Threat actors are increasingly targeting inadequately secured Microsoft SQL (MS SQL) servers to deliver Cobalt Strike and a specific ransomware variant known as FreeWorld. This concerning trend has been highlighted by cybersecurity firm Securonix, which has labeled the ongoing operation as DB#JAMMER. This campaign is notable for its sophisticated use…
The recent investigation by Mandiant, a cybersecurity arm of Google, has unveiled significant insights regarding the breach incidents attributed to a hacker identified as UNC5537. Austin Larsen, a threat intelligence analyst at Mandiant, characterizes this hacker as “one of the most consequential threat actors of 2024.” The repercussions of these…
Bolster Appoints Rod Schultz as CEO to Address Internal Data Security and AI-Driven Threats Rod Schultz has been appointed as the new CEO of Bolster, a Silicon Valley-based brand security startup, with a mandate to expand the company’s focus from protecting brands against external threats to addressing internal data security…
Governance & Risk Management, Managed Security Service Provider (MSSP) French Ministry Confirms Ongoing Negotiations for Cybersecurity Unit Acquisition Akshaya Asokan (asokan_akshaya) • November 5, 2024 Image: Shutterstock French IT consultancy Atos has announced the divestiture of its power grid consulting and engineering services unit. This decision comes amidst pressure from…
The cyber threat actor known as Muddled Libra has been identified as actively targeting software-as-a-service (SaaS) applications and cloud service providers (CSPs) with the intent to exfiltrate confidential information. This malicious activity underscores an increasing trend where organizations store diverse sets of data within SaaS platforms and leverage CSP services,…
Iranian Threat Actor APT34 Launches Phishing Campaign Featuring SideTwist Backdoor Recent cybersecurity reports indicate that the Iranian threat group known as APT34 has initiated a new phishing campaign directed at various sectors, leading to the deployment of a backdoor variant named SideTwist. This latest tactic highlights the group’s sophistication in…
As the 2024 U.S. presidential election approaches its conclusion, notable concerns have emerged regarding the intensified disinformation campaigns orchestrated by Russian actors. With Donald Trump once again on the ballot, U.S. officials are raising alarms about the Kremlin’s ongoing efforts to undermine public faith in the electoral process and incite…
Healthcare Sector Faces New Cybersecurity Expectations Amid Medicare 2025 Rule Proposal In a significant development for the healthcare industry, federal regulators are hinting at the introduction of enhanced cybersecurity requirements tied to Medicare participation. The Centers for Medicare and Medicaid Services (CMS) recently included a brief announcement in its expansive…
Cerebral Fined Over Major Privacy Violations in Telehealth Services The U.S. Federal Trade Commission (FTC) has taken decisive action against Cerebral, a mental telehealth company, prohibiting it from utilizing or sharing personal medical data for advertising purposes. The company has also been levied a hefty fine exceeding $7 million in…
