Category: Cybersecurity

January 4, 2024

December’s cyberattack on Ukrainian telecommunications operator Kyivstar by Russian-backed threat actors dealt a catastrophic blow to the wealthy, privately-owned company, according to Illia Vitiuk, head of the Security Service of Ukraine’s (SBU) cybersecurity department. In a new interview, he issued […]

December 29, 2023

For those looking for stability to arrive to the national security hiring market – 2023 was not the year. While reform efforts continued to barrel forward, so did another catastrophic leak of classified information, creating more distrust of the U.S. […]

December 18, 2023

By a 310-118 vote, the US House of Representatives passed the $886 billion National Defense Authorization Act for Fiscal Year 2024 (NDAA), which passed the Senate one day later. The annual must-pass legislation for US military funding is now headed […]

December 18, 2023

Foreign hackers did not change vote totals or otherwise compromise the integrity of federal elections last year in the United States, according to a declassified U.S. government report made public Monday. The report does identify multiple instances in which hackers […]

December 14, 2023

Prolific Iranian advanced persistent threat group (APT) OilRig has repeatedly targeted several Israeli organizations throughout 2022 in cyberattacks that were notable for leveraging a series of custom downloaders that use legitimate Microsoft cloud services to conduct attacker communications and exfiltrate […]

December 14, 2023

Ukrainian civilians on Wednesday grappled for a second day of widespread cellular phone and Internet outages after a cyberattack, purportedly carried out by Kremlin-supported hackers, hit the country’s biggest mobile phone and Internet provider a day earlier. Two separate hacking […]

December 13, 2023

The UK government is at risk of a “catastrophic ransomware attack” that can potentially bring the country to a “standstill,” warned a new parliamentary committee report. “A major ransomware attack could have a devastating impact on UK citizens and the […]

December 11, 2023

The US critical infrastructure industry and federal authorities have been coping with a series of threat actor attacks on organizations, particularly water utilities, by a shadowy Iranian threat actor exploiting security holes in internet-connected equipment deployed in industrial control system […]

December 7, 2023

Twenty federal agencies failed to meet the Biden administration’s deadline for implementing the most advanced cyber event logging requirements across their systems, with most agencies failing to implement even basic incident tracking standards, according to a recent report from the […]

December 6, 2023

Back in October, the Biden administration attempted to address the difficult issue of regulating artificial intelligence development with an executive order signed by the president that promised to manage the technology’s risks. The order covers many areas, including AI’s impact […]

December 6, 2023

In a new advisory that shows why it’s critical to keep Adobe ColdFusion deployments up to date, the US Cybersecurity and Infrastructure Security Agency (CISA) warns that two federal agencies were breached by attackers in June through an unpatched vulnerability […]

December 5, 2023

The United States is heading into a crucial election year, with a high-stakes presidential election that could determine the republic’s fate for decades. In addition, all 435 seats in the United States House of Representatives, 34 Senate seats, and 13 […]

November 30, 2023

Someone in China created thousands of fake social media accounts designed to appear to be from Americans and used them to spread polarizing political content in an apparent effort to divide the U.S. ahead of next year’s elections, Meta said […]

November 29, 2023

Municipal Water Authority of Aliquippa (MWAA), a water utility in the state of Pennsylvania, has entered a federal and state investigation after a breach in one of its equipment by pro-Iran hacking group Cyber Av3ngers. On Friday, the attackers breached […]

November 29, 2023

CISA warned this week that facilities maintaining dangerous chemicals across the US are no longer receiving adequate security support. Compared with such industries as energy, water, and telecoms, cybersecurity professionals tend to be less au courant with the chemicals sector, […]

November 21, 2023

The Australian federal government has released the 2023-2030 Australian Cyber Security Strategy with a focus on protecting the country’s most vulnerable citizens and businesses. At first glance, the strategy covers a lot of ground, and the government will need to […]

November 21, 2023

The Pentagon publicly released its strategy for operating in the information environment — which covers both physical and digital sources of information — on Friday, outlining how the agency plans to modernize its collecting, processing and sharing of data to […]

November 16, 2023

With the US Securities and Exchange Commission (SEC) having taken legal action against CISOs at both SolarWinds and Uber, security executives feel the pressure to be absolutely precise when writing up security incidents that the company has decided are material. […]

November 15, 2023

With just seven weeks until the end of the year, the Biden administration is running out of time to win the reauthorization of a spy program it says is vital to preventing terrorism, catching spies and disrupting cyberattacks. The tool, […]

November 10, 2023

In an online overview published on Nov. 9, the government of Maine confirmed that a group of cybercriminals exploiting the now-infamous vulnerability in the MOVEit file-transfer tool to allow them access to files belonging to the State of Maine between […]