The increasing frequency of identity-based attacks highlights the necessity of ensuring your Single Sign-On (SSO) and Multi-Factor Authentication (MFA) systems are functioning as intended. Simply implementing these technologies isn’t sufficient; ongoing verification of their effectiveness is crucial. Savvy provides real-time visibility for performing audits and implementing automated controls, guiding users at scale to address issues before threat actors can exploit them. Discover how Savvy can help you put policy into practice. Learn more.
We're always looking for ways to improve the N2K CyberWire network to give you an intelligence-driven news experience. Please take a few minutes to tell us about your network experience and share your feedback by completing our 2024 Audience Survey, and you will have a chance to win a $100 Amazon gift card. Take the survey.
The LockBit ransomware gang has claimed responsibility for an attack against the US Federal Reserve, SecurityAffairs reports. The group claims to have stolen "33 terabytes of juicy banking information containing Americans’ banking secrets," and says it will leak the data if the banking system refuses to negotiate a ransom. The Federal Reserve hasn't commented on the alleged breach, and there's no proof so far that LockBit's claims are legitimate.
The Japan Aerospace Exploration Agency (JAXA) has sustained several cyberattacks over the past year, the Record reports. Japan’s Chief Cabinet Secretary Yoshimasa Hayashi said in a press conference on Friday that sensitive information related to rockets and satellites was not affected. Sources told Nippon that the attacks "targeted a JAXA server for the agency's general business operations." The Japanese government is investigating the attacks, which originated "from outside of Japan."
Mark your calendar for mWISE™, the unique cybersecurity conference from Mandiant, now part of Google Cloud. Built by practitioners for practitioners, it runs from September 18–19, 2024 in Denver, Colorado.
What makes mWISE different from other cybersecurity conferences? It’s a targeted event with hands-on learning for frontline practitioners. The intimate setting allows you to make one-on-one connections with leaders in the field. And best of all, it’s focused on learning without the sales pitches.
The US Justice Department has charged four Vietnamese nationals for their alleged involvement with the FIN9 cybercriminal group. The individuals are accused of conducting "a series of computer intrusions that caused victim companies to collectively suffer more than $71 million in losses."
The Justice Department stated, "Members of FIN9, including the defendants, obtained unauthorized access to the computer networks of victim companies through phishing campaigns or other methods, such as supply chain attacks – a type of cyberattack that seeks to damage an organization by targeting the computer networks of trusted third-party vendors who offer services or software vital to the supply chain. After gaining access to their victims’ networks, FIN9 members, including the defendants, used that access to exfiltrate or attempt to exfiltrate non-public information, employee benefits, and/or funds."
Sign up for Scout Insight's free trial today! Get immediate insights into threats, search any IP with no training required, and enjoy intuitive graphical results. Whether you need to identify compromised hosts or enrich Splunk queries, Scout Insight has you covered. Don’t wait – accelerate your threat response now. Visit team-cymru.com/cyberwire to start your free trial!
The US Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned twelve Kaspersky Lab executives "for operating in the technology sector of the Russian Federation economy." The sanctions did not include the company's CEO and co-founder Eugene Kaspersky.
The US Commerce Department last week barred Kaspersky from selling its products in the United States over the company's alleged "cooperation with Russian military and intelligence authorities in support of the Russian government’s cyber intelligence objectives."
Modernize your identity infrastructure and get rid of technical debt without sacrificing your complex access policies. Use Strata to integrate non-standard apps with any identity service while using any vendor, standard, or app architecture. Or use it to migrate away from outdated identity providers and consolidate IDPs. It’s seamless, simple and code-free. Share your top identity security priorities, and receive a pair of complimentary AirPods Pro.
Today's issue includes events affecting Japan, Russia, the United States, and Vietnam.
CDK Global outage caused by BlackSuit ransomware attack (BleepingComputer) The BlackSuit ransomware gang is behind CDK Global's massive IT outage and disruption to car dealerships across North America, according to multiple sources familiar with the matter.
New North Korean Hackers Attack Aerospace and Defense Companies (Cyber Security News) a sophisticated new malware campaign likely linked to North Korean hackers, targeting aerospace and defense companies.
Facebook PrestaShop module exploited to steal credit cards (BleepingComputer) Hackers are exploiting a flaw in a premium Facebook module for PrestaShop named pkfacebook to deploy a card skimmer on vulnerable e-commerce sites and steal people's payment credit card details.
Sellafield Pleads Guilty to Historic Cybersecurity Offenses (Infosecurity Magazine) UK’s most hazardous nuclear site, Sellafield, has admitted criminal charges related to IT security failings
Polish investigators seize Pegasus spyware systems as part of probe into alleged abuse (The Record) Poland's Central Anticorruption Bureau is the target of a probe into potential abuse of Pegasus spyware by the country's previous government.
Five men convicted for operating illegal streaming site Jetflicks (BleepingComputer) A federal jury in Las Vegas convicted five men for their involvement in the operation of Jetflicks, one of the largest and most popular illegal streaming services in the United States.
Texas judge upholds hospitals’ right to use online tracking technology (The Record) The Department of Health and Human Services (HHS) went beyond its authority when it issued a policy to rein in online trackers by hospitals, the judge ruled.
US sanctions 12 Kaspersky Lab execs for working in Russian tech sector (BleepingComputer) The Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned twelve Kaspersky Lab executives for operating in the technology sector of Russia.
For a complete running list of events, please visit the Event Tracker.
Insider Threat Program Development, Management & Optimization Live Web Based Training Course (Virtual, Jun 24 - 25, 2024) This highly sought after and very comprehensive training course, will ensure that the Insider Threat Program (ITP) Manager and other key stakeholders that support the ITP (Insider Threat Analyst, FSO, CSO, CISO, Human Resources, CIO - IT, Network Security, Counterintelligence Investigators, Behavioral Science Professionals, Legal Etc.), have the Core / Advanced Knowledge, Blueprint, Resources needed for developing, managing or optimizing an ITP. Students will be provided with an ITP Management Toolkit that provides an abundance of educational resources, templates and checklists for ITP development, management and optimization. All materials will be provided to the student in electronic format (Via Download) before the training. Our student satisfaction levels are in the exceptional range. Over 1000+ individuals have attended this training course and received ITP Manager Certificates. The Insider Threat Defense Group is so confident about our training courses that they come with a money back training guarantee.
SANSFIRE Washington, DC 2024 (Washington (or virtual), DC, USA, Jul 15 - 20, 2024) At SANSFIRE Washington, DC 2024, choose from 48 interactive courses with hands-on labs. Practice your skills and compete against your peers during NetWars Tournaments, and network with your instructor and industry colleagues in real-time. Each course includes electronic and printed books, and several courses align with GIAC certifications!
