In a recent discussion at the U.S. Department of Health and Human Services-hosted HIPAA Summit, Nitin Natarajan, deputy director of the Cybersecurity and Infrastructure Security Agency (CISA), addressed the alarming consequences of ransomware attacks on healthcare facilities, particularly in rural areas. He emphasized that while IT disruptions can severely affect…
Rockwell Automation is urging its clients to disconnect any industrial control systems (ICSs) that are not intended for public internet access in order to prevent unauthorized or harmful cyber activities. This advisory comes in light of escalating geopolitical tensions and an increase in adversarial cyber actions across the globe, according…
An alarming trend has emerged as the AvosLocker ransomware group has been implicated in attacks targeting crucial infrastructure sectors across the United States, with some incidents surfacing as recently as May 2023. This information comes from a comprehensive cybersecurity advisory jointly issued by the U.S. Cybersecurity and Infrastructure Security Agency…
Black Basta Ransomware Targets Critical Infrastructure Globally The Black Basta ransomware-as-a-service (RaaS) group has made a significant impact since its inception in April 2022, successfully compromising over 500 private and critical infrastructure entities across North America, Europe, and Australia. Recent joint advisories released by leading cybersecurity authorities, including the Cybersecurity…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a significant Linux kernel vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, highlighting the threat of active exploitation. This flaw, designated as CVE-2024-1086, has been assigned a high CVSS score of 7.8 and pertains to a critical use-after-free issue within…
United States Cyber Defense Agency Launches National Election Support Center The Cybersecurity and Infrastructure Security Agency (CISA), the preeminent cybersecurity agency in the United States, has inaugurated an election operations war room designed to bolster defenses against potential threats as the nation approaches the 2024 presidential election deadline. With increasing…
Election Security, Fraud Management & Cybercrime Foreign Influence Campaigns Intensify as Experts Tout Election Security Upgrades Chris Riotta (@chrisriotta) • October 29, 2024 The latest early voting tracking data indicates over 50 million ballots have been cast in the presidential race. (Image: Shutterstock) Foreign influence efforts are gaining momentum as…
Black Basta Ransomware Exploits Windows Vulnerability Recent investigations by Symantec have revealed that threat actors associated with the Black Basta ransomware may have leveraged a newly uncovered zero-day vulnerability in the Microsoft Windows Error Reporting Service. This security flaw, identified as CVE-2024-26169, is classified as an elevation of privilege vulnerability…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a deadline of November 17, 2023, for federal agencies and organizations to implement security mitigations against several vulnerabilities identified in the Juniper Junos OS, which were disclosed earlier in August. This move comes in light of growing concerns surrounding the…
