Supplemental Cyber Highlights – January 16, 2024
Created: Tuesday, January 16, 2024 - 20:19
Categories: Cybersecurity
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
- Ransomware gang targets nonprofit providing clean water to world’s poorest (The Record)
- Ransomware attack on US Navy shipbuilder leaked information of nearly 17,000 people (The Record)
- Navigating industrial cyber threats with SBOMs, VEX, CSAF for enhanced supply chain resilience (Industrial Cyber)
- MITRE announces new Caldera for OT plugins with Profinet and IEC 61850 (Industrial Cyber)
IT Vulnerabilities & Threats
- VMware Urges Customers to Patch Critical Aria Automation Vulnerability (Security Week)
- Over 178K SonicWall firewalls vulnerable to DoS, potential RCE attacks (Bleeping Computer)
- Juniper Networks Patches Critical Remote Code Execution Flaw in Firewalls, Switches (Security Week)
- Cloud Server Abuse Leads to Huge Spike in Botnet Scanning (Security Week)
Ransomware
- 3 Ransomware Group Newcomers to Watch in 2024 (The Hacker News)
- Check Point Research: 2023 – The year of Mega Ransomware attacks with unprecedented impact on global organizations (Check Point)
- 2023 Ransomware Stats: A Look Back To Plan Ahead (Rapid 7)
- Over 5K organizations impacted by ransomware last year (SC Magazine)
General Awareness & Reports
- Email Nightmare: 94% of Firms Hit by Phishing Attacks in 2023 (Infosecurity Magazine)
- Geopolitical tensions combined with technology will drive new security risks (Help Net Security)