Supplemental Cyber Highlights – January 25, 2024
Created: Thursday, January 25, 2024 - 20:00
Categories: Cybersecurity, OT-ICS Security, Security Preparedness
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
- Dragos Industrial Ransomware Analysis: Q4 2023 (Dragos)
- Pay Now or Pay Later (Check Point)
IT Vulnerabilities/Malware/Threats/Risks
- 45% of critical CVEs left unpatched in 2023 (Help Net Security)
- Your Secure Email Gateway is Still Missing Threats – What You Need to Know (Cofense)
- 5 Common Privilege Escalation Attack Techniques with Examples (Proofpoint)
- NSPX30: A sophisticated AitM-enabled implant evolving since 2005 (ESET)
- LODEINFO Fileless Malware Evolves with Anti-Analysis and Remote Code Tricks (The Hacker News)
- New CherryLoader Malware Mimics CherryTree to Deploy PrivEsc Exploits (The Hacker News)
Ransomware
- Who pays, and why: A researcher examines the ransomware victim’s mindset (The Record)
- Kasseika Ransomware Using BYOVD Trick to Disarms Security Pre-Encryption (The Hacker News)
- Kasseika ransomware uses antivirus driver to kill other antiviruses (BleepingComputer)
Cyber Resilience, General Awareness & Reports
- Fighting insider threats is tricky but essential work (Help Net Security)
- How to secure AD passwords without sacrificing end-user experience (BleepingComputer)
- HPE Says SolarWinds Hackers Accessed its Emails (Infosecurity Magazine)
- Browser Phishing Threats Grew 198% Last Year (Infosecurity Magazine)
- Mother of all breaches – a historic data leak reveals 26 billion records: check what’s exposed (Security Affairs)