https://www.scmagazine.com/topic/threat-management
SCM feed for Threat Management
2024-03-28T07:06:12+00:00
https://files.scmagazine.com/logo/scm-horizontal-white-with-resource.png
Copyright © 2024 CyberRisk Alliance, LLC All Rights Reserved
tag:www.scmagazine.com:post,709482
Cyber threat readiness maturity severely lacking worldwide
2024-03-27T10:58:56-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Only 3% of organizations around the world were reported to be completely ready to deal with increasingly sophisticated cybersecurity threats, including ransomware attacks and supply chain intrusions, reports SiliconAngle.</p>
2024-03-27T10:58:51-04:00
tag:www.scmagazine.com:post,709458
Immediate creation of dedicated US Cyber Force pushed
2024-03-27T10:43:39-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Severely lacking military coordination and recruitment for U.S. cybersecurity efforts have prompted the Foundation for Defense of Democracies to urge Congress to immediately advance an independent Cyber Force that would ensure the country's cyber defense readiness, according to The Record, a news site by cybersecurity firm Recorded Future.</p>
2024-03-27T10:43:34-04:00
tag:www.scmagazine.com:post,709453
ASEAN targeted by Chinese APTs
2024-03-27T10:35:35-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Cyberespionage operations have been conducted by a pair of Chinese advanced persistent threat groups against organizations in countries part of the Association of Southeast Asian Nations since January, The Hacker News reports.</p>
2024-03-27T10:35:29-04:00
tag:www.scmagazine.com:post,709407
Finland parliament breach attributed to APT31
2024-03-27T09:22:24-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>BleepingComputer reports that Chinese state-sponsored threat operation APT31, also known as Judgment Panda and Zirconium, was confirmed by Finland's police to have been behind a cyberattack against the country's parliament three years ago.</p>
2024-03-27T09:22:19-04:00
tag:www.scmagazine.com:post,709404
Extensive APT31 targeting detailed
2024-03-27T09:12:33-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Attacks deployed by Chinese state-backed threat operation APT31 against numerous U.S. and Western politicians, journalists, foreign policy experts, and dissidents between 2015 and 2024 also involved the targeting of their family members as part of the group's cyberespionage efforts, according to CyberScoop.</p>
2024-03-27T09:12:27-04:00
tag:www.scmagazine.com:post,709103
EPA collaborating with state, local governments in boosting water cybersecurity
2024-03-26T07:48:20-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>More details regarding state and local governments' vulnerability assessment measures have been sought by Deputy National Security Advisor for Cyber and Emerging Technologies.</p>
2024-03-26T07:48:14-04:00
tag:www.scmagazine.com:post,709066
Fintech organizations aiding Russian entities subjected to US sanctions
2024-03-26T07:27:38-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Included in the sanctioned firms are cryptocurrency exchanges Bitpapa IC FZC LLC and Obshchestvo S Ogranichennoy Otvetstvennostyu Tsentr Obrabotki Elektronnykh Platezhey, or TOEP, both of which supported money laundering efforts by Hydra Market.</p>
2024-03-26T07:27:33-04:00
tag:www.scmagazine.com:post,709065
Chinese hackers face US, UK sanctions for cyberespionage
2024-03-26T07:24:27-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Wuhan XRZ, a tech firm suspected to be linked to Chinese state-sponsored threat group APT31, and seven other individuals have been sanctioned and indicted by the U.S. for their involvement in a widespread operation targeting U.S. officials and U.S.-based dissidents.</p>
2024-03-26T07:24:22-04:00
tag:www.scmagazine.com:post,708907
UN's North Korean crypto heist investigation underway
2024-03-25T13:17:50-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Nearly 60 cryptocurrency heists conducted by North Korean state-sponsored threat operations, including Lazarus Group, Kimsuky, and Andariel, from 2017 to 2023 that resulted in nearly $3 billion in losses have been subjected to a probe by a United Nations panel, reports The Record, a news site by cybersecurity firm Recorded Future.</p>
2024-03-25T13:17:45-04:00
tag:www.scmagazine.com:post,708877
Ongoing Kimsuky attacks involve novel tactic
2024-03-25T12:16:13-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Information-stealing malware has been deployed by North Korean state-backed hacking group Kimsuky in ongoing attacks against South Korean organizations exploiting Compiled HTML Help files, reports The Hacker News.</p>
2024-03-25T12:16:07-04:00
tag:www.scmagazine.com:post,708846
ScreenConnect, BIG-IP bugs a bonanza for hackers conducting cyberespionage
2024-03-25T11:39:46-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>One China-linked threat actor boasted of compromising hundreds of organizations using the known vulnerabilities.</p>
2024-03-25T11:38:58-04:00
Hackers are exploiting known bugs to target U.S. and UK entities. (Adobe Stock)
tag:www.scmagazine.com:post,708574
Is Cozy Bear targeting Western political parties with phishing attacks?
