Latest

Cyberwarfare / Nation-State Attacks

It's Raining Zero-Days in Cyberspace

Mihir Bagwe  •  March 20, 2023

Last year was another bonanza in zero-days for Chinese state hackers, say security researchers in a report predicting a permanent uptick in nation-state exploitation of yet-unpatched vulnerabilities. "Attackers seek stealth and ease of exploitation," writes cybersecurity firm Mandiant.

Network Firewalls, Network Access Control

Chinese Hackers Targeting Security and Network Appliances

Prajeet Nair  •  March 17, 2023

Chinese threat actors are turning security appliances into penetration pathways, forcing firewall maker Fortinet to again attempt to fend off hackers with a patch. Mandiant researchers say suspected Beijing hackers it tracks as UNC3886 has been targeting chip-based firewall and virtualization boxes.

SVB Parent Company Seeks Bankruptcy Amid Asset Sale Process

Michael Novinson  •  March 17, 2023

The former parent company of Silicon Valley Bank filed for Chapter 11 bankruptcy protection Friday in an effort to streamline the sale of its assets. Silicon Valley Bank itself isn't included in the reorganization filing since the FDIC took over the commercial banking business on March 10.

Fraud Management & Cybercrime

Magniber Ransomware Group Exploiting Microsoft Zero-Day

Akshaya Asokan  •  March 16, 2023

A financially motivated hacking group has been exploiting a now-patched zero-day vulnerability in the Windows operating system to deliver ransomware. Google Threat Analysis Group attributed the campaign to Magniber ransomware group. Microsoft issued a patch in its March dump of fixes.

Fraud Management & Cybercrime

Breach Roundup: Med Devices, Hospitals and a Death Registry

Mihir Bagwe  •  March 16, 2023

In this week's data breach roundup: medical device manufacturer Zoll, CHU University hospitals, Australian company Latitude Financial, Hawaiian death registry, Los Angeles Housing Authority, Indian Railway ticketing app, updates on U.S. Marshals Service and Congress, and a new ransomware decryptor!

Cyberwarfare / Nation-State Attacks

Russia May Be Reviving Cyber Ops Ahead of Spring Offensive

Mathew J. Schwartz  •  March 16, 2023

What happens next in Russia's all-out invasion of Ukraine isn't clear, but experts have been tracking signs that Moscow may be preparing for intensified cyber operations ahead of a spring offensive, developing new wiper malware and getting ready to interfere in European elections and foreign policy.

Incident & Breach Response

Australian Non-Bank Lender Discloses Hacks of Customer Data

Prajeet Nair  •  March 16, 2023

Australian personal lending provider Latitude Financial Services disclosed to regulators on Thursday hacking incidents affecting more than 300,000 consumers. "Sophisticated" hackers made off with nearly 103,000 driver's licenses and an additional 225,000 "customer records," the company said.

Fraud Management & Cybercrime

MKS Instruments Ransomware Attack Results in $200M Sales Hit

Michael Novinson  •  March 15, 2023

MKS Instruments expects a $200 million revenue hit from February's ransomware attack after the hack removed the company's ability to process orders or ship products. The Feb. 3 ransomware attack required the company to temporarily suspend operations at some MKS Instruments facilities.

Standards, Regulations & Compliance

US SEC Amps Up Regulatory Proposals for Market Cybersecurity

David Perera  •  March 15, 2023

The Securities and Exchange Commission proposed a slew of new cybersecurity rules for the companies underpinning the U.S. stock market, the latest sign of increasing unhappiness among Biden administration officials about the private sector's management of digital risk.

►

Standards, Regulations & Compliance

Proof of Concept: Is New US Cyber Strategy Really Viable?

Anna Delaney  •  March 15, 2023

In the latest "Proof of Concept" panel discussion, two Capitol Hill observers at Venable, Grant Schneider and Jeremy Grant, join Information Security Media Group editors to break down the Biden administration's new U.S. national cybersecurity strategy and answer the question, "Is it really viable?"

3rd Party Risk Management

Rubrik Breached Via Zero-Day Attack Exploiting GoAnywhere

Mathew J. Schwartz  •  March 15, 2023

Cybersecurity software giant Rubrik has joined the ranks of organizations that fell victim to attackers who have been exploiting a zero-day vulnerability in Fortra's widely used managed file transfer software, GoAnywhere MFT. The Clop ransomware gang claims to have exploited at least 130 victims.

Cloud Security

SentinelOne CEO: Cloud Security May Be Bigger Than Endpoint

Michael Novinson  •  March 14, 2023

SentinelOne has partnered with Wiz and revamped its pipeline generation efforts to capitalize on growing demand for cloud protection, said CEO Tomer Weingarten. By using a simple deployment process and eschewing kernels and agents, the company has prompted customers to switch to Singularity Cloud.