https://www.scmagazine.com/topic/threat-management
SCM feed for Threat Management
2024-03-28T16:08:58+00:00
https://files.scmagazine.com/logo/scm-horizontal-white-with-resource.png
Copyright © 2024 CyberRisk Alliance, LLC All Rights Reserved
tag:www.scmagazine.com:post,709785
Google: Zero-day exploits increasingly target enterprise technologies
2024-03-28T10:00:16-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>An analysis found threat actors are increasingly targeting enterprise-specific technologies.</p>
2024-03-28T09:58:32-04:00
tag:www.scmagazine.com:post,709779
Escalating cyber threats require immediate adaptation
2024-03-28T09:36:06-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Significant increases have been observed in the prevalence of several cybersecurity threats during the past year, SiliconAngle reports.</p>
2024-03-28T09:36:00-04:00
tag:www.scmagazine.com:post,709776
Zero-day exploitation spikes
2024-03-28T10:00:32-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Threat actors actively exploited 97 zero-day vulnerabilities last year, which is more than 50% higher than in 2022 but lower than in 2021, reports BleepingComputer.</p>
2024-03-28T09:30:24-04:00
tag:www.scmagazine.com:post,709758
Cyberespionage campaign hits India
2024-03-28T09:09:36-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>India had several of its government agencies and energy industry organizations subjected to cyberespionage attacks delivering the HackBrowserData information-stealing malware as part of the new Operation FlightNight campaign identified earlier this month, according to The Record, a news site by cybersecurity firm Recorded Future.</p>
2024-03-28T09:09:31-04:00
tag:www.scmagazine.com:post,709750
Agent Tesla distributed via fraudulent bank notifications
2024-03-28T08:55:35-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Threat actors have launched a new phishing campaign using fraudulent bank payment notifications to facilitate the deployment of the Agent Tesla information-stealing and keylogging malware, The Hacker News reports.</p>
2024-03-28T08:55:30-04:00
tag:www.scmagazine.com:post,709482
Cyber threat readiness maturity severely lacking worldwide
2024-03-27T10:58:56-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Only 3% of organizations around the world were reported to be completely ready to deal with increasingly sophisticated cybersecurity threats, including ransomware attacks and supply chain intrusions, reports SiliconAngle.</p>
2024-03-27T10:58:51-04:00
tag:www.scmagazine.com:post,709458
Immediate creation of dedicated US Cyber Force pushed
2024-03-27T10:43:39-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Severely lacking military coordination and recruitment for U.S. cybersecurity efforts have prompted the Foundation for Defense of Democracies to urge Congress to immediately advance an independent Cyber Force that would ensure the country's cyber defense readiness, according to The Record, a news site by cybersecurity firm Recorded Future.</p>
2024-03-27T10:43:34-04:00
tag:www.scmagazine.com:post,709453
ASEAN targeted by Chinese APTs
2024-03-27T10:35:35-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Cyberespionage operations have been conducted by a pair of Chinese advanced persistent threat groups against organizations in countries part of the Association of Southeast Asian Nations since January, The Hacker News reports.</p>
2024-03-27T10:35:29-04:00
tag:www.scmagazine.com:post,709407
Finland parliament breach attributed to APT31
2024-03-27T09:22:24-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>BleepingComputer reports that Chinese state-sponsored threat operation APT31, also known as Judgment Panda and Zirconium, was confirmed by Finland's police to have been behind a cyberattack against the country's parliament three years ago.</p>
2024-03-27T09:22:19-04:00
tag:www.scmagazine.com:post,709404
Extensive APT31 targeting detailed
2024-03-27T09:12:33-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Attacks deployed by Chinese state-backed threat operation APT31 against numerous U.S. and Western politicians, journalists, foreign policy experts, and dissidents between 2015 and 2024 also involved the targeting of their family members as part of the group's cyberespionage efforts, according to CyberScoop.</p>
2024-03-27T09:12:27-04:00
tag:www.scmagazine.com:post,709103
EPA collaborating with state, local governments in boosting water cybersecurity
2024-03-26T07:48:20-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>More details regarding state and local governments' vulnerability assessment measures have been sought by Deputy National Security Advisor for Cyber and Emerging Technologies.</p>
2024-03-26T07:48:14-04:00
tag:www.scmagazine.com:post,709066
