Supplemental Cyber Highlights – December 26, 2024

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure Resilience

• Rockwell PowerMonitor Vulnerabilities Allow Remote Hacking of Industrial Systems | SecurityWeek
• Feds lay blame while Chinese telecom attack continues | Cyberscoop
• North Korean hackers targeting workers in nuclear power sector | SC Media

IT Vulnerability Security Updates

• Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks | The Hacker News  
• Adobe Patches ColdFusion Flaw at High Risk of Exploitation | SecurityWeek
• Sophos Patches Critical Firewall Vulnerabilities| SecurityWeek
• Microsoft fixes bug behind random Office 365 deactivation errors | Bleeping Computer

IT Malware, Threats & Risks

• Iran’s Charming Kitten Deploys BellaCPP: A New C++ Variant of BellaCiao Malware | The Hacker News
• Emerging Threats & Vulnerabilities to Prepare for in 2025 | Dark Reading
• New botnet exploits vulnerabilities in NVRs, TP-Link routers | Bleeping Computer
• New FlowerStorm Microsoft phishing service fills void left by Rockstar2FA | Bleeping Computer

Ransomware

• Clop ransomware gang takes credit for latest mass hack that breached dozens of companies | TechCrunch

Cyber Resilience, General Awareness, & AI

• Maximizing the impact of cybercrime intelligence on business resilience | Help Net Security
• How to Protect Your Environment From the NTLM Vulnerability | Dark Reading
• AI-driven scams are about to get a lot more convincing | Help Net Security
• The Intersection of AI and OSINT: Advanced Threats On The Horizon | SecurityWeek