Joint Cybersecurity Advisory Released by CISA, FBI, AUS CSC and UK NCSC Regarding Iranian Government-Sponsored APT
An advanced persistent threat (APT) group since March of 2021, has been exploiting Fortinet vulnerabilities and, since October 2021, a Microsoft Exchange ProxyShell vulnerability “to gain initial access to systems in advance of follow-on operations, which include deploying ransomware.” This joint cybersecurity advisory is the result of an analytic effort among the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Australian Cyber Security Centre (ACSC), and the United Kingdom’s National Cyber Security Centre (NCSC).
The Joint Cybersecurity Advisory was released this morning at approx. 11 AM EST.
A new form of malware called BlackByte has been discovered in a recent IT incident. The malware appears to have been inspired by other strains and is likely the work of amateurs, according to security researchers at Trustwave. The ransomware is reportedly odd in nature due to some design and
Europol has warned that although official propaganda from the Islamic State has reportedly declined since 2020 due to disruptions from Western coalition forces, informal supporter networks are alive and well. The law enforcement agency detailed the key trends of last year, noting the persistence of terrorist content across multiple online
Ring has created a preview of end-to-end encryption for home video feeds. The feature is being rolled out to customers this week by the Amazon-owned smart doorbell. After feedback proves the encryption to be successful, the encryption will eventually be offered to users as an opt-in feature. Ring has come
According to major US pharmaceutical firm ExecuPharm, the company was hit by a cyberattack on March 13 in which threat actors attacked the company’s IT systems with ransomware and demanded payment in return for decryption. The pharmaceutical firm stated that their servers were encrypted as a result of the attack
Google recently introduced a seemingly subtle change in the newest version of its Chome web browser, version 80. The feature makes the credentials that users save in Chrome’s password manager more secure, and it has already generated a large impact on the underground criminal enterprise. The Genesis Store has operated
According to new data published by the Freedom of Information (FOI), over 2,000 mobile devices used by UK government employees have gone missing over the past year. The organization also claimed that a significant number of the devices were unencrypted. Between the period of June 1, 2018, and June 1,
Indian airline SpiceJet has been hit by a cyberattack resulting in a massive data breach, exposing the personal information of over a million of its passengers. The computer system of the airline was compromised last month when a security researcher used brute force attack to gain access to an unencrypted
A 40-year-old electronics company and US government contractor Electronic Warfare Associates (EWA) has suffered from a ransomware attack. Last week, the company’s web servers were encrypted when attackers launched a ransomware campaign against the company. Encrypted files and ransom notes are still available through Google search results a week after
A team in France recently cracked the most complex encryption algorithm to date, taking 35 million compute hours to break even though the key was only one-third of the length of most commercial encryption keys. The longest encryption was previously 232 digits, and the French scientists beat this record by