Veolia North America hit by ransomware attack

A department in Veolia North America, a transnational company offering water, energy and waste recycling management services, suffered a ransomware attack which resulted in the theft of some personal data, and forced the company to take parts of its infrastructure Read More …

Threat Assessment: BianLian ransomware group

Unit 42 researchers have been tracking the BianLian ransomware group, which has been in the top 10 of the most active groups based on leak site data they’ve gathered. From that leak site data, Unit 42 primarily observed activity affecting Read More …

OpenAI Lifts Military Ban, Opens Doors to DOD for Cybersecurity Collaboration

At the World Economic Forum in Davos, Switzerland on Jan. 16, it was revealed that OpenAI and the Department of Defense will be collaborating on artificial intelligence-based cybersecurity technology. The news has broader implications than just those in the cyber Read More …

Carnegie Mellon University hit by cyberattack, informs 7,300 people possibly affected

Carnegie Mellon University informed about 7,300 people that their personal information may have been compromised in an August cyberattack that was quietly investigated by law enforcement and the university. The breach impacting one of the nation’s top schools for computing Read More …

Chinese drones may pose security risks, US agencies warn

Chinese-made drones could pose a national security risk to the United States due to laws in China that force companies to provide authorities access to user data, two U.S. agencies say in a new memo. These “unmanned aircraft systems,” or Read More …

Water and Wastewater Sector – Incident Response Guide

Cyber threat actors are aware of – and deliberately target – single points of failure. A compromise or failure of a Water and Wastewater (WWS) Sector organization could cause cascading impacts throughout the Sector and other critical infrastructure sectors. There are many Read More …

TA866 returns with a large Email campaign

Proofpoint researchers identified the return of TA866 to email threat campaign data, after a nine-month absence. On January 11, 2024, Proofpoint blocked a large volume campaign consisting of several thousand emails targeting North America. Invoice-themed emails had attached PDFs with Read More …

New TTPs observed in Mint Sandstorm campaign targeting high-profile individuals at universities and research orgs

Since November 2023, Microsoft has observed a distinct subset of Mint Sandstorm (PHOSPHORUS) targeting high-profile individuals working on Middle Eastern affairs at universities and research organizations in Belgium, France, Gaza, Israel, the United Kingdom, and the United States. In this Read More …

Alleged FruitFly malware creator ruled incompetent to stand trial

On January 4, 2017, Case Western Reserve University (CWRU), located in Cleveland, Ohio, became aware of an infection on more than 100 of its computers. The university was notified by an undisclosed third party, who provided information to help the Read More …