News Flash: AI Gets Safer, HHS Hacked, CISA Chief Swatted!

TLDR:

Hackers have stolen millions of dollars in grant money from the Department of Health and Human Services (HHS). The attackers gained access to an HHS system that processes civilian grant payments and withdrew roughly $7.5 million that was set aside for five accounts, Bloomberg reported.
SatoshiLabs is warning of phishing attempts after a threat actor gained unauthorized access to a third-party support ticketing portal on January 17, likely accessing the contact information of 66,000 users who have interacted with Trezor Support since December 2021. The threat actor has already sent phishing emails to at least 41 customers, requesting sensitive information.
A threat actor announced on a hacking forum that they were selling a database containing the email addresses, names, and usernames of 15 million Trello users. The information has been added to the breach notification service Have I Been Pwned. Atlassian, which owns Trello, told SecurityWeek that the data was not obtained via unauthorized access, but that the threat actor had been “testing a pre-existing list of email addresses against publicly available Trello user profiles”. The threat actor had been abusing a Trello REST API to query publicly available account information based on email addresses, BleepingComputer says.
Jen Easterly, the director of US cybersecurity agency CISA, was the target of a swatting attempt on December 30. Police in Arlington County, Virginia, received a 911 call that a shooting had occurred at her residence, The Record reports. Other state and federal government officials were swatted in the recent months as well.
Menlo Security has published a report focusing on browser-based phishing attacks. The company detected over 550,000 attacks in the past year and reported seeing a 198% increase. The number of attacks classified as evasive increased 206%.
Reports focusing on ransomware were published this week by Symantec, GuidePoint, and Dragos. Symantec said the end of ransomware gangs’ reliance on critical vulnerabilities could be near. GuidePoint found an 80% year-over-year increase in activity and significant escalations in coercive tactics. Dragos looked at attacks aimed at industrial organizations in Q4 2023.
Trend Micro reported that the Kasseika ransomware is the latest to join the bring-your-own-vulnerable-driver (BYOVD) trend. Some evidence suggests the cybercriminals behind Kasseika have obtained the source code of the BlackMatter ransomware.
A dozen government agencies from around the world have published joint guidance on the secure use of AI systems. The guidance provides an overview of AI-related threats and recommendations for managing AI-related risks.

Post Views: 97

Latest from Blog

US charges North Korean hacker for hospital ransomware attacks

TLDR: The U.S. DoJ indicted a North Korean hacker for ransomware attacks on hospitals The hacker, Rim Jong Hyok, is part of a group called Andariel and is accused of laundering ransom

Deadline approaching for Cyber Security Framework adoption and mandatory reporting Regulator shifts focus to enforcement from education

TLDR: Key points: Important compliance dates approaching for critical infrastructure assets under the Security of Critical Infrastructure Act. Responsible entities must adhere to specific cyber security frameworks and submit mandatory annual reports.

Cyberattack hits Selenium Grid for Crypto Mining – stay safe

Ongoing Cyberattack Targets Exposed Selenium Grid Services TLDR: Cyberattack targeting older versions of Selenium for crypto mining Threat actors using Selenium Grid services for illicit activities Cybersecurity researchers are warning about an

Bridging the cyber talent gap: tips for CISOs

TLDR: – Global cyber threats have increased twofold in recent years, leading to a talent gap of nearly 4 million cyber professionals worldwide. – Existing cyber staff are under strain, with vacancies

Deepfake dangers prompt urgent cybersecurity reevaluations for businesses

TLDR: AI-generated deepfake attacks are on the rise, leading companies to reassess their cybersecurity measures. Companies are developing deepfake response plans and running simulations to increase preparedness. Biometric authentication, once considered secure,

North Korean faces charges for cyberattacks on US targets

TLDR: A North Korean military intelligence operative has been indicted for orchestrating cyberattacks on U.S. hospitals, NASA, and military bases. Rim Jong Hyok, a member of the Andariel Unit, faces charges of

Analysts predict cybersecurity stocks will soar after CrowdStrike’s outage

“`html TLDR: CrowdStrike outage led to potential gains for cybersecurity rivals SentinelOne, Palo Alto Networks, and Microsoft’s cybersecurity business could benefit After a defective CrowdStrike update caused a global tech outage, analysts

Bitsight’s Trust Management Hub: Revolutionizing Security Assessment Process

TLDR: Bitsight has released Trust Management Hub to streamline security assessments. The new solution reduces workload by 25% and improves the assessment cycle by 85%, helping teams close deals faster. Bitsight, a

North Korean hackers pivot to ransomware attacks

TLDR: North Korean hackers from APT45 have shifted from cyber espionage to ransomware attacks APT45 has targeted critical infrastructure and is linked to ransomware families SHATTEREDGLASS and Maui A North Korea-linked threat

Europe’s telecom, electricity sectors evaluated in new EU cybersecurity report

TLDR: EU releases risk assessment report on cybersecurity in telecommunications and electricity sectors Report highlights supply chain risks, shortage of cybersecurity professionals, and threats from cybercriminals and state-sponsored actors Summary: The European

Suggestions

News Flash: AI Gets Safer, HHS Hacked, CISA Chief Swatted

Latest from Blog