January 10, 2024 | Posted in News
Today’s issue includes events affecting Bangladesh, China, Germany, Switzerland, Syria, Taiwan, Ukraine, and the United States.
Syrian Threat Group Peddles Destructive SilverRAT (Dark Reading) The Middle Eastern developers claim to be building a new version of the antivirus-bypassing remote access Trojan (RAT) attack tool.
Major IT, Crypto Firms Exposed to Supply Chain Compromise via New Class of CI/CD Attack (SecurityWeek) Self-hosted GitHub Actions runners could allow attackers to inject malicious code into repositories, leading to supply chain attacks.
Swiss Air Force documents exposed via cyber attack on third party (BeyondMachines) The Swiss Air Force experienced a significant data breach through its supplier, Ultra Intelligence & Communications, with the ALPHV hacker group leaking about 30 gigabytes of sensitive documents on the darknet, including Swiss Department of Defence and RUAG contracts.
Swatting: The new normal in ransomware extortion tactics (The Register) Remember the good old days when ransomware crooks vowed not to infect medical centers?
Mortgage firm loanDepot cyberattack impacts IT systems, payment portal (BleepingComputer) U.S. mortgage lender loanDepot has suffered a cyberattack that caused the company to take IT systems offline, preventing online payments against loans.
Taiwan to reveal Chinese election interference after Jan. 13 vote (The Record) After the polls close, Taiwan said it will share details on China’s activity to “soften the learning curve for fellow democracies in dealing with malign authoritarian influence.”
Merck Settles With Insurers Over $700m NotPetya Claim (Infosecurity Magazine) Pharma giant Merck has reached a settlement with cyber-insurers that refused to pay out for “acts of war”
NIST Warns of Security and Privacy Risks from Rapid AI System Deployment (The Hacker News) NIST raises an alarm on AI’s privacy & security risks. Discover how AI systems like ChatGPT face new threats.
Bangladesh official alleges cyberattack ‘from Ukraine and Germany’ targeted election () Mohammed Jahangir Alam, the Election Commission’s official secretary, told journalists that an election app had been “slowed down from Ukraine and Germany,” without specifying the nature of the incident.
North American Startup Funding Ended 2023 With A Q4 Dip (Crunchbase News) North American startup investors closed out 2023 with the worst quarter of the year, pulling back sharply on late-stage deals amid a weak exit environment.
Cybersecurity startup Vigilant Ops raises $2M from DataTribe (Technical.ly) The Pittsburgh company could double in size as it looks to serve industries beyond healthcare, CEO Ken Zalevsky said.
Mimecast Acquires Risk Identification Startup Elevate Security (CRN) Mimecast announced the acquisition of cybersecurity startup Elevate Security.
Big Tech has already made enough money in 2024 to pay all its 2023 fines | Proton (Proton) Big Tech (Alphabet, Amazon, Apple, Meta, and Microsoft)’s annual revenue dwarfs total fines. The cost for privacy is insignificant to them.
McAfee Unveils Advanced Deepfake Audio Detection Technology at CES 2024 to Defend Against Rise in AI-Generated Scams and Disinformation (Yahoo Finance) SAN JOSE, Calif., January 08, 2024–Today, McAfee Corp., a global leader in online protection, announced its AI-powered Deepfake Audio Detection technology, known as Project Mockingbird, at the Consumer Electronics Show. This new, proprietary technology was developed to help defend consumers against the surging threat of cybercriminals utilizing fabricated, AI-generated audio to carry out scams that rob people of money and personal information, enable cyberbullying, and manipulate the public ima
Energy Department has cyber threats to infrastructure in mind with $70 million funding offer (FedScoop) The DOE’s Office of Cybersecurity, Energy Security and Emergency Response is seeking proposals for technology that strengthens the resilience of infrastructure from a variety of risks, including cybersecurity, part of an emphasis on taking care of “the operational technology side of the house.”
Space Force is crafting in-house cyber teams but sees need for closer work with USCYBERCOM (Nextgov.com) U.S. Cyber Command has been “an incredible partner” to the Space Force but does not currently have any personnel from the military branch within its ranks, a top official said.