NCSC reaffirms guidance for those at risk of Chinese state hacking | Computer Weekly
The NCSC reaffirms guidance for individuals at high risk of targeted hacking by Chinese threat actors like APT31.
NCSC highlights China's malicious activities, including transnational repression and espionage, against UK institutions and pro-democracy activists. [ more ]
CISA issues emergency directive for federal agencies to patch Ivanti VPN vulnerabilities
The Cybersecurity and Infrastructure Security Agency issued an emergency directive for federal agencies to patch their systems against a zero-day exploit in a VPN software.
The vulnerabilities in the software were publicly released by the software company on Jan. 10, and so far, the campaign has impacted at least 2,100 devices worldwide. [ more ]
Ransomware affiliates are increasingly targeting the Citrix Bleed vulnerability, prompting warnings from CISA and Citrix to address the issue.
The Citrix Bleed bug allows threat actors to bypass password requirements and multifactor authentication, leading to session hijacking and unauthorized access to data and resources.
LockBit 3.0 gang and its affiliates have formed a 'strike team' specializing in weaponizing Citrix Bleed, potentially staffed by teenagers. [ more ]
Threat actors look to stolen credentials | Computer Weekly
Cyber criminals are increasingly using valid accounts to breach corporate networks, necessitating a focus on distinguishing between legitimate and malicious user activity. [ more ]
Ransomware gang claims to have stolen Crystal Lake Health Centers data
Crystal Lake Health Centers in Michigan has experienced a data breach and has been compromised by the Hunters International threat actors.
Hunters International is demanding a fee in exchange for returning the stolen data and providing tools and reports to protect Crystal Lake Health Centers.
DataBreaches has confirmed that real data from Crystal Lake Health Centers has been posted by Hunters International on their leak site. [ more ]
Rogue state-aligned actors are most critical cyber threat to UK | Computer Weekly
The UK's critical national infrastructure faces an enduring and significant threat from state-aligned threat actors ramping up cyber activity.
The NCSC warns that the UK needs to enhance cyber resilience in industries such as energy, water supply, communications, logistics, and financial services.
The annual report highlights the emergence of a new class of cyber adversary in the form of state-aligned actors who are ideologically motivated. [ more ]