Brazil's growing profile on the world stage comes freighted with cyberthreats from abroad and a thriving criminal ecosystem from within, warns Google. "As Brazil's influence grows, so does its digital footprint, making it an increasingly attractive target for cyberthreats."
Chinese hackers breached thousands of vulnerable Fortigate network security appliances in a cyberespionage campaign "much larger than previously known," a Dutch cybersecurity agency warned Tuesday. Even fully patched FortiGate devices may still be infected.
Security leaders face significant challenges in securing OT environments, especially with increasing geopolitical disruptions and psychological barriers. Trish McGill, IT and OT cybersecurity expert at Ilionx, emphasized the importance of addressing these psychological factors to bridge the IT-OT divide.
Ukrainian cyber defenders say Russian intelligence hackers operating from the occupied Donbas city of Luhansk targeted military email inboxes with an info stealer. A group tracked as UAC-0020 - also known as "Vermin" - deployed a malware strain dubbed "Spectr" as part of a spear-phishing campaign.
Ian Thornton-Trump, CISO of Cyjax, shared the importance of flexibility and continuous learning - key qualities that have shaped his career. These skills are crucial in adapting to the rapidly changing cybersecurity landscape and preparing for emerging threats, he said.
A government agency in a country that has repeatedly clashed with China over Beijing's territorial ambitions in the South China Sea was the subject of a prolonged cyberespionage campaign that used previously undetected backdoors and partially overlaps with known Sino state threat actors.
Russia-aligned actors, including intelligence agency threat actors and hacktivists, are at high risk for carrying out cyberattacks and disinformation campaigns against organizations linked to the Paris Olympics, warn leading security firms.
Defenders of operational technology environments should look beyond the technical controls and incident response plans they've put in place. They also need to consider how attackers might undermine confidence in the service itself, says Ian Thornton-Trump, CISO of Cyjax.
A North Korean hacking group wants to make money for the cash-starved Pyongyang regime and conduct bread-and-butter cyberespionage, say Microsoft researchers in a profile of a group they track as "Moonstone Sleet." North Korea has a well-established history of hacking for profit.
Security researchers warn that an active Chinese global cyberespionage campaign continues to target at least nine different governments across Asia, the Middle East and Africa, and specializes in gaining and maintaining persistence to email servers to amass intelligence, sometimes daily.
A politically motivated hacking group aligned with Pakistani interests is matching the Indian military's shift away from the Windows operating system with a heavy focus on malware encoded for Linux. BlackBerry observed the cyberespionage group targeting government agencies and the defense industry.
Multiple Chinese cyberespionage groups, including Volt Typhoon, are using operational relay box networks, aka ORBs, built using leased proxy servers and compromised or end-of-life routers, to avoid detection and complicate efforts to track their activities, warns Google Cloud's Mandiant.
A previously undetected, suspected Chinese-state threat actor has been targeting governments in the South China Sea for years with a remote access Trojan that has been a favorite of Chinese hackers since its creation almost two decades ago, say security researchers from Bitdefender.
As geopolitical tensions rise, businesses across the U.S. find themselves in the crosshairs of international cyber conflicts. The blending of global conflicts into cyberthreats is becoming a reality for companies far removed from the political sphere, said Dave Merkel, CEO of Expel.
U.S. law enforcement swept up two people and possibly hundreds of laptops used in scams by North Korean IT workers to obtain remote employment, including as contractors for an unnamed U.S. cybersecurity company. Prosecutors say one scam run by an Arizona woman netted Pyongyang at least $6.8 million.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.