of malware often finds its way ...

  • China issues report on U.S. CIA’s cyberattacks on other countries

    May 4, 2023

    China on Thursday released an investigation report revealing an “empire of hackers” of the Central Intelligence Agency (CIA) of the United States, one of the major intelligence agencies of the country’s federal government. Over a long period, the CIA has been secretly orchestrating “peaceful evolution” and “color revolutions” around the world, continuously conducting espionage activities, said ...

  • Ransomware attack hampering Dallas police operations

    May 3, 2023

    A major component of the City of Dallas’ police communications system went down Monday morning, as well as some other city services. CBS News Texas’ J.D. Miles has multiple sources confirming the outage was caused by a ransomware attack against the city’s systems. The outage is impacting DPD’s computer assisted dispatch system, called CAD, which directs police ...

  • FCA urges Capita clients to ascertain if data was compromised in cyber-attack

    May 3, 2023

    The City regulator has contacted Capita’s corporate clients urging them to ascertain whether their customers’ data has been compromised after a cyber-attack on the outsourcer in March. The Financial Conduct Authority said it had written to firms it regulates and which outsource work to Capita to ensure they are “fully engaged” in assessing the fallout from ...

  • Apple and Google team up to tackle AirTag stalking

    May 3, 2023

    Apple and Google have teamed up to thwart people who try to track others using devices designed to help find lost keys and luggage. The rival tech giants do not often collaborate on new features for their smartphones, with a joint initiative to create contact tracing software during the pandemic one of few past examples. Read more… Source: ...