Threats
-
Simonkr via Getty Images
Vintage Microsoft flaw resurfaces, threat actors attack with golden GooseEgg
State-linked actors are using a custom tool for post exploitation activity of a vulnerability in Windows Print Spooler, which could result in credential theft and backdoor installs.
By David Jones • April 24, 2024 -
stefanovsky via Getty Images
Enterprises are getting better at detecting security incidents
Google Cloud’s Mandiant saw significant improvements in how organizations track down threats, yet hackers are still abusing common threat vectors.
By David Jones • April 23, 2024 -
Explore the Trendline➔
ar-chi via Getty Images
TrendlineRisk Management
Now, public companies have to detail their cybersecurity risk management in annual filings, raising awareness on what many cyber experts already knew — security issues are business issues.
By Cybersecurity Dive staff -
Motortion via Getty Images
NSA sounds alarm on AI’s cybersecurity risks
Attack vectors unique to AI may attract malicious actors on the hunt for sensitive data or intellectual property, the NSA warned.
By Alexei Alexis • April 19, 2024 -
BrianAJackson via Getty Images
Fears rise of social engineering campaign as open source community spots another threat
Federal officials are said to be investigating potential links between the recent XZ Utils campaign and new threat activity against JavaScript project maintainers.
By David Jones • April 16, 2024 -
gorodenkoff via Getty Images
CISA to big tech: After XZ Utils, open source needs your support
The attempted malicious backdoor may have been part of a wider campaign using social engineering techniques, the open source community warned.
By David Jones • April 15, 2024 -
3000ad via Getty Images
Federal agencies caught sharing credentials with Microsoft over email
U.S. government agencies are in jeopardy of Russia-linked cyberattacks, and although CISA isn’t aware of any compromised environments, officials warn the risk is exigent.
By Matt Kapko • April 12, 2024 -
Lee Pellegrini, Boston College
FBI director echoes past warnings, as critical infrastructure hacking threat festers
Chris Wray says adversaries from China, Russia and Iran are ramping up cyber, espionage and other threat activity against key sectors, including water, energy and telecommunications.
By David Jones • April 11, 2024 -
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
CISA assessing threat to federal agencies from Microsoft adversary Midnight Blizzard
Microsoft previously warned that the Russia-linked threat group was expanding malicious activity following the hack of senior company executives, which it disclosed in January.
By David Jones • April 5, 2024 -
Wirestock via Getty Images
Motivations behind XZ Utils backdoor may extend beyond rogue maintainer
Security researchers are raising questions about whether the actor behind an attempted supply chain attack was engaged in a random, solo endeavor.
By David Jones • April 2, 2024 -
Courtesy of Billington CyberSecurity Summit
Water woes: A federal push for cyber mitigation is highlighting the sector’s fault lines
The water utility industry says they recognize the heightened threat environment, but the current federal push fails to account for their resource constraints.
By David Jones • March 28, 2024 -
Leon Neal via Getty Images
Security concerns creep into generative AI adoption
As the AI ecosystem grows and more tools connect to internal data, threat actors have a wider field to introduce vulnerabilities.
By Lindsey Wilkinson • March 27, 2024 -
Philip Steury via Getty Images
Phishing remains top route to initial access
Tricking individuals to reveal sensitive information turns human behavior and trust into a weapon.
By Matt Kapko • March 26, 2024 -
Retrieved from Jen Easterly/CISA.
Novel variant of wiper linked to Viasat attack during Ukraine war raises new fears
Researchers at SentinelLabs warn the new variant, called AcidPour, could place IoT, networking devices at risk.
By David Jones • March 22, 2024 -
NicoElNino via Getty Images
Five Eyes implores critical infrastructure execs to take China-linked threats seriously
Officials are pushing tips to help potential victims detect and mitigate Volt Typhoon’s evasive techniques as the was warnings take on urgency.
By Matt Kapko • March 20, 2024 -
onurdongel via Getty Images
Threat actors are turning to novel malware as malicious attacks rise
BlackBerry identified 5,300 unique malware samples targeting its customers per day from September through December.
By David Jones • March 14, 2024 -
Nick van Bree via Getty Images
Ransomware festers as a top security challenge, US intel leaders say
U.S. intelligence leaders warn ransomware activity is growing, despite high profile efforts to seize threat actors’ infrastructure.
By Matt Kapko • March 12, 2024 -
Chip Somodevilla via Getty Images
Financial services sees sharp increase in DDoS attacks as geopolitical tensions rise
The industry became the most-targeted sector in 2023, driven by cyber hacktivist groups and more powerful botnets.
By David Jones • March 7, 2024 -
iStock/Getty Images Plus via Getty Images
Yet another threat actor seen exploiting ConnectWise ScreenConnect
Kroll researchers identified a new malware variant threat actors are deploying against the rapidly exploited security vulnerabilities.
By David Jones • March 6, 2024 -
photovs via Getty Images
Utility regulators take steps to raise sector’s cybersecurity ‘baselines’
The voluntary cyber recommendations are intended to serve as a resource for state public utility commissions, utilities and distribution operators and aggregators.
By Robert Walton • Feb. 29, 2024 -
iStock / Getty Images Plus via Getty Images
ConnectWise ScreenConnect critical CVE lures an array of threat actors
The company is urging all on-premises customers to upgrade to a secure version of the application as different threat groups ramp up exploits.
By David Jones • Feb. 29, 2024 -
WhataWin via Getty Images
Ivanti Connect Secure hackers hide in plain sight, evading protections
Mandiant researchers estimate thousands of devices have been exploited, and are urging users to check their systems with a newly updated tool.
By David Jones • Updated March 1, 2024 -
Matt Kapko/Cybersecurity Dive
Cloud intrusions spiked 75% in 2023, CrowdStrike says
Threat actors are targeting organizations’ inconsistent cloud security systems to intrude networks and maintain persistence.
By Matt Kapko • Feb. 23, 2024 -
Barks_japan via Getty Images
FBI-led operation disrupts botnet controlled by state-linked Forest Blizzard
Russia’s GRU-backed group exploited hundreds of vulnerable routers to conduct spear phishing and credential harvesting attacks against U.S. targets.
By David Jones • Feb. 16, 2024 -
Justin Sullivan via Getty Images
OpenAI, Microsoft warn of state-linked actors’ AI use
Threat groups linked to Russia, China, North Korea and Iran were using AI in preparation for potential early stage hacking campaigns.
By David Jones • Feb. 15, 2024 -
Permission granted by Information Technology Industry Council
National cyber director urges private sector collaboration to counter nation-state cyber threat
Harry Coker said the Biden administration is exploring plans to hold manufacturers accountable for poor security, while also working to harmonize regulations.
By David Jones • Feb. 9, 2024
