08-13-2023, 12:56 PM
Researchers came across a prolific Chinese state-sponsored threat group, dubbed RedHotel, that has attacked entities in 17 countries across multiple sectors. More victims of the MOVEit data breach keep coming forth, with the latest being Missouri’s social services department. The breach impacted Medicaid information. Moving on, a new cyberespionage group has popped its head. Named MustachedBouncer, the group has been targeting foreign embassies. Here’s everything you need to know from the last 24 hours.
01、Attackers associated with China's Ministry of State Security, named RedHotel, have been linked to cyberattacks in 17 countries, including Europe, Asia, and North America. Some of its targets include government, research, academia, aerospace, media, and telecoms.
02、Missouri's Department of Social Services suffered a data breach exposing protected Medicaid healthcare information due to a MOVEit data breach on IBM. The compromised information includes client numbers, benefit eligibility status, medical claims information, and more.
03、The pro-Russian threat group, NoName057 (16), claimed responsibility for DDoS attacks on the Dutch public transport website, local bank SNS, the Groningen seaport, and the website of the municipality of Vlardingen, as well as France’s customs service.
04、ESET researchers spotted a cyberespionage group in Belarus called MustachedBouncer targeting foreign embassies since 2014, often with the help of local internet service providers.
05、The NIST released a draft version of the Cybersecurity Framework 2.0, which would focus on the role of corporate governance and the growing risks to digital networks via third-party relationships.
06、Ukrainian security services claimed to have thwarted a cyberattack by a Russian threat actor, believed to be the Sandworm group, targeting the Ukrainian military's battlefield management system.
07、The FBI, the IRS, and authorities in Poland collaborated to dismantle a popular bulletproof hosting platform, Lolek, highlighting ongoing efforts to restrict cybercriminals' access to anonymous tools.
08、Crowdstrike published its 2023 Threat Hunting Report, stating that 62% of interactive intrusions are the result of compromised identities, with a 583% increase in Kerberoasting and 147% rise in broker advertisements on the dark web since 2022.
09、The White House launched the AI Cyber Challenge (AIxCC) to use AI technology in identifying and fixing software vulnerabilities and helping defend critical infrastructure.
10、Tel Aviv-based cloud security startup Sweet Security raised $12 million in seed stage funding from Glilot Capital Partners, with participation from CyberArk Ventures and other angel investors.
01、Attackers associated with China's Ministry of State Security, named RedHotel, have been linked to cyberattacks in 17 countries, including Europe, Asia, and North America. Some of its targets include government, research, academia, aerospace, media, and telecoms.
02、Missouri's Department of Social Services suffered a data breach exposing protected Medicaid healthcare information due to a MOVEit data breach on IBM. The compromised information includes client numbers, benefit eligibility status, medical claims information, and more.
03、The pro-Russian threat group, NoName057 (16), claimed responsibility for DDoS attacks on the Dutch public transport website, local bank SNS, the Groningen seaport, and the website of the municipality of Vlardingen, as well as France’s customs service.
04、ESET researchers spotted a cyberespionage group in Belarus called MustachedBouncer targeting foreign embassies since 2014, often with the help of local internet service providers.
05、The NIST released a draft version of the Cybersecurity Framework 2.0, which would focus on the role of corporate governance and the growing risks to digital networks via third-party relationships.
06、Ukrainian security services claimed to have thwarted a cyberattack by a Russian threat actor, believed to be the Sandworm group, targeting the Ukrainian military's battlefield management system.
07、The FBI, the IRS, and authorities in Poland collaborated to dismantle a popular bulletproof hosting platform, Lolek, highlighting ongoing efforts to restrict cybercriminals' access to anonymous tools.
08、Crowdstrike published its 2023 Threat Hunting Report, stating that 62% of interactive intrusions are the result of compromised identities, with a 583% increase in Kerberoasting and 147% rise in broker advertisements on the dark web since 2022.
09、The White House launched the AI Cyber Challenge (AIxCC) to use AI technology in identifying and fixing software vulnerabilities and helping defend critical infrastructure.
10、Tel Aviv-based cloud security startup Sweet Security raised $12 million in seed stage funding from Glilot Capital Partners, with participation from CyberArk Ventures and other angel investors.