Rockwell Automation is urging its clients to disconnect any industrial control systems (ICSs) that are not intended for public internet access in order to prevent unauthorized or harmful cyber activities. This advisory comes in light of escalating geopolitical tensions and an increase in adversarial cyber actions across the globe, according…
Leadership & Executive Communication, Training & Security Leadership, Video CIO Alex Gallo Discusses Managing Digital Transformation, Security, and Lifelong Learning Anna Delaney (annamadeline) • November 1, 2024 Alex Gahlo, CIO and CyberEdBoard member In a landscape increasingly defined by rapid digital transformation, Alex Gallo, a member of CyberEdBoard and Chief…
Black Basta Ransomware Targets Critical Infrastructure Globally The Black Basta ransomware-as-a-service (RaaS) group has made a significant impact since its inception in April 2022, successfully compromising over 500 private and critical infrastructure entities across North America, Europe, and Australia. Recent joint advisories released by leading cybersecurity authorities, including the Cybersecurity…
Cyberattacks Disrupt Ukrainian Telecommunications Amid Ongoing Conflicts Recent reports from the Computer Emergency Response Team of Ukraine (CERT-UA) indicate that threat actors have compromised the operations of at least 11 telecommunications service providers in Ukraine between May and September 2023. This wave of cyber intrusions is being tracked under the…
Emergence of ExelaStealer: A New Player in Cybercrime A newly identified information-stealing malware, dubbed ExelaStealer, has emerged in a saturated market already teeming with tools designed to exfiltrate sensitive information from compromised Windows systems. This evolving threat, flagged by FortiGuard Labs, showcases how cybercriminals continually adapt their tactics and tools…
Governance & Risk Management, Incident & Breach Response, Insider Threat Everfox Acquires Yakabod to Enhance Cyber Incident Response and Insider Risk Management Michael Novinson (@MichaelNovinson) • November 1, 2024 Sean Berg, CEO, Everfox (Image: Everfox) Everfox has announced its acquisition of Yakabod, a company previously led by the former Chief…
The Medusa Ransomware group has potentially orchestrated one of the largest data breaches in the history of U.S. pathology laboratories, impacting over 1.8 million patients associated with Summit Pathology Laboratory in Colorado. This incident highlights significant vulnerabilities within the healthcare sector, raising alarming questions regarding data security practices in an…
Cybersecurity experts have identified a significant vulnerability in Replicate, an artificial intelligence (AI)-as-a-service provider, potentially allowing malicious actors to access proprietary AI models and sensitive user data. The disclosure was made by the cloud security firm Wiz, which reported that the flaw could have resulted in unauthorized access to AI…
In a revealing report, UK cybersecurity firm Sophos has highlighted a prolonged and intricate battle with a group of hackers based in Chengdu, China. This confrontation, which has persisted for over five years, underscores a troubling reality in the cybersecurity landscape: devices that are designed to shield organizations from cyber…
