Infosecurity News
NIST Formalizes World's First Post-Quantum Cryptography Standards
NIST has formalized three post-quantum cryptographic algorithms, with organizations urged to start the transition to quantum-secure encryption immediately
East Valley Institute of Technology Data Breach Exposes Over 200,000 Records
The EVIT breach exposed the data of 208,717 individuals, including students, faculty and parents
Phishing Campaign Compromises 100+ Ukrainian Government Computers
CERT-UA has warned that a mass phishing campaign impersonating Ukraine’s Security Services has infected more than 100 government devices
Prolific Belarusian Cybercriminal Arrested in Spain
Belarusian national Maksim Silnikau, who was operating under the ‘J.P. Morgan’ moniker, is believed to be one of the world’s most prolific Russian-speaking cybercriminals
South Korea Warns Pyongyang Has Stolen Spy Plane Details
South Korea’s People Power Party calls for new legislation after data on spy planes and tanks is hacked by North Korea
FBI Leads Effort to Dismantle Radar/Dispossessor Ransomware
The FBI and other law enforcers claim to have disrupted the Radar/Dispossessor ransomware group
Vulnerability in Windows Driver Leads to System Crashes
The CVE-2024-6768 flaw in the Windows CLFS.sys driver can lead to BSOD
DARPA Awards $14m to Seven Teams in AI Cyber Challenge
DARPA awards $14 million to seven teams competing to develop AI systems capable of identifying and patching vulnerabilities in open-source software
UN Adopts Controversial Cybercrime Treaty
Many stakeholders said the future UN convention could allow authoritarian countries to stifle political opposition and violate human rights
Microsoft Reveals Iranian US Election Interference Ops
Microsoft claims Iran is ramping up election interference activity in the US, as Trump campaign claims it was hacked
Man in Dock Accused of Breaking Hi-Tech Export Controls
Arthur Petrov is accused of exporting US chips for manufacturers supplying weaponry and equipment to the Russian military
#BHUSA: CISA Encourages Organizations to Adopt a 'Secure by Demand' Strategy
CISA Director Jen Easterly calls on organizations to drive cybersecurity improvements through a 'Secure by Demand' approach
#BHUSA: CoSAI, Combating AI Risks Through Industry Collaboration
Leading AI companies have formed the Coalition for Secure AI (CoSAI) to address the growing cybersecurity risks posed by artificial intelligence
OpenAI Leadership Split Over In-House AI Watermarking Technology
One primary concern is that the tool might turn ChatGPT users away from the product
Threat Actors Favor Rclone, WinSCP and cURL as Data Exfiltration Tools
ReliaQuest found that Rclone, WinSCP and cURL were the top three data exfiltration tools utilized by threat actors over the past year
#BHUSA: CISA Director Confident in US Election Security
CISA Director Jen Easterly expressed strong confidence in the integrity of US election, despite ongoing cybersecurity threats to democratic processes
#BHUSA: Ransomware Drill Targets Healthcare in Operation 911
A ransomware tabletop exercise was conducted against a fictious hospital, aiming to educate attendees of how to fight against such threats
SEC Investigation into Progress MOVEit Hack Ends Without Charges
After months of investigation, the SEC decided not to recommend any enforcement action against software provider Progress regarding the supply chain attack
Phishing Attack Exploits Google, WhatsApp to Steal Data
The LOTS attack uses trusted sites like Google Drawings and WhatsApp to trick users into sharing data
North Korea Kimsuky Launch Phishing Attacks on Universities
Kimsuky was observed phishing university staff to steal valuable research for North Korea