Fintech organizations aiding Russian entities subjected to US sanctions
2024-03-26T07:27:38-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Included in the sanctioned firms are cryptocurrency exchanges Bitpapa IC FZC LLC and Obshchestvo S Ogranichennoy Otvetstvennostyu Tsentr Obrabotki Elektronnykh Platezhey, or TOEP, both of which supported money laundering efforts by Hydra Market.</p>
2024-03-26T07:27:33-04:00
tag:www.scmagazine.com:post,709065
Chinese hackers face US, UK sanctions for cyberespionage
2024-03-26T07:24:27-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Wuhan XRZ, a tech firm suspected to be linked to Chinese state-sponsored threat group APT31, and seven other individuals have been sanctioned and indicted by the U.S. for their involvement in a widespread operation targeting U.S. officials and U.S.-based dissidents.</p>
2024-03-26T07:24:22-04:00
tag:www.scmagazine.com:post,708907
UN's North Korean crypto heist investigation underway
2024-03-25T13:17:50-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Nearly 60 cryptocurrency heists conducted by North Korean state-sponsored threat operations, including Lazarus Group, Kimsuky, and Andariel, from 2017 to 2023 that resulted in nearly $3 billion in losses have been subjected to a probe by a United Nations panel, reports The Record, a news site by cybersecurity firm Recorded Future.</p>
2024-03-25T13:17:45-04:00
tag:www.scmagazine.com:post,708877
Ongoing Kimsuky attacks involve novel tactic
2024-03-25T12:16:13-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Information-stealing malware has been deployed by North Korean state-backed hacking group Kimsuky in ongoing attacks against South Korean organizations exploiting Compiled HTML Help files, reports The Hacker News.</p>
2024-03-25T12:16:07-04:00
tag:www.scmagazine.com:post,708846
ScreenConnect, BIG-IP bugs a bonanza for hackers conducting cyberespionage
2024-03-25T11:39:46-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>One China-linked threat actor boasted of compromising hundreds of organizations using the known vulnerabilities.</p>
2024-03-25T11:38:58-04:00
Hackers are exploiting known bugs to target U.S. and UK entities. (Adobe Stock)
tag:www.scmagazine.com:post,708574
Is Cozy Bear targeting Western political parties with phishing attacks?
2024-03-22T16:11:13-04:00
Steve Zurier
https://www.scmagazine.com/contributor/steve-zurier
<p>Google Mandiant says APT29 targeted German politicians and is a threat to Western political parties.</p>
2024-03-22T16:07:12-04:00
(Adobe Stock)
tag:www.scmagazine.com:post,708487
New Turla attack sheds more light on backdoor
2024-03-22T07:04:01-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>After conducting an initial compromise in October, Turla deployed custom Chisel tunneling software to expand infections across other systems in December before proceeding with data exfiltration activities a month later.</p>
2024-03-22T07:03:56-04:00
tag:www.scmagazine.com:post,708483
AcidPour wiper suspected to be used against Ukrainian telecom networks
2024-03-22T06:54:58-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Several Ukrainian telecommunications networks have been disrupted for more than a week.</p>
2024-03-22T06:54:53-04:00
tag:www.scmagazine.com:post,708282
Takedowns spark affiliate bidding war among ransomware gangs
2024-03-21T10:48:54-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>After authorities disrupted LockBit and ALPHV/BlackCat, smaller extortion groups are scrambling to recruit their former affiliates.</p>
2024-03-21T10:47:37-04:00
Ransomware-as-a-service groups are actively recruiting affiliates. (Adobe Stock)
tag:www.scmagazine.com:post,707956
EPA floats task force to address cyberattacks on water infrastructure
2024-03-20T11:52:59-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>Recent attacks by Chinese and Iranian hackers threaten the supply of safe drinking water, the agency warns.</p>
2024-03-20T11:52:01-04:00
(Melissa Phillip/Houston Chronicle via Getty Images)
tag:www.scmagazine.com:post,707679
Earth Krahang campaign compromised government servers in 23 countries
2024-03-19T11:29:50-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>The newly discovered China-linked APT group abused trust between governments.</p>
2024-03-19T11:15:45-04:00
The China-linked group Earth Krahang attacked allies of governments after compromising infrastructure. (Adobe Stock)
tag:www.scmagazine.com:post,707623
Aviation sector, e-commerce platforms face separate cyber threats
2024-03-19T07:59:39-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Organizations in the aviation and aerospace industries have been subjected to mounting cyberattacks amid ongoing geopolitical tensions.</p>
2024-03-19T07:59:34-04:00