Cybersecurity

Cyber Resilience – AI Threats and the Need for a Prevention-first Strategy

The presence of AI-related threats is leading the cybersecurity community at large to change strategies and focus more on prevention capabilities. According to Deep Instinct, a cybersecurity company that implements artificial intelligence for the purpose of preventing and detecting malware, 75% of security professionals had to change their cybersecurity strategy in the past year due to AI-powered threats. In particular, deepfakes are on the rise with 61% of organizations experiencing a rise in deepfake incidents over the past year.

Read more about Cyber Resilience – AI Threats and the Need for a Prevention-first Strategy

Threat Awareness – Threat Actors Target Recruiters Posing as Job Applicants

Cybersecurity researchers have recently identified a phishing campaign designed to distribute More_eggs malware through malicious resumes in fake job applications. This attack specifically targets recruiters, whereby posing as a job applicant, the threat actor lures the recruiter to a malicious website. More_eggs malware acts as a backdoor and is capable of harvesting sensitive information. It operates under a Malware-as-a-Service (MaaS) model making it available to other less-sophisticated threat actors, expanding its use.

Read more about Threat Awareness – Threat Actors Target Recruiters Posing as Job Applicants

Report – The Riskiest Connected Devices in 2024: Forescout

Forescout Research released The Riskiest Connected Devices in 2024 report yesterday showing notable statistics from 19 million analyzed devices. The report identifies the five riskiest device types in four device categories: IT, IoT, OT, and IoMT (internet of medical things) for a total of 20 device types.

Applicable takeaways from the 2024 report:

Read more about Report – The Riskiest Connected Devices in 2024: Forescout

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – June 11, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Six Industrial Control Systems Advisories

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – June 11, 2024

SMB Resilience – Reasonable Actions to Help Bolster Cybersecurity

In a noticeable shift in threat actor behavior, small and medium-sized businesses (SMBs) are increasingly finding themselves targeted by cyber threats. This may be caused due to the complexity of threats and increasing difficulty for SMBs to protect against them. No matter the reason, SMBs are more concerned about cyber attacks than ever, with 78% saying they fear cyber attacks could shut down their business.

Read more about SMB Resilience – Reasonable Actions to Help Bolster Cybersecurity

Ransomware Awareness – 7,000 LockBit Decryption Keys Recovered by FBI, Victims are Urged to Reach Out

The FBI announced yesterday it has obtained over 7,000 decryption keys from the LockBit ransomware group that victims can use to recover encrypted data for free. The FBI urges past victims of LockBit ransomware attacks to come forward: "From our ongoing disruption of LockBit, we now have over 7,000 decryption keys and can help victims reclaim their data and get back online," the FBI Cyber Lead said in a keynote.

Read more about Ransomware Awareness – 7,000 LockBit Decryption Keys Recovered by FBI, Victims are Urged to Reach Out

Supplemental Cyber Highlights – June 6, 2024

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure

Read more about Supplemental Cyber Highlights – June 6, 2024

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – June 6, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Four Industrial Control Systems Advisories

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – June 6, 2024

Ransomware Resilience – Strategies for Improving Attack Outcomes

Ransomware continues to be a significant threat to organizations of all sizes. While the Sophos State of Ransomware 2024 report shows ransomware attacks across the board are down from its 2023 report (which is thought to be because of law enforcement action), a report from Mandiant published yesterday indicates that despite global law enforcement coordination, the number of incidents continue to rise unabated.

Read more about Ransomware Resilience – Strategies for Improving Attack Outcomes

(TLP:CLEAR) MS-ISAC Advisory: A Vulnerability in Check Point Security Gateways Could Allow for Credential Access

WaterISAC is passing through this MS-ISAC Cybersecurity Advisory shared yesterday regarding a recently discovered vulnerability in Check Point Security Gateways, which has the potential to allow credential access. The advisory includes an overview, threat intelligence briefing, a technical summary, and recommended mitigations. WaterISAC encourages members who use Check Point Security Gateways to review the advisory and apply proper mitigations as recommended.

Read more about (TLP:CLEAR) MS-ISAC Advisory: A Vulnerability in Check Point Security Gateways Could Allow for Credential Access

You are here

Cybersecurity

Cyber Resilience – AI Threats and the Need for a Prevention-first Strategy

Threat Awareness – Threat Actors Target Recruiters Posing as Job Applicants

Report – The Riskiest Connected Devices in 2024: Forescout

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – June 11, 2024

SMB Resilience – Reasonable Actions to Help Bolster Cybersecurity

Ransomware Awareness – 7,000 LockBit Decryption Keys Recovered by FBI, Victims are Urged to Reach Out

Supplemental Cyber Highlights – June 6, 2024

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – June 6, 2024

Ransomware Resilience – Strategies for Improving Attack Outcomes

(TLP:CLEAR) MS-ISAC Advisory: A Vulnerability in Check Point Security Gateways Could Allow for Credential Access

Pages

You are here

Cybersecurity

Pages

Footer Email Signup