Supplemental Cyber Highlights – June 20, 2024

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure

• Massachusetts 911 Outage Caused by Errant Firewall | SecurityWeek
• T-Mobile denies it was hacked, links leaked data to vendor breach | BleepingComputer
• How can SLTTs defend against cyber threats? | Center for Internet Security
• The Hunt: Decoding Human Behavior in OT Threat Hunting | Dragos
• 2024 State of Operational Technology and Cybersecurity | Fortinet

IT Vulnerabilities & Security Updates

• Hundreds of PC, Server Models Possibly Affected by Serious Phoenix UEFI Vulnerability | SecurityWeek
• Atlassian Patches High-Severity Vulnerabilities in Confluence, Crucible, Jira | SecuirtyWeek
• Outdated Microsoft SQL Servers in use on the rise | SCMagazine

IT Malware, Threats, & Risks

• Security bug allows anyone to spoof Microsoft employee emails | TechCrunch
• New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration | TheHackerNews
• UNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term Spying | TheHackerNews
• SocGholish Malware: What It Is & How to Prevent It | Sucuri
• AI Weights: Securing the Heart and Soft Underbelly of Artificial Intelligence | SecurityWeek

Cyber Resilience & General Awareness

• LockBit Ransomware Again Most Active – Real Attack Surge or Smokescreen? | SecurityWeek
• From passwords to passkeys: Enhancing security and user satisfaction | HelpNetSecurity
• Where Security Starts in Your Security Projects | Tripwire
• Check Point’s 2024 Cloud Security Report: Navigating the Intersection of Cyber security | CheckPoint