Category: AI in news
Feb 28, 2024NewsroomCyber Espionage / Malware An Iran-nexus threat actor known as UNC1549 has been attributed with medium confidence to a new set of attacks targeting aerospace, aviation, and defense industries in the Middle East, including Israel and the U.A.E. Other targets of the cyber espionage activity likely include Turkey, India, and Albania, Google-owned Mandiant…
Read More
A half-century ago, most corporations were paper-native: Their business processes all executed on paper from both back office (accounting) to go-to-market functions (sales and marketing). Their businesses were location-native: Revenue was often generated in some form of person-to-person transactions, supported by that paper-native back office. As first computers, and then networks, became popular and affordable,…
Read More
Feb 28, 2024NewsroomRansomware / Healthcare The U.S. government is warning about the resurgence of BlackCat (aka ALPHV) ransomware attacks targeting the healthcare sector as recently as this month. “Since mid-December 2023, of the nearly 70 leaked victims, the healthcare sector has been the most commonly victimized,” the government said in an updated advisory. “This is…
Read MoreA Cyber Insurance Backstop In the first week of January, the pharmaceutical giant Merck quietly settled its years-long lawsuit over whether or not its property and casualty insurers would cover a $700 million claim filed after the devastating NotPetya cyberattack in 2017. The malware ultimately infected more than 40,000 of Merck’s computers, which significantly disrupted…
Read More
The ALPHV, also known as the Blackcat ransomware gang, is targeting US healthcare systems, according to a joint cybersecurity advisory by the FBI, CISA, and the Department of Health and Human Services (SSH). The advisory, which was published as part of the #StopRansomware effort that publishes advisories against various ransomware variants and actors, also detailed…
Read More
Feb 28, 2024NewsroomPhishing Attack / Malware Mexican users have been targeted with tax-themed phishing lures at least since November 2023 to distribute a previously undocumented Windows malware called TimbreStealer. Cisco Talos, which discovered the activity, described the authors as skilled and that the “threat actor has previously used similar tactics, techniques and procedures (TTPs) to…
Read More
This confirms that sophisticated malign influence activities rely on developments in a target nation to generate initial interest without compromising the identity of the attacker. Perhaps most interestingly, our research also unexpectedly uncovered evidence of malware being leveraged against Facebook users. While it may seem counterintuitive that the IRA would hack users that they are…
Read More
Feb 28, 2024NewsroomFirmware Security / Vulnerability In a new joint advisory, cybersecurity and intelligence agencies from the U.S. and other countries are urging users of Ubiquiti EdgeRouter to take protective measures, weeks after a botnet comprising infected routers was felled by law enforcement as part of an operation codenamed Dying Ember. The botnet, named MooBot,…
Read More
A potentially $1 billion deal by semiconductor manufacturer Broadcom to sell a security software business it acquired with its $61 billion purchase of VMware last year has reportedly been put on hold, if not abandoned. Investment firm KKR had agreed to buy Carbon Black along with VMware’s entire end-user computing (EUC) business, including VMware’s Workspace…
Read More
Cyberattacks are scaling up. That means security operations center (SOC) teams are overwhelmed by the volume of alerts they must analyze and how to sort out real threats vs. system noise. The good news? Artificial intelligence (AI) is poised to supercharge SOC modernization efforts with unprecedented automation, proactive threat detection, and relief for overstressed security…
Read More