Cyber Security News

March 2, 2023

CISA released five Industrial Control Systems (ICS) advisories on March 2, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations: ICSA-23-061-01 Mitsubishi Electric MELSEC Series ICSA-23-061-02 Baicells Nova Read more… Source: U.S. Cybersecurity and Infrastructure Security Agency Related ...

March 2, 2023

The Biden administration is pushing for more comprehensive federal regulations to keep the online realm safer against hackers, including by shifting cybersecurity responsibilities away from consumers to industry and treating ransomware attacks as national security threats. The plan is part of the National Cyber Strategy that the administration released Thursday, outlining long-range goals for how individuals, government ...

March 2, 2023

Cybercriminals regularly leverage popular dynamic domain name system (DDNS) or web hosting services to store and distribute their content. Threat actors leverage these for command and control (C2), malware distribution and phishing. This abuse has created the need for new detection methods for malicious subdomains. DDNS and web hosting services often allow people to serve content ...

March 2, 2023

As ransomware groups continue to build on their arsenal of tactics, techniques, and procedures (TTPs), it’s essential for cybersecurity professionals to assess the levels of risk to their organizations using multiple sources of information for a comprehensive outlook on this ever-evolving threat. Common Vulnerabilities and Exposures (CVE) data, for example, can guide defenders in determining ...

March 1, 2023

Today, CISA released Decider, a free tool to help the cybersecurity community map threat actor behavior to the MITRE ATT&CK framework. Created in partnership with the Homeland Security Systems Engineering and Development Institute™ (HSSEDI) and MITRE, Decider helps make mapping quick and accurate through guided questions, a powerful search and filter function, and a cart ...

March 1, 2023

Iron Tiger is an advanced persistent threat (APT) group that has been focused primarily on cyberespionage for more than a decade. In 2022, we noticed that they updated SysUpdate, one of their custom malware families, to include new features and add malware infection support for the Linux platform. We found the oldest sample of this updated ...

March 1, 2023

Time is running out! Connect with the Japanese defence industry – register for DSEI Japan and take advantage of Japan’s biggest defence event before registration closes on 8 March 2023 at 15:00 GMT. DSEI Japan 2023 is going to be the biggest edition yet, featuring full Japanese government support by the Japanese MoD, Ministry of Foreign Affairs ...

March 1, 2023

Twitter was unavailable for users around the world for over an hour on Wednesday morning, the latest in a spate of technical difficulties suffered by the site since its takeover by Elon Musk. Beginning at about 10:20am UK time, visitors to Twitter.com were greeted with error messages. Although the total outage was rapidly fixed, the site ...

February 28, 2023

Dish Network, one of the largest television providers in the United States, confirmed on Tuesday that a previously disclosed “network outage” was the result of a cybersecurity breach that affected the company’s internal communications systems and customer-facing support sites. Shares dropped over 6% on the news and a double-downgrade from Bank of America. Read more… Source: CNBC News  

February 28, 2023

Today, CISA released a Cybersecurity Advisory, CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks. This advisory describes a red team assessment of a large critical infrastructure organization with a mature cyber posture. CISA is releasing this Cybersecurity Advisory (CSA) detailing the red team’s tactics, techniques, and procedures (TTPs) and key ...