2024-03-22T16:11:13-04:00
Steve Zurier
https://www.scmagazine.com/contributor/steve-zurier
<p>Google Mandiant says APT29 targeted German politicians and is a threat to Western political parties.</p>
2024-03-22T16:07:12-04:00
(Adobe Stock)
tag:www.scmagazine.com:post,708487
New Turla attack sheds more light on backdoor
2024-03-22T07:04:01-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>After conducting an initial compromise in October, Turla deployed custom Chisel tunneling software to expand infections across other systems in December before proceeding with data exfiltration activities a month later.</p>
2024-03-22T07:03:56-04:00
tag:www.scmagazine.com:post,708483
AcidPour wiper suspected to be used against Ukrainian telecom networks
2024-03-22T06:54:58-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Several Ukrainian telecommunications networks have been disrupted for more than a week.</p>
2024-03-22T06:54:53-04:00
tag:www.scmagazine.com:post,708282
Takedowns spark affiliate bidding war among ransomware gangs
2024-03-21T10:48:54-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>After authorities disrupted LockBit and ALPHV/BlackCat, smaller extortion groups are scrambling to recruit their former affiliates.</p>
2024-03-21T10:47:37-04:00
Ransomware-as-a-service groups are actively recruiting affiliates. (Adobe Stock)
tag:www.scmagazine.com:post,707956
EPA floats task force to address cyberattacks on water infrastructure
2024-03-20T11:52:59-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>Recent attacks by Chinese and Iranian hackers threaten the supply of safe drinking water, the agency warns.</p>
2024-03-20T11:52:01-04:00
(Melissa Phillip/Houston Chronicle via Getty Images)
tag:www.scmagazine.com:post,707679
Earth Krahang campaign compromised government servers in 23 countries
2024-03-19T11:29:50-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>The newly discovered China-linked APT group abused trust between governments.</p>
2024-03-19T11:15:45-04:00
The China-linked group Earth Krahang attacked allies of governments after compromising infrastructure. (Adobe Stock)
tag:www.scmagazine.com:post,707623
Aviation sector, e-commerce platforms face separate cyber threats
2024-03-19T07:59:39-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Organizations in the aviation and aerospace industries have been subjected to mounting cyberattacks amid ongoing geopolitical tensions.</p>
2024-03-19T07:59:34-04:00
tag:www.scmagazine.com:post,707388
Update delays to NIST vulnerability database alarms researchers
2024-03-18T11:35:42-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>Crucial enrichment data is not being added to NVD entries as NIST works through a “transition” process.</p>
2024-03-18T11:34:59-04:00
(Adobe Stock)
tag:www.scmagazine.com:post,707341
Cybersecurity threats escalate
2024-03-18T07:30:52-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Cybersecurity threats were noted by Red Canary to have gained steam across various fronts during the past year.</p>
2024-03-18T07:30:48-04:00