Alert on EC2 Grouper: Exploiting AWS Credentials Through Unique Patterns Recent research from Fortinet’s FortiGuard Labs has identified a concerning threat actor known as "EC2 Grouper," which is exploiting AWS credentials and tools in a highly distinguishable manner. This group primarily uses naming conventions akin to “ec2group12345” to set up…
Insights from Cybersecurity Experts on Key Trends for 2025 Anna Delaney (annamadeline), Cal Harrison • December 31, 2024 Watch a discussion on emerging cyber trends for 2024 featuring ISMG’s Anna Delaney and a panel of experts. The year 2024 is poised to be remembered as one marked by significant cyber…
Global automotive leader Volkswagen is currently facing a significant data breach incident that may have jeopardized critical information related to owners of its electric vehicle (EV) line. The leak occurred within Cariad, Volkswagen’s software subsidiary, affecting the sensitive data of approximately 800,000 EV owners, including their geographical locations. This breach…
Ransomware: A Historical Overview and Its Evolution Ransomware, a malicious software category designed to deny access to a system or to seize data until a ransom is paid, has undergone significant transformation since its origins. Emerging from simple exploits in the 1980s, it has escalated into a widespread global menace,…
Topics: Cloud Security, Cybercrime, Fraud Management & Cybercrime U.S. Army Soldier Cameron Wagenius Arrested in Connection with Snowflake Customer Data Extortion Mathew J. Schwartz (euroinfosec) • December 31, 2024 Image: Shutterstock Federal law enforcement has arrested Cameron John Wagenius, a 20-year-old U.S. Army soldier, following a two-count indictment related to…
In a significant development in the realm of data security, a lawsuit has been filed against Byte Federal, marking one of 1,500 legal actions anticipated in 2024 aimed at various companies over data breaches. This wave of litigation underscores the increasing scrutiny and accountability that businesses face as they navigate…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Critics Argue OpenAI’s Shift to For-Profit Status Threatens Security Obligations Rashmi Ramesh (rashmiramesh_) • December 31, 2024 Image: Shutterstock OpenAI’s initiative to transition into a for-profit organization is facing significant backlash from industry competitors and advocates for artificial intelligence safety.…
Surge in Cyber-Attacks Hits Key Industries in 2024: Analysis of Major Incidents The year 2024 has marked a significant escalation in cyber-attacks across various sectors, with notable breaches affecting critical infrastructure, healthcare providers, financial institutions, and even political campaigns. These incidents underscore an alarming trend—the increasing sophistication of threat actors…
Encryption & Key Management, Security Operations Researcher Unveils Bitpixie Attack Techniques to Extract Encryption Keys Akshaya Asokan (asokan_akshaya) • December 31, 2024 Image: Shutterstock Recent research has unveiled a previously addressed vulnerability within the Windows BitLocker disk encryption system that remains exploitable. This flaw poses significant risks, potentially allowing attackers…
